Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/qAzHasBj8-2shlF-KrrHMsAZOEI.roa
File: qAzHasBj8-2shlF-KrrHMsAZOEI.roa (raw, json)
Hash identifier: i/YAuuoFwdlkUSg1M8osEGvskgqigKZeZVYmjhHlMkI=
Subject key identifier: A8:0C:C7:6A:C0:63:F3:ED:AC:86:51:7E:2A:BA:C7:32:C0:19:38:42
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018CCA2A43DCBA734DFD34813D366241B4C8
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/qAzHasBj8-2shlF-KrrHMsAZOEI.roa
Signing time: Tue 02 Jan 2024 12:33:36 +0000
ROA not before: Tue 02 Jan 2024 12:33:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15731
IP address blocks: 81.29.151.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:43:dc:ba:73:4d:fd:34:81:3d:36:62:41:b4:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jan 2 12:33:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a80cc76ac063f3edac86517e2abac732c0193842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:4b:e2:7b:7e:d8:0a:58:d9:d5:63:21:14:dc:
24:2d:52:c5:79:9c:d8:2e:09:74:d3:8d:7c:88:24:
ca:00:1c:f5:65:29:33:78:aa:77:e1:18:4a:98:3b:
05:e7:4e:56:7f:67:aa:f0:3b:2a:26:ad:74:63:ec:
25:5a:d5:ff:4e:72:da:4a:11:30:31:bd:ae:eb:ea:
20:6a:e0:56:52:d4:49:8c:61:a7:a8:77:91:da:34:
4a:d4:c9:aa:b5:7a:26:2c:a1:1d:8e:98:6c:69:be:
4e:27:26:12:a8:02:b8:cf:0a:71:35:0c:de:05:07:
71:46:f8:35:21:0c:b1:91:30:21:a6:19:44:e4:da:
ee:1d:d5:31:2a:40:82:f0:b3:10:11:dd:0f:2d:ef:
f7:5a:ba:fc:10:62:8f:c8:56:42:8e:a6:3a:6e:f5:
2a:6e:17:37:88:4d:90:22:f4:ef:65:67:1e:7e:83:
ea:8f:29:ac:d1:2e:5a:25:b1:df:74:d6:44:e4:49:
39:10:0b:00:85:64:76:6f:7a:e9:dd:a8:b4:6c:21:
20:e2:40:31:2c:ca:b8:07:f2:9c:1f:b0:7e:3d:d1:
60:b2:8e:56:6e:07:fd:ed:24:95:9e:50:ef:6e:7d:
68:8e:ac:0f:90:11:41:4b:85:ca:53:ed:9b:ee:e8:
27:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:0C:C7:6A:C0:63:F3:ED:AC:86:51:7E:2A:BA:C7:32:C0:19:38:42
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/qAzHasBj8-2shlF-KrrHMsAZOEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.151.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:8d:61:56:3d:c8:24:22:ee:25:bd:6d:cf:a4:32:13:8b:e1:
71:8d:bd:97:97:1d:5a:3c:5e:89:86:2d:3f:fd:53:61:c4:ef:
64:ef:d7:e1:29:95:f7:4d:32:d3:93:e6:3a:9a:99:ca:66:b7:
04:6a:65:28:b4:fa:03:00:11:22:4f:3a:64:25:46:c3:d4:f7:
ed:57:40:7d:82:07:f0:ca:c5:1a:52:48:36:65:d1:f6:45:71:
34:8e:c6:df:2d:76:4f:a8:07:7e:bf:dd:74:61:17:8e:9f:66:
43:da:64:fe:2c:83:ba:39:f3:f4:33:77:24:47:2c:d4:04:2d:
73:e4:bd:52:e5:9d:dc:9c:3c:4e:a4:0a:61:04:ca:71:63:9b:
94:94:06:68:c8:cd:c7:9f:2e:9c:62:d3:99:7d:b2:16:30:cf:
12:71:3a:19:02:10:da:a2:62:4d:25:5d:7f:3f:5f:c7:bf:0d:
2f:fb:12:9f:69:10:b9:b8:18:4f:a0:f6:aa:c1:d5:a9:65:24:
a5:29:2a:11:3b:ef:8e:ba:2e:92:21:27:36:49:93:de:33:97:
1f:38:28:de:75:6a:2d:70:31:32:2d:44:da:f9:9c:77:26:b8:
25:6b:57:77:0d:b5:86:e2:69:33:37:b4:39:ae:63:b3:e4:9a:
23:e9:86:49
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzKKkPcunNN/TSBPTZiQbTIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTUxNjk0YzRkNDZiNGZjYzAyZmFlNzFlNWRiOTQyYTcx
MDhlNDcwHhcNMjQwMTAyMTIzMzM2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhODBjYzc2YWMwNjNmM2VkYWM4NjUxN2UyYWJhYzczMmMwMTkzODQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjkvie37YCljZ1WMhFNwkLVLFeZzY
Lgl00418iCTKABz1ZSkzeKp34RhKmDsF505Wf2eq8DsqJq10Y+wlWtX/TnLaShEw
Mb2u6+ogauBWUtRJjGGnqHeR2jRK1MmqtXomLKEdjphsab5OJyYSqAK4zwpxNQze
BQdxRvg1IQyxkTAhphlE5NruHdUxKkCC8LMQEd0PLe/3Wrr8EGKPyFZCjqY6bvUq
bhc3iE2QIvTvZWcefoPqjyms0S5aJbHfdNZE5Ek5EAsAhWR2b3rp3ai0bCEg4kAx
LMq4B/KcH7B+PdFgso5Wbgf97SSVnlDvbn1ojqwPkBFBS4XKU+2b7ugnhQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKgMx2rAY/PtrIZRfiq6xzLAGThCMB8GA1UdIwQY
MBaAFEnlFpTE1GtPzAL65x5duUKnEI5HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQt
MTkxODliM2M5YzdkLzEvcUF6SGFzQmo4LTJzaGxGLUtyckhNc0FaT0VJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQtMTkxODliM2M5Yzdk
LzEvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUR2XMA0G
CSqGSIb3DQEBCwUAA4IBAQAujWFWPcgkIu4lvW3PpDITi+Fxjb2Xlx1aPF6Jhi0/
/VNhxO9k79fhKZX3TTLTk+Y6mpnKZrcEamUotPoDABEiTzpkJUbD1PftV0B9ggfw
ysUaUkg2ZdH2RXE0jsbfLXZPqAd+v910YReOn2ZD2mT+LIO6OfP0M3ckRyzUBC1z
5L1S5Z3cnDxOpAphBMpxY5uUlAZoyM3Hny6cYtOZfbIWMM8ScToZAhDaomJNJV1/
P1/Hvw0v+xKfaRC5uBhPoPaqwdWpZSSlKSoRO++Oui6SISc2SZPeM5cfOCjedWot
cDEyLUTa+Zx3Jrgla1d3DbWG4mkzN7Q5rmOz5Joj6YZJ
-----END CERTIFICATE-----
Generated at Wed Jan 3 07:52:37 2024 by rpki-client on console-ams.rpki-client.org