Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/dYUz1qFZ2-3XesLBqHnON8KDPyc.roa
File: dYUz1qFZ2-3XesLBqHnON8KDPyc.roa (raw, json)
Hash identifier: q1xLJjCxJIn+2qdaHIxqLZCsJCsoqsnvqhyVhy2X0+s=
Subject key identifier: 75:85:33:D6:A1:59:DB:ED:D7:7A:C2:C1:A8:79:CE:37:C2:83:3F:27
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018CCA2A45D1A675939FAF191A0978DF2170
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/dYUz1qFZ2-3XesLBqHnON8KDPyc.roa
Signing time: Tue 02 Jan 2024 12:33:37 +0000
ROA not before: Tue 02 Jan 2024 12:33:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60721
IP address blocks: 81.29.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jan 2024 06:52:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:45:d1:a6:75:93:9f:af:19:1a:09:78:df:21:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jan 2 12:33:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=758533d6a159dbedd77ac2c1a879ce37c2833f27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a7:1e:53:97:c6:01:c1:ce:f1:e6:21:32:6b:
5b:31:68:78:7b:23:62:e0:c8:32:84:60:cc:1c:20:
1e:0f:c0:d7:5a:9f:e4:56:dc:10:5d:2f:42:13:a9:
76:25:dc:21:18:5d:5c:81:01:46:70:97:e9:93:bf:
51:52:c8:4e:d3:47:29:27:1a:d3:cc:c6:c1:dd:b0:
a4:3d:38:1f:d7:07:0c:34:38:3d:4f:2d:95:ae:be:
08:25:91:1b:63:3b:5b:4b:1f:ce:9e:3a:80:2f:23:
f4:ea:a6:08:6a:2a:74:98:24:64:bf:ca:8b:18:cc:
1e:5f:9c:74:bb:a9:e5:6d:35:e0:8a:2e:26:5f:68:
69:1c:02:9f:5c:39:46:b7:e5:7d:bd:73:ea:19:d2:
a8:1b:c3:1c:fd:99:30:f5:5b:af:50:16:53:9c:ed:
f9:56:16:7f:5d:a2:93:03:4f:1e:f0:57:89:07:33:
24:d8:f4:1a:38:ea:ff:7a:c4:27:1b:58:93:54:ef:
12:60:4c:fe:ed:e0:63:8a:0e:fb:39:5c:30:da:5e:
5b:4e:bf:1d:0c:a0:19:57:87:79:14:e9:58:b4:26:
ab:a7:97:66:9c:6b:ea:0e:4a:d8:89:3e:c0:cf:ca:
d3:3f:c9:bb:08:2d:a7:86:21:1d:d4:a0:bb:b4:6c:
a3:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:85:33:D6:A1:59:DB:ED:D7:7A:C2:C1:A8:79:CE:37:C2:83:3F:27
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/dYUz1qFZ2-3XesLBqHnON8KDPyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.153.0/24
Signature Algorithm: sha256WithRSAEncryption
67:e4:5b:61:61:12:08:4e:f1:b4:73:96:bb:0f:84:03:5e:53:
c0:cc:b6:de:cb:c6:ab:84:a3:29:98:ac:98:1e:8a:8d:45:6d:
0b:e6:e3:39:07:3c:77:85:cd:29:06:7a:a4:fc:0d:ac:4b:60:
73:e4:68:25:67:b2:dc:d0:55:5e:7d:2f:e5:ef:91:17:3d:f9:
eb:13:b9:a9:10:b7:26:92:98:03:48:bc:1c:33:6a:20:dc:48:
03:8f:22:1c:70:fa:ec:c0:44:61:bd:76:f1:d3:9f:7c:b3:ac:
e9:03:e7:1e:c0:6e:4f:20:3f:6a:c5:bb:3d:fc:d7:dc:96:83:
f8:38:86:01:49:9b:2d:e3:ea:0c:03:19:aa:59:a4:eb:86:ab:
5e:19:e7:05:6e:61:68:ce:bb:1d:5e:d2:ac:d0:45:4f:dc:c6:
b4:e0:de:c8:97:5e:e7:5c:2c:45:e8:5f:37:3b:04:1f:1e:a0:
8d:8e:c7:47:e9:6c:78:6d:df:50:20:44:92:81:31:47:de:42:
89:ea:0c:42:33:c3:84:aa:31:3d:86:5d:e7:87:28:e4:6a:3e:
a9:c1:a0:1b:6d:57:e7:91:99:de:93:84:9b:0b:5c:52:5f:68:
55:14:31:e6:6f:a0:3b:df:cf:16:0c:55:ea:4f:ad:07:51:15:
f6:13:bc:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 8 07:26:00 2024 by rpki-client on console-fra.rpki-client.org