Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/xRq12Mg38Hi5tnXMbobJw74PQ7g.roa
File: xRq12Mg38Hi5tnXMbobJw74PQ7g.roa (raw, json)
Hash identifier: EduWAQoFc5oJshwerQTbSPVijrkwc/rXL4ruOEr3Xdw=
Subject key identifier: C5:1A:B5:D8:C8:37:F0:78:B9:B6:75:CC:6E:86:C9:C3:BE:0F:43:B8
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018C670936C2B87F4CC567F59E63485FB6EB
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/xRq12Mg38Hi5tnXMbobJw74PQ7g.roa
Signing time: Thu 14 Dec 2023 06:35:06 +0000
ROA not before: Thu 14 Dec 2023 06:35:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21769
IP address blocks: 81.29.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Dec 2023 06:28:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:67:09:36:c2:b8:7f:4c:c5:67:f5:9e:63:48:5f:b6:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Dec 14 06:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c51ab5d8c837f078b9b675cc6e86c9c3be0f43b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:86:02:f7:12:bb:02:26:25:2f:d8:07:9d:57:
b2:4e:63:9e:d1:7e:71:16:29:83:49:b2:7f:01:ea:
ab:63:fa:ce:d8:a7:6e:21:a5:50:cf:25:9a:6c:97:
a4:d0:b6:11:83:c5:7f:6f:4a:32:f6:41:18:96:d4:
07:1a:12:40:1f:2d:d2:e4:93:fa:f0:c8:0b:1a:be:
18:e7:5e:99:ca:18:05:8b:ec:73:31:bc:1b:7d:af:
34:dd:56:ac:bb:2e:4b:0f:5f:1d:b6:9e:cc:ed:16:
dc:2a:15:36:1e:48:8a:45:14:8c:23:b0:5a:f0:75:
53:09:69:cf:58:24:cf:f6:99:85:aa:36:49:00:32:
cd:c1:0c:01:00:31:a7:49:8e:41:50:43:c2:ba:6a:
be:dc:86:38:c4:ee:cf:8e:f2:7c:e0:65:6e:2d:e9:
37:ff:8e:38:9c:27:86:8c:f3:b5:69:d8:58:ad:02:
f2:8a:33:da:e9:15:fd:70:a0:65:65:28:33:c0:25:
63:e5:86:db:e2:0b:cc:04:30:55:d6:a6:ea:92:52:
10:eb:a5:da:9b:aa:0c:0d:15:02:b0:da:48:57:a8:
21:09:bf:03:6f:d2:75:e5:29:e5:91:94:e0:c0:6b:
43:0d:5e:b3:56:05:67:e9:4c:ca:14:6a:45:35:bb:
9a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:1A:B5:D8:C8:37:F0:78:B9:B6:75:CC:6E:86:C9:C3:BE:0F:43:B8
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/xRq12Mg38Hi5tnXMbobJw74PQ7g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.154.0/24
Signature Algorithm: sha256WithRSAEncryption
01:d6:f3:ba:76:cf:ca:91:a1:77:59:45:06:d1:15:29:59:9a:
71:8a:da:4c:2c:98:27:63:93:96:e6:10:76:9a:bd:a6:78:5f:
50:71:2d:30:22:50:5b:00:50:4d:f5:92:39:87:46:b8:5e:f3:
35:ce:82:06:24:89:3c:b6:ed:66:b5:64:53:d1:63:69:c0:88:
92:a2:41:9f:2c:32:73:7f:df:0b:6f:b4:33:38:5e:8a:95:89:
9d:20:4b:4b:f6:04:d7:7e:c8:ea:0f:10:54:66:06:a0:9e:71:
e6:69:a5:d0:26:cd:c8:c6:dd:84:20:26:29:09:67:0a:e9:da:
c8:8b:d5:4d:d9:11:c2:18:4a:99:49:99:41:6a:3c:e3:2e:e5:
50:00:e0:08:d3:8d:f7:bf:01:d1:b5:62:c3:86:a2:ec:f3:0c:
7c:14:22:59:07:a4:d7:89:8b:f8:bd:bc:65:29:df:c6:90:18:
2f:14:79:92:fb:56:02:0b:ff:90:d3:34:bc:77:07:d4:1f:1d:
f5:db:b8:c9:68:41:af:52:72:de:fb:13:35:f0:c9:18:d1:c6:
07:a1:8a:75:b7:c8:f8:ab:c2:90:1c:3f:51:68:c3:df:e9:4d:
79:37:bd:d0:8e:4b:f2:47:aa:49:a9:81:b5:33:67:fe:65:69:
24:a6:35:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:36 2024 by rpki-client on console-ams.rpki-client.org