Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/ujmUwWdDVh_MbbSrGpkAacLA4Xo.roa
File: ujmUwWdDVh_MbbSrGpkAacLA4Xo.roa (raw, json)
Hash identifier: /ianeVOVT30UMJ/KaApVY5lA4tNuuWkkmNyKJXopsQo=
Subject key identifier: BA:39:94:C1:67:43:56:1F:CC:6D:B4:AB:1A:99:00:69:C2:C0:E1:7A
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0190D550C82CF56E59DBF1BAD8D7398E4AD0
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/ujmUwWdDVh_MbbSrGpkAacLA4Xo.roa
Signing time: Sun 21 Jul 2024 12:42:39 +0000
ROA not before: Sun 21 Jul 2024 12:42:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20860
IP address blocks: 81.168.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Aug 2024 12:23:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:d5:50:c8:2c:f5:6e:59:db:f1:ba:d8:d7:39:8e:4a:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jul 21 12:42:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba3994c16743561fcc6db4ab1a990069c2c0e17a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:40:3a:5e:8a:bb:e8:20:4c:d6:49:3b:77:2c:
c8:7b:63:54:86:ca:77:22:bc:b9:96:44:73:00:b3:
92:18:b4:f4:39:82:bf:5b:49:8f:67:29:ea:e6:b1:
2b:59:18:84:82:83:62:58:b4:ca:18:0c:57:13:e0:
cc:a4:1c:5b:1f:7c:ed:ac:df:79:c6:ea:5f:36:7b:
3f:e6:00:66:9d:7f:08:b0:16:5c:0e:df:dd:a5:5f:
c1:66:c0:e8:e3:11:28:72:e2:95:47:62:86:dc:72:
cc:57:c3:8b:82:a2:89:25:69:a5:2b:8e:2b:f3:4a:
13:64:20:fe:c8:cd:23:68:e8:a4:d6:78:41:50:b7:
56:a0:59:f0:a0:2d:40:e4:99:a1:f6:73:e8:4c:eb:
c4:5e:cd:43:86:8b:15:7c:17:22:3c:d6:27:31:ec:
19:23:ff:ad:9d:fc:82:dc:08:fd:9d:65:77:fe:71:
3c:cf:02:3c:4b:63:f2:67:7d:e2:23:31:cf:72:b4:
fa:89:be:6b:a4:12:f1:dd:87:83:bc:22:1c:f6:df:
8a:28:c6:bd:97:13:ec:1e:ae:c8:a7:41:d4:ea:df:
aa:8e:af:c5:7d:c8:be:f1:38:ef:83:85:59:c1:d2:
99:a8:d1:a6:1f:b9:4c:bd:6e:36:8f:18:2a:e3:47:
8f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:39:94:C1:67:43:56:1F:CC:6D:B4:AB:1A:99:00:69:C2:C0:E1:7A
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/ujmUwWdDVh_MbbSrGpkAacLA4Xo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.168.83.0/24
Signature Algorithm: sha256WithRSAEncryption
39:b3:29:ef:ba:25:f6:7e:85:37:68:07:43:8a:bc:64:e8:db:
f8:90:c1:6b:b6:5d:c3:3e:f2:47:d4:42:a8:5d:1c:d6:d7:fe:
17:54:75:89:6e:78:ad:09:e6:b9:34:46:42:91:b4:f2:15:50:
0d:e7:82:ce:3f:96:68:be:71:4e:08:1b:2c:08:d2:22:86:8b:
43:ef:66:df:f8:58:94:57:1b:2c:7d:ba:7d:86:ac:0b:00:3b:
38:32:62:e5:c0:80:54:59:88:b7:49:9a:e5:19:a2:a2:88:e7:
ab:11:18:5a:23:64:ee:db:fc:8f:34:30:bd:bf:8f:4b:b8:1c:
c8:52:e9:65:5f:19:0a:e7:c7:cd:e3:65:2e:f0:9b:dd:15:d0:
42:f8:0c:ca:a8:bc:33:4d:da:e4:68:8c:b4:dc:89:1b:fb:fb:
50:05:c2:7b:c6:37:fd:c6:84:a7:f2:45:1a:3b:ea:28:8e:27:
2f:c2:01:88:12:c8:a3:89:28:74:a4:db:1e:85:53:57:35:37:
af:6f:2f:c8:8e:7e:a0:6c:46:5c:16:07:ae:0d:15:d8:35:de:
5f:7c:11:fd:bd:36:3f:6b:f8:80:d1:1b:8a:7a:d3:30:6e:ba:
3c:55:8d:6a:36:f1:72:ef:d7:cc:d4:f9:b8:c0:f1:d2:fd:03:
e4:d4:f2:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:17:30 2025 by rpki-client