Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/daIe3uj59hp6bOYUgYjEb02r3Ig.roa
File: daIe3uj59hp6bOYUgYjEb02r3Ig.roa (raw, json)
Hash identifier: exdawmAGrV+5DfzGnzO5WTaHpEwyALgyozbC5td2r3c=
Subject key identifier: 75:A2:1E:DE:E8:F9:F6:1A:7A:6C:E6:14:81:88:C4:6F:4D:AB:DC:88
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0189A561563A826F82E1A705D0D32521C6B5
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/daIe3uj59hp6bOYUgYjEb02r3Ig.roa
Signing time: Sun 30 Jul 2023 05:59:26 +0000
ROA not before: Sun 30 Jul 2023 05:59:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 81.29.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 31 Jul 2023 13:07:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:a5:61:56:3a:82:6f:82:e1:a7:05:d0:d3:25:21:c6:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jul 30 05:59:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75a21edee8f9f61a7a6ce6148188c46f4dabdc88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:41:1f:ed:32:1a:a3:41:c6:6a:6c:09:dd:50:
ff:3e:a2:98:c4:a5:f8:de:c9:78:c4:eb:8b:d0:0b:
d5:53:9f:96:5f:94:37:6e:b5:54:ca:64:1e:da:cb:
4a:bd:8d:87:41:0e:d5:a8:0e:a7:b6:91:e0:78:b6:
a5:b3:bf:1c:30:8a:f9:fc:2e:06:c0:21:f1:37:0f:
18:6e:08:b0:49:3b:43:0c:3c:17:2f:e0:c0:ab:2b:
76:c9:ca:d3:c6:77:18:13:f5:13:8b:a2:5f:9d:ca:
90:38:f3:63:b4:6b:dc:b2:04:a1:21:56:04:19:22:
2a:5f:2f:12:d8:f4:ad:a2:9e:f9:44:84:25:56:c4:
16:0f:1b:15:de:97:98:65:17:04:96:d4:0a:73:c2:
ea:0b:2f:ef:34:58:9d:74:c7:83:f6:8b:9a:4b:dc:
ba:cd:8c:2d:fc:63:b9:91:7a:99:18:43:70:5d:30:
be:14:0f:c4:f1:cd:2b:ef:31:5b:53:7f:a6:05:0b:
dd:cb:de:a9:9c:0f:dc:36:0c:18:cc:d2:78:8e:a8:
aa:d1:bc:44:2a:e0:05:90:53:8a:2c:0c:dc:a0:9c:
fa:82:17:9f:98:2d:c7:76:33:35:71:89:fa:0d:d4:
01:7f:cd:2e:26:55:b0:28:6c:31:83:86:cf:3e:46:
ec:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:A2:1E:DE:E8:F9:F6:1A:7A:6C:E6:14:81:88:C4:6F:4D:AB:DC:88
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/daIe3uj59hp6bOYUgYjEb02r3Ig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.147.0/24
Signature Algorithm: sha256WithRSAEncryption
77:29:07:92:c8:c8:0d:12:87:b2:0d:95:b5:1d:33:ba:65:45:
13:d4:0d:6f:8f:91:69:e8:2b:a4:74:c6:1f:48:7d:24:a0:1a:
ec:a7:55:e8:2a:98:7c:7f:6c:ed:6c:4d:4e:19:3b:44:18:1d:
c0:5e:38:12:6d:96:60:d9:d4:24:df:eb:51:6f:d6:2a:cf:68:
93:ed:95:ba:53:e4:3e:94:84:ea:c4:5a:a2:f2:3e:be:95:b3:
5c:12:5a:90:97:87:cb:c8:51:01:4e:ed:f0:6f:19:c6:dc:54:
05:f4:40:4a:06:34:45:24:a1:7f:77:5b:08:78:e7:ee:4e:3d:
11:8d:f1:ae:90:4d:18:a6:72:e4:73:a5:50:b6:31:fb:f1:cb:
b9:f0:32:37:6b:f2:c6:24:50:f2:42:c2:3d:73:6a:a2:e4:26:
c7:d9:8e:76:df:25:cb:28:3c:da:e7:bd:a4:67:d8:37:d2:3a:
7c:c9:fe:79:2a:e5:4b:fc:28:78:92:63:7a:21:68:dc:ed:40:
aa:62:2b:b0:c4:75:b1:af:97:87:ac:41:da:15:66:81:f7:d0:
42:ba:8a:65:7b:77:63:1d:12:8e:d2:a0:4c:cf:70:ee:04:28:
3a:25:4c:98:de:b9:35:ea:5d:cb:be:ae:06:54:0c:b2:f9:31:
d4:44:14:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:40 2024 by rpki-client on console-fra.rpki-client.org