Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/3rUwF_uFojU3MK9Bp3etZGGJWDA.roa
File: 3rUwF_uFojU3MK9Bp3etZGGJWDA.roa (raw, json)
Hash identifier: 7KfKxWPHo/jL9ZzApGq795pwxfTfNI34vImAVU5k3XU=
Subject key identifier: DE:B5:30:17:FB:85:A2:35:37:30:AF:41:A7:77:AD:64:61:89:58:30
Certificate issuer: /CN=20a7fcbe59314c372b68f232223828b1e33a03ec
Certificate serial: 018BF7272CEEC80C0F585D68EF8F581BFBA9
Authority key identifier: 20:A7:FC:BE:59:31:4C:37:2B:68:F2:32:22:38:28:B1:E3:3A:03:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKf8vlkxTDcraPIyIjgoseM6A-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/3rUwF_uFojU3MK9Bp3etZGGJWDA.roa
Signing time: Wed 22 Nov 2023 13:10:21 +0000
ROA not before: Wed 22 Nov 2023 13:10:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199739
IP address blocks: 81.22.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f7:27:2c:ee:c8:0c:0f:58:5d:68:ef:8f:58:1b:fb:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20a7fcbe59314c372b68f232223828b1e33a03ec
Validity
Not Before: Nov 22 13:10:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=deb53017fb85a2353730af41a777ad6461895830
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ea:43:a5:02:03:11:ac:bf:0f:34:24:5b:cb:
a1:d8:c8:09:ee:13:e5:a0:48:1b:ba:8b:c4:98:86:
8c:df:67:d3:39:94:c0:69:36:99:a7:ff:bb:0a:7a:
cc:f6:6d:75:26:4f:46:d2:02:7e:51:35:d2:8a:a6:
01:78:ad:6c:db:4f:62:a5:a9:26:c1:ee:a5:18:57:
bc:9c:09:dd:3f:2a:12:a5:03:c7:af:d0:cd:6c:c4:
8a:92:2d:ce:17:05:d5:60:4e:16:35:be:7b:6f:a6:
ac:87:24:19:42:8e:04:9d:2b:35:69:30:a5:a6:a6:
fb:bc:97:b6:a1:ba:de:3b:1b:af:1f:04:85:cc:00:
51:19:cf:ce:fd:a4:b8:9b:80:2b:ab:50:9e:3f:ff:
b2:62:09:ae:93:92:17:6e:b8:84:74:08:3a:94:a6:
d7:37:dc:cc:dd:3e:1c:06:0f:df:3f:9e:60:ee:5b:
17:be:49:d8:1b:93:4a:d1:64:af:a3:29:66:14:de:
da:88:03:cf:47:0b:8c:b0:38:55:1d:5a:20:6c:76:
b5:15:eb:8c:02:33:f0:8e:00:92:bb:28:8a:44:4f:
79:77:19:8b:be:b4:e0:1e:a2:e1:da:a2:13:38:94:
b2:23:86:f1:d5:21:6d:d1:b1:6b:b7:3c:ed:c9:22:
91:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:B5:30:17:FB:85:A2:35:37:30:AF:41:A7:77:AD:64:61:89:58:30
X509v3 Authority Key Identifier:
keyid:20:A7:FC:BE:59:31:4C:37:2B:68:F2:32:22:38:28:B1:E3:3A:03:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKf8vlkxTDcraPIyIjgoseM6A-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/3rUwF_uFojU3MK9Bp3etZGGJWDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.33.0/24
Signature Algorithm: sha256WithRSAEncryption
00:aa:17:2b:5c:dd:ad:4c:66:45:e4:a1:7a:45:27:cf:3b:0d:
e3:2a:ed:ec:1a:ab:90:a1:2b:c2:b9:37:27:d7:8d:91:87:af:
e6:5d:98:9e:0e:1b:db:20:c9:cf:d5:cd:ae:d2:bf:0d:ca:f3:
28:57:3c:c9:64:3e:f3:34:af:8c:df:c6:c4:4d:f5:40:b1:15:
a8:99:3f:67:c8:91:9b:ee:d9:fe:28:0a:36:3d:f5:27:e0:1e:
84:bd:2c:92:d2:55:58:16:3a:af:ca:12:87:b8:25:43:00:00:
e2:77:e2:3e:8b:c4:86:2f:c1:10:f6:f5:aa:8f:05:25:97:01:
cf:d8:69:a7:97:46:4e:73:55:0b:fd:61:aa:43:1d:07:db:26:
4f:ad:de:ed:d2:c3:8d:b9:d4:49:a4:91:74:61:c4:36:d7:7c:
d6:0f:df:5b:ad:04:02:5b:40:e9:a4:99:3f:3a:a3:0e:6f:dc:
09:b3:79:33:94:47:d1:5b:b1:36:9f:ad:22:c0:a9:1b:64:bf:
b9:c1:f2:72:1d:4a:4d:0b:b7:35:cb:bc:f2:5a:d3:ca:fe:07:
80:a1:95:37:9b:d7:01:a0:00:32:0f:53:42:8e:37:14:f6:d1:
d1:08:d3:fe:e6:08:31:8b:01:f2:5c:9d:06:d7:30:6c:c2:19:
e2:63:85:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:30 2024 by rpki-client on console-fra.rpki-client.org