Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/df8wwMKvn4Bw0c7C_vqOgcEBUHM.roa
File: df8wwMKvn4Bw0c7C_vqOgcEBUHM.roa (raw, json)
Hash identifier: iJRUmI4vs1eRlbe8A8LFaC/2nrEiLEC8L0Q9xjXlvkY=
Subject key identifier: 75:FF:30:C0:C2:AF:9F:80:70:D1:CE:C2:FE:FA:8E:81:C1:01:50:73
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018FA912A62FB627F27C305B395D01CB1888
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/df8wwMKvn4Bw0c7C_vqOgcEBUHM.roa
Signing time: Fri 24 May 2024 05:28:42 +0000
ROA not before: Fri 24 May 2024 05:28:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215419
IP address blocks: 81.29.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Oct 2024 09:54:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a9:12:a6:2f:b6:27:f2:7c:30:5b:39:5d:01:cb:18:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: May 24 05:28:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75ff30c0c2af9f8070d1cec2fefa8e81c1015073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d5:0a:35:ed:0e:c6:c6:b6:1c:c1:ee:0a:f2:
54:8d:62:30:b9:45:2e:82:55:99:10:4b:62:f8:99:
1c:db:fa:3a:71:1b:03:f6:21:37:ee:d1:6f:85:bc:
e2:97:4e:80:74:7d:4c:62:2e:e4:4f:3a:52:3b:79:
8c:c8:c2:74:d4:38:10:dd:0e:42:64:c0:c8:84:69:
49:ab:b8:b3:51:60:a6:2e:00:b6:82:28:ba:0a:69:
e2:88:6e:83:57:ef:5b:0b:c4:0a:71:0a:4e:15:f8:
a9:7d:9e:98:45:cd:a0:8b:12:48:8a:ca:83:8f:7e:
50:20:32:8c:28:e4:94:f6:af:4c:47:9b:18:67:8c:
d4:ea:a5:2e:ae:76:42:29:13:f7:bf:ee:ab:8c:c6:
24:e5:7d:05:5d:04:01:70:ab:e9:8e:b5:67:f1:5b:
22:3c:f2:0e:26:ed:de:2b:e3:a9:45:ca:c8:78:31:
3a:4b:d7:d4:25:0d:a2:1f:c6:e0:b0:33:22:27:ae:
22:04:a1:a2:26:cd:0c:2b:cf:18:73:b6:92:fc:b3:
16:d5:df:65:96:cd:7f:83:3b:cd:d1:aa:b3:15:36:
de:e3:ee:30:e6:60:2a:c9:fd:33:c2:c0:4b:ba:74:
15:56:ba:54:dc:71:89:e9:51:2f:4d:eb:68:9b:3a:
a7:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:FF:30:C0:C2:AF:9F:80:70:D1:CE:C2:FE:FA:8E:81:C1:01:50:73
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/df8wwMKvn4Bw0c7C_vqOgcEBUHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.158.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:91:5d:ca:6a:a8:f6:9e:09:b0:bf:34:6b:78:46:e3:07:21:
e2:03:d9:b1:3f:61:fd:40:e4:57:7a:0d:49:57:be:7f:d4:43:
39:06:66:20:b8:80:2e:e3:0e:39:a9:1a:a6:31:5a:46:e2:3d:
fd:65:49:7c:ea:3d:ce:ff:88:15:8d:d0:6a:c8:66:24:b1:ed:
5f:5c:62:ed:57:7e:67:70:1a:55:eb:70:60:e1:bd:2d:2c:ea:
7e:75:7c:64:6c:d1:cd:7d:3d:98:e4:ee:87:ed:98:de:05:99:
6f:72:71:02:5f:b6:fe:6e:05:6f:cc:85:3d:cc:84:cd:e2:ab:
17:30:72:c8:b7:ad:bd:44:b5:17:2c:2e:e8:07:f2:54:ec:37:
e1:81:5f:16:6d:b0:0b:36:55:45:1d:56:eb:64:c6:02:1a:96:
b2:fd:57:7b:a2:2f:b0:c4:73:d3:9d:6a:31:40:10:33:0c:0e:
c4:a8:c2:6c:41:04:79:71:c2:33:28:44:a5:32:a2:2f:b4:d8:
49:46:93:bd:65:08:d4:f9:9e:77:22:7c:cd:cd:82:71:ab:fc:
6e:63:ac:0b:c2:cb:19:de:56:aa:a2:1f:11:55:af:da:4c:90:
cf:90:88:e9:4a:c1:12:d9:32:84:4e:6c:ba:8b:c2:0d:8e:27:
02:8c:98:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 28 12:17:12 2024 by rpki-client on console-ams.rpki-client.org