Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/Iq8t5PMVB6W8RSbmRpMTsVvioeQ.roa
File: Iq8t5PMVB6W8RSbmRpMTsVvioeQ.roa (raw, json)
Hash identifier: IWLFCJJOCxTCdhjuIRAr/0maKprShjJ1cwVtZlkg5wc=
Subject key identifier: 22:AF:2D:E4:F3:15:07:A5:BC:45:26:E6:46:93:13:B1:5B:E2:A1:E4
Certificate issuer: /CN=7271506bfab912c7b8171b96b85a099b140e6cd8
Certificate serial: 01905019905DA9D8A378CFF2111A10F70B32
Authority key identifier: 72:71:50:6B:FA:B9:12:C7:B8:17:1B:96:B8:5A:09:9B:14:0E:6C:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/Iq8t5PMVB6W8RSbmRpMTsVvioeQ.roa
Signing time: Tue 25 Jun 2024 15:52:50 +0000
ROA not before: Tue 25 Jun 2024 15:52:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207724
IP address blocks: 81.30.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Jun 2024 02:14:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:50:19:90:5d:a9:d8:a3:78:cf:f2:11:1a:10:f7:0b:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7271506bfab912c7b8171b96b85a099b140e6cd8
Validity
Not Before: Jun 25 15:52:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22af2de4f31507a5bc4526e6469313b15be2a1e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:cf:97:9c:d2:5f:a9:1f:37:0e:c0:b4:8b:b2:
1e:34:df:ae:b3:01:7e:ff:e6:b7:6d:b1:49:ef:3b:
35:41:a7:d1:50:f4:ac:83:0e:a8:5e:f5:73:d7:74:
25:6d:77:6f:c0:8a:dd:8a:45:e5:44:f4:fa:47:ef:
80:8e:f8:82:0d:29:76:0d:b9:49:76:f9:58:88:3b:
8e:c9:8b:6d:d9:27:77:cd:f6:9c:88:22:cb:55:16:
b8:6b:b9:51:0e:48:33:c1:7a:16:fb:a4:cc:2c:80:
fd:3a:b0:ab:6d:0b:22:ac:60:52:4f:66:ba:2f:0f:
c2:99:fd:88:1a:3d:23:ed:76:f7:66:50:e0:db:ad:
df:ca:d9:d2:22:d8:ea:b4:cc:b6:5f:39:b5:b6:28:
db:c3:c4:64:ea:fb:42:83:9a:07:8f:c2:e3:e0:ee:
ae:84:de:97:4c:09:8f:c6:7a:c4:4d:6d:9d:dc:19:
b0:21:94:c8:e9:46:e9:8e:e3:83:4a:a5:5f:e7:42:
16:b6:aa:fb:35:cd:d9:b9:4e:12:42:bf:7b:64:e1:
7f:41:4e:56:01:39:2e:9b:b3:86:96:e8:a0:a7:20:
fb:ce:70:53:5b:7d:39:c1:7f:6f:93:14:d8:e6:b4:
87:34:7e:67:f8:71:df:48:86:f0:3f:0d:86:8d:3b:
15:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:AF:2D:E4:F3:15:07:A5:BC:45:26:E6:46:93:13:B1:5B:E2:A1:E4
X509v3 Authority Key Identifier:
keyid:72:71:50:6B:FA:B9:12:C7:B8:17:1B:96:B8:5A:09:9B:14:0E:6C:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/Iq8t5PMVB6W8RSbmRpMTsVvioeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.30.108.0/24
Signature Algorithm: sha256WithRSAEncryption
14:86:28:c2:a9:3d:db:fd:f3:d1:62:72:1e:a4:78:74:72:69:
0c:10:30:50:12:ab:02:b6:d1:b6:e2:b9:bd:d0:fe:cb:b7:43:
c2:01:8b:c0:63:5d:13:17:db:18:3f:31:c1:b6:86:33:1d:e7:
75:80:ee:1b:c2:77:92:96:a5:ee:44:3e:19:02:16:54:4a:a0:
9a:ed:c7:a2:d6:c0:5c:5d:fd:c1:8f:3a:e4:17:07:4a:ce:b6:
c8:c7:de:87:a3:a2:7d:18:98:fa:49:26:d1:7d:f7:48:c3:a3:
17:06:37:41:de:49:ff:49:66:ec:e6:ae:b4:21:4f:94:80:10:
f4:01:68:4e:17:26:37:bb:c7:fe:11:ea:eb:f1:4a:37:cd:8f:
ff:ea:61:83:14:4d:df:57:a5:65:72:95:b1:7f:7e:eb:15:7d:
e2:20:81:83:0a:f5:4b:9a:58:33:00:2c:43:35:51:6b:8d:30:
21:10:28:2f:91:d0:c8:67:78:76:ec:4c:ad:21:9f:dc:3c:c4:
21:b9:2c:a6:3a:a4:33:8c:21:f5:a0:45:87:7c:f4:11:85:bb:
b0:ee:14:0b:fc:91:a8:2e:95:84:b3:76:3b:2d:af:57:f2:44:
2c:18:ab:41:71:5e:01:bd:96:99:94:45:54:d1:28:40:37:2f:
f7:dd:7e:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 08:28:56 2024 by rpki-client on console-fra.rpki-client.org