Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/1KcEiDDOfXkO8Zy95kp1UfTQdNg.roa
File: 1KcEiDDOfXkO8Zy95kp1UfTQdNg.roa (raw, json)
Hash identifier: lHjBi3CYp+b/K4CG/wghRSguBmw+6WGbuZDri7+7lrM=
Subject key identifier: D4:A7:04:88:30:CE:7D:79:0E:F1:9C:BD:E6:4A:75:51:F4:D0:74:D8
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 018AE157C42F0CB553C6BC68B62C33965687
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/1KcEiDDOfXkO8Zy95kp1UfTQdNg.roa
Signing time: Fri 29 Sep 2023 14:28:59 +0000
ROA not before: Fri 29 Sep 2023 14:28:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47247
IP address blocks: 81.25.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e1:57:c4:2f:0c:b5:53:c6:bc:68:b6:2c:33:96:56:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Sep 29 14:28:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d4a7048830ce7d790ef19cbde64a7551f4d074d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:18:29:32:d8:c2:f7:d9:ce:e1:06:4d:78:63:
0c:32:be:a9:c5:a0:46:88:81:29:6a:62:2a:1e:6a:
42:ae:ff:b5:ea:dc:62:b5:ac:ae:e6:2e:82:41:9e:
7e:99:67:6a:10:5c:ca:3a:85:02:f1:fb:44:3c:89:
0c:be:b2:80:0f:a1:10:0e:cf:69:f9:e6:02:e1:ea:
20:91:b8:b8:93:ed:a2:c2:2a:ae:d4:ca:17:6a:a5:
ed:17:94:92:50:55:90:97:e3:d6:18:26:3e:3b:5b:
ba:19:41:68:93:2a:2c:76:95:eb:5e:1f:f4:7d:a7:
f1:7e:54:6b:38:f1:92:fa:42:e4:97:fe:e5:18:89:
3b:81:e5:3a:37:47:00:ec:46:cd:91:48:e6:29:53:
0d:6d:05:c9:21:e8:35:98:ae:6a:a1:4f:53:4c:62:
11:9e:1e:09:d9:9d:98:ec:5c:70:bf:78:09:71:18:
56:76:54:78:9c:55:15:7d:a7:4a:09:15:51:ae:b5:
33:a7:5d:e7:73:44:f5:79:8f:25:a7:56:a9:67:bc:
93:ea:92:42:d4:04:7e:c5:33:28:52:be:e8:49:e7:
bd:2c:8c:51:d3:86:2b:4d:5f:47:fe:66:a3:b7:3f:
3e:4c:39:c8:9f:36:eb:6b:9f:c3:d6:6e:d1:69:16:
1a:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:A7:04:88:30:CE:7D:79:0E:F1:9C:BD:E6:4A:75:51:F4:D0:74:D8
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/1KcEiDDOfXkO8Zy95kp1UfTQdNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.25.68.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:09:0c:a7:5d:2d:83:0c:36:f7:f3:99:3e:f0:eb:18:de:e5:
11:ae:97:98:96:97:9a:88:02:4e:36:f0:da:43:0a:03:01:0f:
84:09:34:08:38:06:88:2f:8d:e3:62:59:f7:dd:66:e7:c8:e3:
99:97:63:1d:c8:b2:9a:d7:02:dc:aa:e7:c0:cb:47:5b:8b:e4:
e5:55:d1:7e:44:6a:12:e2:20:b6:05:d5:31:2f:b9:82:c6:5c:
22:13:71:9b:a5:e8:93:ee:47:9b:07:73:e7:72:54:0f:ef:44:
2b:67:8e:23:21:3d:37:bb:e3:a4:02:12:47:fb:6c:d2:2f:09:
6a:99:35:85:ab:36:c2:d6:43:1e:8d:2a:a0:bd:52:aa:18:84:
bd:f6:bf:70:38:c5:21:61:88:19:b2:ed:be:30:88:b1:e7:1e:
62:e0:55:96:f0:1b:63:3f:df:72:95:c7:f8:c7:ee:51:83:fb:
cd:63:4b:d1:f1:e5:b7:5a:36:64:08:40:1e:d1:f8:9b:3d:e6:
2e:39:68:b6:c9:e4:e0:5c:ae:ab:4b:5a:a9:88:b5:80:6e:9c:
62:64:54:db:8d:5a:49:79:d0:86:35:9c:be:50:ae:16:82:37:
f9:fa:a9:be:56:da:b0:18:a4:3e:24:21:10:19:0b:38:23:6c:
c3:5f:cb:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:38 2024 by rpki-client on console-ams.rpki-client.org