Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/hOD2fsdtlkTh2BWbiRlIkzhOz94.roa
File: hOD2fsdtlkTh2BWbiRlIkzhOz94.roa (raw, json)
Hash identifier: YLqEY5p9VReavq/FN8CTxYPCEacPb2xG5g5BQ0SDRyg=
Subject key identifier: 84:E0:F6:7E:C7:6D:96:44:E1:D8:15:9B:89:19:48:93:38:4E:CF:DE
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018B199633828B34705F912F63C4C73A859B
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/hOD2fsdtlkTh2BWbiRlIkzhOz94.roa
Signing time: Tue 10 Oct 2023 12:35:55 +0000
ROA not before: Tue 10 Oct 2023 12:35:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211014
IP address blocks: 81.29.158.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:19:96:33:82:8b:34:70:5f:91:2f:63:c4:c7:3a:85:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Oct 10 12:35:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84e0f67ec76d9644e1d8159b89194893384ecfde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:01:ef:4e:fe:0e:f4:a5:5c:24:e4:1b:ab:ca:
b1:fe:10:2c:74:af:88:67:4e:94:c5:35:48:d9:4c:
f6:4e:36:ae:78:1f:49:4f:60:dd:bf:26:34:a1:6d:
9d:45:cb:15:19:a7:08:77:9d:25:d6:d5:fa:47:65:
fb:21:e1:1a:04:54:d2:94:fd:f0:c4:21:bb:15:b4:
db:57:08:ee:49:0a:11:43:53:bf:9d:cd:b4:b5:31:
b9:e6:5a:b0:76:81:f5:b7:0a:6b:09:6c:35:84:b8:
ce:d3:99:dd:0a:c0:61:60:90:99:36:e4:8e:bc:bf:
23:18:99:35:a9:ef:54:d2:f6:6a:96:16:29:33:b5:
65:3b:66:ec:04:03:7c:63:1e:1f:38:9a:52:15:a5:
0b:ab:f6:82:ac:85:16:8b:14:86:5f:11:87:67:06:
03:73:f8:93:8e:16:c8:d4:28:8b:ce:35:64:2a:2b:
da:c3:24:b0:8c:0e:93:e5:71:94:c1:82:89:ff:d4:
7e:e0:f1:95:98:dc:28:f6:ca:45:9f:f1:e8:f1:30:
f6:a8:53:2d:91:ce:34:15:dd:fb:90:23:f9:a8:fb:
88:56:b0:d3:8b:f7:9c:bb:e7:50:c6:d8:3b:51:b5:
dc:03:46:d9:91:2d:78:8c:c5:a1:23:31:3a:ff:e4:
5d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:E0:F6:7E:C7:6D:96:44:E1:D8:15:9B:89:19:48:93:38:4E:CF:DE
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/hOD2fsdtlkTh2BWbiRlIkzhOz94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.158.0/24
Signature Algorithm: sha256WithRSAEncryption
41:ef:15:fe:70:5e:12:d2:ba:ba:66:25:a6:f0:5a:a6:62:e3:
be:cb:17:96:a4:c1:15:ee:97:ac:ad:18:b3:65:bd:84:11:84:
99:10:cd:c3:ba:c1:3f:90:59:fb:e2:a5:a9:5e:3e:53:21:b1:
91:f9:bf:2c:4b:4e:36:69:8e:b5:52:28:57:8b:10:89:69:43:
6c:b1:78:0c:ac:1b:c5:b4:bd:d7:f8:23:ea:93:0e:cd:58:67:
19:dc:44:74:86:de:09:b1:fc:47:8d:fd:78:e0:85:aa:e9:39:
52:d9:93:04:1c:be:89:96:5e:ca:80:eb:dc:af:7a:d7:ae:26:
49:5d:61:a7:c7:5e:54:80:cd:f5:d6:af:a1:69:92:d2:96:ba:
98:6f:47:a6:07:95:83:f2:7d:05:0e:45:31:1e:7b:ee:ab:a1:
1f:50:d3:e3:df:8d:87:42:d1:aa:06:d8:70:c5:50:fd:e2:a1:
f6:18:de:13:c7:6a:80:98:3d:f2:cc:3e:ab:52:ab:3c:68:b6:
3f:cf:9c:c7:86:1d:b4:e8:5c:cf:b2:55:0c:57:0b:be:19:72:
23:b8:71:64:79:75:8e:44:b9:25:97:1c:36:4c:6f:48:57:63:
4c:db:53:cc:5e:8f:72:74:5f:dd:05:52:24:b6:ad:95:71:b4:
71:84:32:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:43 2024 by rpki-client on console-ams.rpki-client.org