Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/5b4bb6-2082-4c2b-8ce5-fa2176aaa849/1/h_KCxSqs9ISy1FTBhO3TRmlOa7w.roa
File: h_KCxSqs9ISy1FTBhO3TRmlOa7w.roa (raw, json)
Hash identifier: f4K6hhYH7XjmtXvheWM/7alC1vxDPZExKhJSk8U5CB8=
Subject key identifier: 87:F2:82:C5:2A:AC:F4:84:B2:D4:54:C1:84:ED:D3:46:69:4E:6B:BC
Certificate issuer: /CN=0c6824158b730c44167ea773a977218cc62f416a
Certificate serial: 018571B9EB9E6912B02619DE2C03245363C5
Authority key identifier: 0C:68:24:15:8B:73:0C:44:16:7E:A7:73:A9:77:21:8C:C6:2F:41:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DGgkFYtzDEQWfqdzqXchjMYvQWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/5b4bb6-2082-4c2b-8ce5-fa2176aaa849/1/h_KCxSqs9ISy1FTBhO3TRmlOa7w.roa
Signing time: Mon 02 Jan 2023 09:04:47 +0000
ROA not before: Mon 02 Jan 2023 09:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60409
IP address blocks: 81.25.96.0/20 maxlen: 20
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:eb:9e:69:12:b0:26:19:de:2c:03:24:53:63:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c6824158b730c44167ea773a977218cc62f416a
Validity
Not Before: Jan 2 09:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87f282c52aacf484b2d454c184edd346694e6bbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:40:8e:ef:a3:df:94:55:7c:9e:bd:88:61:10:
b4:7b:b5:19:93:fe:0b:70:da:4f:a3:02:0e:d4:2a:
96:b3:cb:6c:a9:ba:6e:13:f9:1f:01:ca:e7:5b:35:
05:0e:0d:c1:72:1d:ac:cd:7a:3e:f1:98:cd:83:c5:
66:56:90:99:9d:01:5a:20:57:8f:2f:5e:c9:53:36:
19:49:5e:ee:0d:8a:e7:ad:0d:a8:76:06:8a:8b:4f:
50:29:f6:61:18:93:91:1c:f2:8b:60:86:43:d2:aa:
fe:4f:63:37:b8:f1:d7:1f:b7:4a:78:c1:e7:87:24:
6f:a4:d2:9f:08:18:ac:8d:fc:da:b0:a0:0a:45:21:
68:86:92:f2:0e:53:38:9c:18:3e:41:d4:ab:6c:6d:
05:f1:b5:9b:b4:ab:7f:00:56:de:e8:4c:62:b0:4c:
98:f0:c9:dc:36:a6:aa:e2:c3:57:1f:98:fe:35:8d:
ac:15:a0:a3:53:ee:fe:70:11:97:af:91:50:80:07:
42:66:b6:8e:9c:6b:4c:f6:ff:15:74:e6:64:3a:a2:
33:70:d3:b7:99:1a:e6:6b:56:32:fe:e8:a4:f0:f4:
8c:d4:7d:c6:7b:9b:69:59:11:06:30:40:de:bf:cb:
b2:2d:44:ad:89:54:cc:30:b4:6d:e9:4f:82:41:9b:
22:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:F2:82:C5:2A:AC:F4:84:B2:D4:54:C1:84:ED:D3:46:69:4E:6B:BC
X509v3 Authority Key Identifier:
keyid:0C:68:24:15:8B:73:0C:44:16:7E:A7:73:A9:77:21:8C:C6:2F:41:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DGgkFYtzDEQWfqdzqXchjMYvQWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/5b4bb6-2082-4c2b-8ce5-fa2176aaa849/1/h_KCxSqs9ISy1FTBhO3TRmlOa7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/5b4bb6-2082-4c2b-8ce5-fa2176aaa849/1/DGgkFYtzDEQWfqdzqXchjMYvQWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.25.96.0/20
Signature Algorithm: sha256WithRSAEncryption
60:3b:5a:f9:1e:34:62:6f:70:1b:2f:fc:d7:42:4d:4c:15:c5:
33:0e:f6:9e:b2:41:8e:54:11:20:c4:f0:76:a4:6d:b6:89:7a:
0d:8f:19:38:80:1c:f7:25:d6:94:1e:15:84:42:05:1f:78:c7:
9b:d7:48:af:9d:4e:2a:9f:e0:fd:aa:38:b1:c0:b0:a4:00:46:
6e:7d:03:79:8f:5a:9e:bb:1a:ac:27:a7:9c:b5:fb:be:1c:b0:
9f:d6:39:85:89:df:38:a1:6a:54:4a:2b:74:31:05:de:27:d5:
91:b3:58:a9:d0:dc:48:fc:99:62:a5:3b:f9:1a:16:69:4b:cf:
08:55:ba:08:3b:5a:7a:c6:0e:42:d8:f7:89:0f:5f:fc:94:16:
03:67:a1:df:23:f2:18:24:51:a6:bd:53:aa:1a:48:a8:c9:ec:
42:24:b1:29:fb:21:16:f7:59:06:ed:18:fc:37:7d:ea:e4:6d:
5b:14:c7:b4:de:09:ba:c1:1b:7a:bb:9a:46:90:d0:98:02:0c:
7c:2b:ad:34:48:8f:70:e3:e9:54:9b:ee:b3:e3:74:b5:75:f3:
6b:0f:cf:54:a7:dd:92:be:0b:32:b3:60:97:4d:66:7c:fd:85:
19:3e:fc:07:f9:76:05:a3:01:41:f4:51:72:7e:9c:70:7b:48:
d6:fe:7a:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:39 2024 by rpki-client on console-ams.rpki-client.org