Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/YKLvhbdtkd2IZq2SmF3KX3N_trI.roa
File: YKLvhbdtkd2IZq2SmF3KX3N_trI.roa (raw, json)
Hash identifier: xwF7aiXIZLw1ilqCHJrYICbQqtQWM/tyOIJXL3R5hhc=
Subject key identifier: 60:A2:EF:85:B7:6D:91:DD:88:66:AD:92:98:5D:CA:5F:73:7F:B6:B2
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018D5E34908548DF3CC0C653EB56EF3240C0
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/YKLvhbdtkd2IZq2SmF3KX3N_trI.roa
Signing time: Wed 31 Jan 2024 06:28:39 +0000
ROA not before: Wed 31 Jan 2024 06:28:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215780
IP address blocks: 81.29.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 May 2024 08:50:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5e:34:90:85:48:df:3c:c0:c6:53:eb:56:ef:32:40:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jan 31 06:28:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=60a2ef85b76d91dd8866ad92985dca5f737fb6b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:eb:42:9e:fa:bc:f3:87:a0:2d:07:85:9d:f9:
46:46:cd:71:71:92:8f:62:7e:98:88:a6:97:b3:49:
c2:a2:cc:56:70:b0:54:a6:c9:86:83:58:fe:3c:5f:
86:ab:f0:e4:67:67:1c:ff:cf:c5:6c:6f:4d:b5:7c:
82:de:00:af:3e:2b:0e:27:9b:0a:aa:d3:c9:e4:b5:
21:d3:a0:a3:ce:ef:3d:9d:9d:5e:ff:ae:1e:b3:60:
07:40:18:a3:2c:0d:71:3d:94:35:cd:8c:26:26:c2:
ba:fa:81:79:e6:59:de:49:12:4e:76:00:22:0d:53:
63:d5:d5:62:4c:eb:31:1f:09:e2:43:35:65:d9:13:
43:60:90:23:34:ba:99:1a:b1:d8:cf:5d:d6:ae:28:
58:8f:43:70:2f:ef:66:ae:ba:02:b4:bd:56:ab:e3:
78:06:10:3c:28:63:bc:88:33:6f:95:09:f1:d4:a8:
96:f2:1d:16:96:e2:fd:bc:c9:80:8b:8e:42:82:fa:
4a:8b:45:58:2d:e8:b1:84:b6:52:95:19:f0:7d:ec:
81:cf:c8:c2:c1:2d:8f:f5:b1:1c:34:ce:21:c8:41:
1b:bf:e0:d6:8f:33:97:b7:c1:91:54:56:17:8b:2f:
58:1b:49:ca:b2:c8:cc:53:d5:4f:2c:6b:ef:5f:0a:
22:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:A2:EF:85:B7:6D:91:DD:88:66:AD:92:98:5D:CA:5F:73:7F:B6:B2
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/YKLvhbdtkd2IZq2SmF3KX3N_trI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.149.0/24
Signature Algorithm: sha256WithRSAEncryption
40:ac:f9:24:c0:37:4c:a4:6d:72:5e:f5:22:fc:a2:c8:a3:95:
46:3e:f9:83:40:75:b2:42:18:fc:f6:26:27:d2:e4:64:65:bb:
ef:3f:dd:99:b8:31:d0:e8:5b:cc:1a:b9:dd:bf:fb:a9:89:ff:
53:d9:69:9f:c8:9a:45:5a:5f:72:25:2e:50:02:ed:24:a2:52:
9c:c5:6f:d5:85:fa:62:d0:86:d5:9b:64:c5:bf:d6:cc:af:84:
74:b1:67:e4:c7:62:d4:21:8e:89:29:e6:87:21:56:68:d6:b4:
4a:0c:68:9e:28:dc:62:55:2b:0b:50:7d:89:70:7f:b0:54:41:
46:dc:a1:32:17:d2:e0:8e:75:a8:9d:62:b4:a7:90:04:a8:6c:
f8:d7:f0:2c:86:68:f7:2b:9e:79:f3:f5:86:be:d6:3c:76:82:
6b:f9:9f:19:ac:3e:27:45:11:74:8f:07:62:72:22:ea:31:5a:
b2:3f:da:50:5a:9c:eb:cf:bb:38:48:f5:55:a1:a8:22:c2:71:
37:f3:02:38:0a:37:f4:7b:b9:49:57:c6:fc:b4:40:1c:97:5f:
e9:0e:b3:81:ab:87:14:6f:30:16:f2:53:2b:00:53:53:14:0f:
90:a3:c5:52:05:5b:bb:e6:af:10:3f:34:19:08:ae:78:00:e7:
97:54:bb:1b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY1eNJCFSN88wMZT61bvMkDAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTUxNjk0YzRkNDZiNGZjYzAyZmFlNzFlNWRiOTQyYTcx
MDhlNDcwHhcNMjQwMTMxMDYyODM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MGEyZWY4NWI3NmQ5MWRkODg2NmFkOTI5ODVkY2E1ZjczN2ZiNmIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwOtCnvq884egLQeFnflGRs1xcZKP
Yn6YiKaXs0nCosxWcLBUpsmGg1j+PF+Gq/DkZ2cc/8/FbG9NtXyC3gCvPisOJ5sK
qtPJ5LUh06Cjzu89nZ1e/64es2AHQBijLA1xPZQ1zYwmJsK6+oF55lneSRJOdgAi
DVNj1dViTOsxHwniQzVl2RNDYJAjNLqZGrHYz13WrihYj0NwL+9mrroCtL1Wq+N4
BhA8KGO8iDNvlQnx1KiW8h0WluL9vMmAi45CgvpKi0VYLeixhLZSlRnwfeyBz8jC
wS2P9bEcNM4hyEEbv+DWjzOXt8GRVFYXiy9YG0nKssjMU9VPLGvvXwoiowIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGCi74W3bZHdiGatkphdyl9zf7ayMB8GA1UdIwQY
MBaAFEnlFpTE1GtPzAL65x5duUKnEI5HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQt
MTkxODliM2M5YzdkLzEvWUtMdmhiZHRrZDJJWnEyU21GM0tYM05fdHJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQtMTkxODliM2M5Yzdk
LzEvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUR2VMA0G
CSqGSIb3DQEBCwUAA4IBAQBArPkkwDdMpG1yXvUi/KLIo5VGPvmDQHWyQhj89iYn
0uRkZbvvP92ZuDHQ6FvMGrndv/upif9T2WmfyJpFWl9yJS5QAu0kolKcxW/Vhfpi
0IbVm2TFv9bMr4R0sWfkx2LUIY6JKeaHIVZo1rRKDGieKNxiVSsLUH2JcH+wVEFG
3KEyF9LgjnWonWK0p5AEqGz41/Ashmj3K5558/WGvtY8doJr+Z8ZrD4nRRF0jwdi
ciLqMVqyP9pQWpzrz7s4SPVVoagiwnE38wI4Cjf0e7lJV8b8tEAcl1/pDrOBq4cU
bzAW8lMrAFNTFA+Qo8VSBVu75q8QPzQZCK54AOeXVLsb
-----END CERTIFICATE-----
Generated at Mon May 6 11:49:49 2024 by rpki-client on console-ams.rpki-client.org