Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/7urpE9GabxjMx-Wk3pi_djwflIE.roa
File: 7urpE9GabxjMx-Wk3pi_djwflIE.roa (raw, json)
Hash identifier: ENNaGuQ675LDLZi7JFLwioFi0WAexUz9MayQ75WZEPo=
Subject key identifier: EE:EA:E9:13:D1:9A:6F:18:CC:C7:E5:A4:DE:98:BF:76:3C:1F:94:81
Certificate issuer: /CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Certificate serial: 01857255AB97F26BF72C4181AA108D79D825
Authority key identifier: D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/7urpE9GabxjMx-Wk3pi_djwflIE.roa
Signing time: Mon 02 Jan 2023 11:54:55 +0000
ROA not before: Mon 02 Jan 2023 11:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24655
IP address blocks: 81.4.190.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:ab:97:f2:6b:f7:2c:41:81:aa:10:8d:79:d8:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Validity
Not Before: Jan 2 11:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eeeae913d19a6f18ccc7e5a4de98bf763c1f9481
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:4f:56:63:cb:1a:a5:ed:3f:22:8f:b3:87:4f:
ed:c5:50:38:1e:bd:13:64:8e:e1:c1:6f:51:44:c9:
94:40:7f:79:af:b4:21:8f:dd:de:5b:f4:93:42:d6:
5e:5a:b0:27:c3:33:1e:b5:ef:e4:63:88:f4:17:ca:
40:e5:0d:44:8f:6d:cf:45:2a:19:40:50:65:6f:3d:
46:4e:ef:32:b3:d3:87:06:d7:c8:f5:5a:cc:0f:10:
36:f5:de:79:b4:fb:68:c5:e1:f8:b1:c4:71:90:b0:
65:5a:97:ad:fc:5e:e2:f6:80:1d:c8:b0:04:9c:24:
56:2c:5d:b3:5e:cb:d7:ab:1d:a3:9a:31:b8:24:c3:
61:cd:3c:9b:80:52:22:ad:3c:f3:d0:d5:c4:c3:ad:
ab:00:59:22:45:94:46:df:cb:94:57:dc:57:79:4f:
8f:0e:5e:2f:82:9f:97:25:22:38:99:d0:e6:3b:f2:
b8:f7:6e:bf:55:00:fb:fb:1e:eb:76:61:46:51:dc:
5b:ec:27:51:0e:ff:a9:bb:77:7d:b0:cc:1e:6d:ae:
a5:87:98:86:df:df:9c:8e:cb:cf:42:c4:a2:35:80:
eb:92:4d:0b:10:c9:e4:3e:e4:9f:fd:a3:ff:e7:ba:
4b:e2:da:db:c6:16:a6:23:c7:af:14:90:3d:dd:b2:
61:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:EA:E9:13:D1:9A:6F:18:CC:C7:E5:A4:DE:98:BF:76:3C:1F:94:81
X509v3 Authority Key Identifier:
keyid:D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/7urpE9GabxjMx-Wk3pi_djwflIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/1BGrxMBGirKJHqrK26DcA3eTb9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.4.190.0/23
Signature Algorithm: sha256WithRSAEncryption
70:3f:b6:25:40:be:48:cf:3f:15:b8:37:cc:71:c3:3a:00:c9:
2c:8e:81:f1:76:57:97:dc:77:32:30:d5:64:4c:f7:62:7f:f2:
85:1d:7f:d5:65:a8:86:74:1a:f6:83:fb:1c:68:07:0c:4a:a0:
48:a9:54:53:53:b6:10:85:30:47:f3:49:08:e5:36:7e:71:ae:
67:5d:2c:a6:46:05:37:ce:55:fc:12:8f:7d:26:f1:0e:15:99:
cf:20:fb:74:cb:e4:68:3b:e2:11:c0:09:ab:a0:21:01:2c:ee:
e8:0b:b3:f5:44:58:0c:de:04:43:6d:26:ae:18:61:8e:af:2b:
4c:71:05:00:0b:f2:89:b7:3a:86:c3:2a:a7:4c:eb:72:c0:05:
0d:34:86:e0:7a:8f:04:e9:cf:53:9b:43:57:c3:8d:77:e9:72:
f5:1d:7d:1e:f1:43:a0:20:fa:31:0e:5c:b0:a6:9a:f6:05:3a:
d0:37:8e:e2:77:b1:c4:2a:55:16:9e:c3:30:a4:02:f4:f8:89:
a9:50:7b:58:29:ca:26:3c:47:80:c5:0e:d8:1c:8d:37:a5:ea:
a7:5e:60:47:cc:73:f0:65:75:65:58:f9:b6:f4:ae:35:5d:0b:
4c:d2:3d:66:03:9f:db:84:28:95:45:45:a8:37:8d:bd:8b:b0:
e7:5a:c1:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:14 2024 by rpki-client on console-fra.rpki-client.org