Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/iRa7mIozOeeLFCgrdMnRlMaNZrY.roa
File: iRa7mIozOeeLFCgrdMnRlMaNZrY.roa (raw, json)
Hash identifier: MdBN+4rWyLLcM9dcVtRFP4MNXjobqf7NPUZ9c3OxeP8=
Subject key identifier: 89:16:BB:98:8A:33:39:E7:8B:14:28:2B:74:C9:D1:94:C6:8D:66:B6
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018CE7DB26B86B0AF4A74A282C7FA9315DB7
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/iRa7mIozOeeLFCgrdMnRlMaNZrY.roa
Signing time: Mon 08 Jan 2024 06:55:48 +0000
ROA not before: Mon 08 Jan 2024 06:55:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200482
IP address blocks: 81.29.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Feb 2024 14:53:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e7:db:26:b8:6b:0a:f4:a7:4a:28:2c:7f:a9:31:5d:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jan 8 06:55:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8916bb988a3339e78b14282b74c9d194c68d66b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:39:e8:19:fb:78:a3:78:a7:e8:9b:d1:fc:af:
9d:81:6f:48:29:0e:4a:4e:63:85:4f:54:92:cc:42:
11:8f:32:1c:a3:a7:4d:dd:e9:ab:da:1a:76:d0:34:
17:62:97:84:79:f5:dd:fd:b5:5b:ab:0c:6f:6f:f9:
dd:97:02:5f:61:a0:3b:f5:9a:af:93:c2:a7:89:ee:
65:6d:b7:3d:06:90:e6:07:be:06:66:d2:88:80:d1:
dd:ad:8a:ed:d1:a1:7e:af:d6:43:18:b8:54:22:95:
07:06:d3:ab:b3:0a:70:3e:52:16:30:11:5b:b9:55:
74:93:e9:dd:52:a5:ee:aa:86:01:42:48:f5:f4:e1:
ad:32:6b:a4:22:60:46:a4:cf:81:e9:58:af:c4:cc:
c4:7f:b4:f1:d4:85:5d:14:1d:0e:63:d9:02:39:29:
4b:a6:d2:59:0d:5e:5a:34:05:cf:ab:15:1f:54:c6:
19:77:8f:4e:fe:b7:1f:14:ee:0a:94:a1:d1:d8:63:
c0:d4:92:79:77:72:73:c1:57:19:52:d1:27:f5:d3:
83:3a:e9:65:0e:aa:57:78:23:83:a9:8e:b5:13:28:
72:4d:66:6c:56:86:59:95:e5:1b:b8:fd:83:29:1e:
bb:09:3c:33:60:4d:f3:df:5b:93:bf:e8:67:02:a6:
36:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:16:BB:98:8A:33:39:E7:8B:14:28:2B:74:C9:D1:94:C6:8D:66:B6
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/iRa7mIozOeeLFCgrdMnRlMaNZrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.153.0/24
Signature Algorithm: sha256WithRSAEncryption
69:be:c3:a9:66:1e:de:00:10:b1:af:40:62:27:1f:70:ab:be:
2a:ef:0c:9c:43:4a:57:e4:aa:31:c8:ac:5f:25:cc:a0:10:25:
e0:41:50:71:72:5f:e4:13:94:45:c2:8e:1c:8e:d6:85:42:a3:
83:0f:98:ef:47:5e:07:2f:61:07:07:5c:54:35:7d:19:c1:df:
3f:54:49:b8:7e:10:39:62:35:df:d9:57:27:19:b4:f2:d0:8a:
d3:a6:29:9b:89:64:a5:97:2f:bf:7c:61:f4:24:89:4e:bb:8e:
38:4a:01:53:bd:c8:fe:fe:c1:34:3f:40:19:27:5b:bc:18:f2:
03:0a:99:2c:29:ec:50:7b:65:91:a7:77:a1:80:06:5a:6b:5a:
25:b2:7e:e2:9a:9d:a2:02:56:25:17:1d:35:7f:6d:c7:64:a6:
74:d8:d2:9f:18:7b:b7:f2:5d:85:e3:30:7a:95:37:a3:11:b7:
34:bc:b9:f0:86:0e:ad:da:59:84:8e:62:32:a6:01:52:ab:48:
3a:45:6b:f9:19:aa:fe:0b:ae:6c:5d:9f:82:23:ce:07:de:47:
48:e6:65:01:96:5d:12:e8:ff:4c:cf:59:f1:62:12:c7:2b:8c:
a0:72:09:8b:07:ad:0a:8d:02:f3:3f:31:fe:c1:fb:94:29:47:
81:cb:15:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:36 2024 by rpki-client on console-ams.rpki-client.org