Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/iKByxNNjqyxcIFujhta5mldRl7k.roa
File: iKByxNNjqyxcIFujhta5mldRl7k.roa (raw, json)
Hash identifier: hmu/oVnXKAVkenu+DTQ/iAU08N9AUjH/Pg227bcd1gE=
Subject key identifier: 88:A0:72:C4:D3:63:AB:2C:5C:20:5B:A3:86:D6:B9:9A:57:51:97:B9
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018E9D47FFCA67D2420D39126E5FC1B9FF16
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/iKByxNNjqyxcIFujhta5mldRl7k.roa
Signing time: Tue 02 Apr 2024 05:28:45 +0000
ROA not before: Tue 02 Apr 2024 05:28:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215594
IP address blocks: 81.29.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 May 2024 13:42:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:9d:47:ff:ca:67:d2:42:0d:39:12:6e:5f:c1:b9:ff:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Apr 2 05:28:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=88a072c4d363ab2c5c205ba386d6b99a575197b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c0:18:88:9d:a5:35:02:7c:71:e1:0d:8d:ab:
a8:44:96:dc:86:de:92:43:39:2e:c5:51:a3:52:eb:
cd:42:73:61:9b:e9:77:58:57:5e:09:a8:39:a8:ef:
cc:d7:3a:6e:24:5c:ee:5e:4f:43:76:26:01:33:d9:
68:54:ed:73:d8:6f:ad:76:55:d7:ff:c9:60:4b:48:
83:b1:63:6e:a3:5c:12:72:37:98:a5:e2:c8:20:d2:
42:5b:ed:b4:75:9c:f4:d1:4b:0d:20:2c:51:22:ce:
c4:bc:59:0f:55:4a:65:50:a5:32:ef:c3:7a:aa:bf:
4c:d4:5f:a9:89:56:dc:93:ab:24:91:d0:5a:1c:c8:
11:36:79:dd:69:ca:7d:2d:70:e2:60:32:e1:0f:66:
0e:e7:25:db:88:cf:15:70:c3:e5:fa:16:fc:9b:1c:
93:95:3c:b1:e9:6e:8a:bc:d5:4a:4c:00:96:07:e3:
d7:8c:ae:27:b4:84:7c:5d:61:b6:c1:25:8f:16:53:
07:22:ea:78:b7:b5:a4:af:20:5d:e3:89:23:6e:93:
d1:f7:dd:b3:08:47:3d:44:eb:d4:db:4c:0d:b2:cf:
35:c6:1e:8a:e4:e3:8b:c6:f9:15:90:30:66:be:1f:
9a:c9:7d:18:1d:79:15:67:64:df:36:82:04:b0:6b:
1d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:A0:72:C4:D3:63:AB:2C:5C:20:5B:A3:86:D6:B9:9A:57:51:97:B9
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/iKByxNNjqyxcIFujhta5mldRl7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.158.0/24
Signature Algorithm: sha256WithRSAEncryption
29:75:11:6e:b5:99:c7:24:5a:5c:42:71:ba:65:d2:ec:06:49:
8a:0f:6a:22:81:12:e4:04:81:7d:16:eb:59:7a:7c:5a:9a:00:
f5:81:15:29:ef:77:e6:19:65:cd:de:32:ad:6e:b8:cd:15:a8:
b5:f3:21:cd:8a:34:cd:db:7c:bd:fe:69:62:fd:5f:8c:a7:bd:
52:a7:3c:de:2d:04:40:2f:8a:f0:ab:7f:e7:d5:81:49:a0:44:
e8:57:34:ac:2b:da:62:d6:9b:72:72:51:bb:5a:0f:f4:a9:f2:
cf:73:be:1d:2e:eb:e5:b1:ea:e2:18:6d:a4:e8:00:c8:fc:79:
a9:f8:9a:e2:81:ab:42:18:56:21:bb:3d:76:05:33:de:15:24:
9e:57:9a:c2:75:dc:6b:68:ac:65:29:44:31:c8:3b:be:7e:0e:
77:60:57:68:ac:99:6a:03:18:76:31:ec:75:36:c4:50:7a:a5:
4c:04:3d:3d:79:9b:3a:43:4c:1d:db:93:d4:06:24:df:f4:ed:
25:2e:30:cd:d1:cc:dd:51:01:02:cb:91:2b:9b:b2:c3:78:bc:
cc:d5:41:28:88:88:f1:db:4d:5e:ed:20:93:83:fa:c7:98:e1:
83:5c:ec:51:d7:87:97:10:20:7a:a9:1e:6e:3c:4c:dc:f5:77:
e4:47:62:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 17:33:11 2024 by rpki-client on console-fra.rpki-client.org