Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/Trh6DxkRiF0lIzyaXdf7tCZSkh8.roa
File: Trh6DxkRiF0lIzyaXdf7tCZSkh8.roa (raw, json)
Hash identifier: B8YqyUwwQqo4482Y0g27rBvZdlCblZ8WNJV5YU/N7lU=
Subject key identifier: 4E:B8:7A:0F:19:11:88:5D:25:23:3C:9A:5D:D7:FB:B4:26:52:92:1F
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 01891F65C4AAE6CAFBF831B513C35267377D
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/Trh6DxkRiF0lIzyaXdf7tCZSkh8.roa
Signing time: Tue 04 Jul 2023 05:35:10 +0000
ROA not before: Tue 04 Jul 2023 05:35:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 81.29.153.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1f:65:c4:aa:e6:ca:fb:f8:31:b5:13:c3:52:67:37:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jul 4 05:35:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4eb87a0f1911885d25233c9a5dd7fbb42652921f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:7a:ec:d0:88:45:e6:32:59:0c:f1:7c:4b:25:
a8:4e:10:c2:ba:83:5f:02:2e:ac:95:58:cf:2b:f5:
0d:68:d6:97:cc:d1:6a:a9:31:87:88:a3:a2:f4:e2:
b4:50:09:31:b6:ad:fe:9f:49:43:20:7c:40:5c:f4:
48:14:01:db:09:39:b4:41:0e:ca:d1:70:9b:49:a2:
72:f4:88:52:70:a6:32:16:d1:4c:eb:fb:97:28:d2:
26:76:0b:e7:bb:1c:7e:8a:31:a6:d6:20:80:57:f6:
0d:79:d9:06:1e:2e:f4:f1:e6:f3:3d:0e:76:aa:79:
7c:c4:ea:51:fc:fb:75:e9:a7:a0:ec:03:91:31:c1:
4d:4b:16:3d:df:04:d0:6c:ec:9f:4e:04:5e:01:5a:
94:fe:1e:1c:d4:7e:73:eb:49:27:06:99:4e:42:2f:
16:4a:d2:55:69:15:8d:7f:24:73:a4:13:84:c6:97:
35:16:f3:0c:d6:77:d9:f7:ef:93:32:0f:ce:cc:e4:
e6:b4:78:ab:ec:2b:25:b6:9f:95:25:cc:6e:57:f7:
50:f1:a7:76:d5:60:d0:d7:f7:70:6a:5f:66:c7:4a:
4b:ef:c2:95:6f:91:4e:e1:c3:34:41:0c:27:96:3e:
94:23:c8:4b:63:39:d1:8a:a4:c9:45:b7:42:9c:22:
12:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:B8:7A:0F:19:11:88:5D:25:23:3C:9A:5D:D7:FB:B4:26:52:92:1F
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/Trh6DxkRiF0lIzyaXdf7tCZSkh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.153.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:0d:fa:a9:0e:66:5f:9a:23:f0:e2:9f:13:d8:88:57:27:b4:
ed:9a:a4:44:32:e6:fe:f2:3d:ea:a0:fe:d7:be:d0:c0:db:70:
bc:f5:64:1c:80:55:97:59:e5:a5:ef:9d:3b:4f:24:43:44:71:
9a:fd:03:f1:95:ec:18:17:f1:eb:2f:0a:1a:26:a6:5c:24:18:
12:4e:39:6c:78:d5:0c:d8:50:08:e7:1c:39:da:60:9f:89:18:
7d:89:83:29:1b:bc:59:7a:94:8a:ec:f0:c1:48:b0:b1:2e:5d:
69:cf:a7:01:21:b6:53:1b:b5:06:36:84:cf:e4:d7:d6:51:ba:
29:5e:92:d3:08:5a:6a:dd:51:e8:7c:c1:a9:63:6d:f1:ef:dd:
5d:06:87:97:58:4c:2a:dc:d4:0a:45:aa:59:74:9f:bf:b9:e3:
d4:a0:57:ec:0b:24:3b:bb:96:80:82:bc:f2:b8:0c:53:9f:6e:
67:25:25:e0:cc:a6:8d:cb:c4:b5:9a:8b:3f:c4:69:ab:e2:d5:
10:e1:91:9f:f2:4a:3f:11:4e:64:08:a2:f0:e1:27:c0:98:2c:
44:22:5a:80:47:1a:0e:ed:5d:94:6b:a7:96:12:4a:22:1a:16:
e5:13:26:c4:b9:ec:a4:27:9a:f1:88:b0:1b:b0:50:66:a2:9c:
9d:5d:ed:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:02 2024 by rpki-client on console-fra.rpki-client.org