Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/zko0r0oRPc2GdNkh_u6DRV4HHeM.roa
File: zko0r0oRPc2GdNkh_u6DRV4HHeM.roa (raw, json)
Hash identifier: asJ/D+1UGwSMDFrasxPXdLbMLFwdAMHNfS0FzPR/4Jw=
Subject key identifier: CE:4A:34:AF:4A:11:3D:CD:86:74:D9:21:FE:EE:83:45:5E:07:1D:E3
Certificate issuer: /CN=a79bba2805a988954e4fec42570530f16f9e7093
Certificate serial: 018B4706230ACD0BB973DC5F5FF78D260C3C
Authority key identifier: A7:9B:BA:28:05:A9:88:95:4E:4F:EC:42:57:05:30:F1:6F:9E:70:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p5u6KAWpiJVOT-xCVwUw8W-ecJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/zko0r0oRPc2GdNkh_u6DRV4HHeM.roa
Signing time: Thu 19 Oct 2023 08:21:06 +0000
ROA not before: Thu 19 Oct 2023 08:21:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205467
IP address blocks: 81.171.62.0/23 maxlen: 24
81.171.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Oct 2023 11:14:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:47:06:23:0a:cd:0b:b9:73:dc:5f:5f:f7:8d:26:0c:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a79bba2805a988954e4fec42570530f16f9e7093
Validity
Not Before: Oct 19 08:21:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce4a34af4a113dcd8674d921feee83455e071de3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:a9:67:73:52:7e:47:3b:de:b0:c7:e1:20:d4:
40:ed:e6:35:e1:8c:42:7f:41:68:19:c3:5f:4e:ea:
10:79:9a:33:a9:b8:d8:6a:6c:c9:e7:09:b9:36:2a:
62:c7:81:23:77:68:e0:1a:57:a7:02:1d:26:5f:14:
1b:55:6e:93:d3:cf:f3:17:3f:f7:0b:bd:ea:3f:96:
b5:44:cf:58:f0:6b:9b:fd:ef:6d:c8:bc:85:1b:69:
3a:c4:17:81:0d:6e:46:97:cb:15:13:8d:ae:ba:c5:
d6:9d:d6:a7:b5:f1:c5:38:34:cc:4f:ce:0b:0c:bd:
79:6f:12:64:f4:0a:42:66:f3:29:fd:9e:e7:02:ca:
75:5f:93:d5:62:2a:96:e0:5b:c2:bd:57:7a:f5:e0:
e0:c5:fc:4d:12:d6:b7:79:6d:f0:c4:76:95:83:da:
a3:54:eb:05:0f:58:98:64:f1:b2:90:b6:c8:26:73:
b6:0c:37:87:dc:81:82:9d:3a:ed:51:65:e8:e9:37:
a9:5a:32:61:42:71:98:bd:78:fe:14:38:db:1a:0c:
93:c4:32:94:d6:3b:24:44:90:f9:16:ef:fd:7e:95:
36:bb:c4:bb:25:96:e2:1a:db:47:6e:08:92:4d:20:
01:92:dc:22:65:c9:30:62:79:09:9b:6e:45:6d:78:
d4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:4A:34:AF:4A:11:3D:CD:86:74:D9:21:FE:EE:83:45:5E:07:1D:E3
X509v3 Authority Key Identifier:
keyid:A7:9B:BA:28:05:A9:88:95:4E:4F:EC:42:57:05:30:F1:6F:9E:70:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p5u6KAWpiJVOT-xCVwUw8W-ecJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/zko0r0oRPc2GdNkh_u6DRV4HHeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/p5u6KAWpiJVOT-xCVwUw8W-ecJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.171.60.0/24
81.171.62.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:17:9f:c9:2a:52:73:a8:83:57:d9:b3:aa:a3:ac:d4:61:79:
fa:90:97:18:e3:23:0e:45:41:5c:46:2c:6c:47:0a:bb:89:9e:
59:ef:69:dd:10:6b:c9:91:c9:d0:11:05:5f:1c:d1:df:65:b7:
f7:42:48:7c:c5:12:af:a0:16:2a:65:7d:6e:90:7c:fe:4b:c7:
d3:4f:34:68:56:77:1c:6d:36:44:20:fa:54:1d:36:5e:fa:55:
5a:81:c5:2b:a1:19:3f:d6:f6:9a:66:bc:6a:d3:bc:d4:80:ad:
ec:5e:00:c9:63:81:b0:cb:c8:62:27:4d:08:cc:66:78:95:78:
58:e5:33:8e:e4:ff:e9:9c:41:ff:d8:27:81:14:8e:e1:66:49:
de:19:78:8e:08:b7:cd:72:d0:ce:cb:c8:ac:e3:e1:5d:d8:65:
c2:b6:45:e8:4c:d5:da:4f:29:ec:f0:6b:5e:f8:e3:35:72:b4:
20:ce:e2:20:eb:a4:42:ca:b5:37:e8:f2:fb:ea:cb:20:9c:11:
09:84:a1:12:5d:3c:a1:90:b5:d3:df:1d:b3:e6:47:eb:f6:0c:
23:80:ce:43:2d:32:ce:e4:1d:dc:1c:1a:07:83:67:b5:98:2e:
eb:5a:9e:1f:21:64:90:4d:b4:2f:f9:c5:ee:8e:60:ed:27:7b:
00:ae:71:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:17 2024 by rpki-client on console-ams.rpki-client.org