Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/nNQQTYkDkjbQQeAsmFaNpqQmv7E.roa
File: nNQQTYkDkjbQQeAsmFaNpqQmv7E.roa (raw, json)
Hash identifier: oioCl30zKHS+hbK9UpAQoHTSPUnvZoev68oh17n/h9I=
Subject key identifier: 9C:D4:10:4D:89:03:92:36:D0:41:E0:2C:98:56:8D:A6:A4:26:BF:B1
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018A834263430953C053B4356381111988D8
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/nNQQTYkDkjbQQeAsmFaNpqQmv7E.roa
Signing time: Mon 11 Sep 2023 08:01:20 +0000
ROA not before: Mon 11 Sep 2023 08:01:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211014
IP address blocks: 81.29.158.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:83:42:63:43:09:53:c0:53:b4:35:63:81:11:19:88:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Sep 11 08:01:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9cd4104d89039236d041e02c98568da6a426bfb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:27:83:c0:47:d6:7f:9b:94:f7:71:09:a8:f0:
85:73:4e:39:43:0d:d5:cd:a3:00:be:88:7b:e9:bd:
bd:5d:95:f5:d0:5d:b5:fd:5f:a3:a6:f5:6c:0e:3b:
36:88:40:ea:7a:a0:6d:ee:b6:8d:cb:81:6e:c8:15:
d5:bd:55:ac:8a:3f:97:de:c1:89:50:9e:03:2d:4b:
b7:a0:6c:90:dc:31:73:ed:a4:46:28:c9:fe:d8:e3:
53:f1:e4:e3:ce:c1:2f:97:7c:c9:64:ce:43:00:2e:
61:f8:ad:4e:5f:62:b8:23:07:9d:67:51:27:d1:2a:
ce:38:92:a7:11:7f:ad:f3:fe:59:76:26:7e:b2:3a:
a3:59:fd:7b:3c:0e:11:83:ee:48:f0:61:ee:df:37:
91:95:59:25:bf:68:7f:2f:fb:cb:d4:28:f0:11:e2:
a9:0c:18:fd:1b:9a:8c:7d:6a:21:04:6f:ae:00:da:
f7:90:40:6c:1d:cf:8d:e9:bd:47:89:a2:09:7a:9e:
d3:e7:bf:f5:08:10:ba:3d:44:ed:db:b3:1d:3b:14:
24:11:3c:7d:57:6e:10:0c:f4:7e:65:a3:b5:57:fb:
72:e9:64:60:85:a1:37:21:d6:bd:42:e8:ad:12:d7:
61:7d:4d:bb:2c:6e:69:0d:50:9b:f1:d8:87:1a:c7:
0a:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:D4:10:4D:89:03:92:36:D0:41:E0:2C:98:56:8D:A6:A4:26:BF:B1
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/nNQQTYkDkjbQQeAsmFaNpqQmv7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.158.0/24
Signature Algorithm: sha256WithRSAEncryption
02:8f:14:dd:96:a5:54:be:40:a1:67:d7:a0:19:ca:8c:b3:13:
0d:6f:40:44:79:68:da:2e:0c:ea:91:04:05:4f:12:58:ca:99:
6c:97:60:d6:e3:24:c5:df:f4:fb:28:ee:00:97:25:21:6d:0e:
62:de:68:95:f8:d0:32:c0:4a:f9:41:f4:36:6a:5d:02:5e:34:
28:aa:57:f9:d9:70:a1:55:25:69:99:82:76:0d:4f:37:13:7a:
b9:17:47:eb:4c:86:d5:97:e9:f7:77:49:e9:4c:fd:13:3c:54:
1d:5f:dd:ca:3c:a3:7b:8e:0c:f0:a7:a7:01:ce:7c:0a:fa:33:
f5:96:ce:54:00:1b:34:c8:35:21:d8:61:31:b8:f8:ad:d0:d0:
e2:cc:7d:8d:b4:bb:a8:ae:67:5f:16:44:d4:27:82:4d:11:b0:
0b:07:9a:b0:37:e3:9b:da:da:4c:3d:b6:e7:b3:4f:61:ea:94:
65:56:89:c2:32:22:28:07:55:52:b0:c9:46:f9:22:19:a7:18:
66:96:3b:12:54:94:dd:8b:57:03:7f:a8:08:e1:9d:7c:ee:53:
2a:98:84:11:4d:42:9f:24:3e:5a:30:76:8b:6e:12:12:4c:d1:
04:72:93:6a:c7:d0:60:69:71:9a:64:0c:77:bd:55:b6:22:a1:
cc:4a:54:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 9 06:14:26 2023 by rpki-client on console-ams.rpki-client.org