Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/r1gV6Jnfx_RBOOuZI6c1rjsfPn4.roa
File: r1gV6Jnfx_RBOOuZI6c1rjsfPn4.roa (raw, json)
Hash identifier: 5yRZ3VqycHjBqmJMA46sc91f7/2Oj6bMKAO1aentnTk=
Subject key identifier: AF:58:15:E8:99:DF:C7:F4:41:38:EB:99:23:A7:35:AE:3B:1F:3E:7E
Certificate issuer: /CN=a79bba2805a988954e4fec42570530f16f9e7093
Certificate serial: 01860CBFF55F204710CA337DDB90A7441E0E
Authority key identifier: A7:9B:BA:28:05:A9:88:95:4E:4F:EC:42:57:05:30:F1:6F:9E:70:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p5u6KAWpiJVOT-xCVwUw8W-ecJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/r1gV6Jnfx_RBOOuZI6c1rjsfPn4.roa
Signing time: Wed 01 Feb 2023 11:32:32 +0000
ROA not before: Wed 01 Feb 2023 11:32:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205467
IP address blocks: 81.171.62.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Oct 2023 08:21:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:0c:bf:f5:5f:20:47:10:ca:33:7d:db:90:a7:44:1e:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a79bba2805a988954e4fec42570530f16f9e7093
Validity
Not Before: Feb 1 11:32:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af5815e899dfc7f44138eb9923a735ae3b1f3e7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ef:85:15:d1:cd:e0:a2:9f:05:8c:12:0c:5a:
b4:84:90:53:c0:08:0c:86:3b:b1:09:ed:68:bf:d0:
26:69:03:44:f1:5f:23:94:81:a0:a1:d8:67:0c:8b:
f2:07:c3:12:79:39:16:c8:1c:20:80:87:b0:f6:e5:
c9:9d:2a:48:4e:13:46:85:a2:6e:b3:14:57:db:40:
2c:04:b2:47:9f:5a:69:99:03:36:28:e0:b2:99:eb:
97:d1:c9:d3:df:89:6f:13:01:0c:5d:8a:5a:2d:fe:
63:60:7c:fb:88:c4:4e:cf:eb:8e:f3:18:15:03:ad:
fa:12:4e:9e:86:f0:71:6e:5e:25:51:3f:12:91:03:
7d:d3:8d:87:ca:b2:d7:47:99:17:56:23:71:2a:53:
d4:a6:b3:bc:26:f0:fb:97:32:6d:f1:d9:88:e0:00:
3f:ae:53:99:e1:0b:9c:55:ed:ae:61:8e:b1:1f:04:
0d:e1:a2:07:b1:6f:45:fa:d0:4d:ba:58:e3:72:85:
d2:c3:70:0a:41:61:91:ad:ba:04:ee:69:1d:f8:62:
81:24:78:90:47:8c:94:9d:d0:05:1b:71:18:41:be:
ba:65:b6:7c:f5:45:ed:0b:ec:8e:f9:41:d0:47:da:
a0:46:12:df:ef:a1:11:1d:af:00:a4:bb:51:fb:26:
4f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:58:15:E8:99:DF:C7:F4:41:38:EB:99:23:A7:35:AE:3B:1F:3E:7E
X509v3 Authority Key Identifier:
keyid:A7:9B:BA:28:05:A9:88:95:4E:4F:EC:42:57:05:30:F1:6F:9E:70:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p5u6KAWpiJVOT-xCVwUw8W-ecJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/r1gV6Jnfx_RBOOuZI6c1rjsfPn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/p5u6KAWpiJVOT-xCVwUw8W-ecJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.171.62.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:ec:2f:ba:f9:d0:a1:3b:ad:47:f2:b7:e7:68:7b:eb:f9:83:
87:7c:de:fc:07:e1:20:cf:cc:d1:4b:ab:ba:4d:51:b6:7d:87:
1b:10:43:4d:52:3d:c3:7d:27:18:83:9b:5e:8d:c4:f1:8e:f1:
36:c5:f9:dd:03:09:30:c3:72:15:13:00:4d:58:ad:33:62:f8:
4f:fa:92:76:19:5d:85:d7:03:31:88:ec:40:4c:d7:ce:ba:08:
8d:5d:83:bc:2f:ae:2d:b2:a4:98:13:c7:12:7f:f4:b7:34:a1:
17:78:ca:8a:00:dd:ff:a5:9d:75:c7:89:0f:e5:0a:ab:be:f7:
a0:a0:01:6b:c1:50:7a:cf:26:7b:54:6d:e8:77:82:9b:1e:ed:
f8:42:9e:76:a0:f3:f6:00:ea:b2:77:91:6a:a1:bc:ec:8e:fa:
c4:33:c1:71:ed:10:ca:7e:85:93:0e:28:3c:26:28:52:68:1c:
98:a0:56:54:f4:16:80:79:7e:a1:0f:72:37:59:5e:1c:56:45:
32:25:37:51:a5:1e:a0:9a:aa:c7:c9:e7:16:b7:40:4f:fe:86:
ac:21:00:0c:87:7c:70:33:c8:64:e9:c8:9b:fa:4f:34:81:f5:
60:88:9c:e8:e5:40:51:97:2e:f7:48:bf:d8:04:86:e8:7d:8e:
c7:75:b3:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:17 2024 by rpki-client on console-ams.rpki-client.org