Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/IbuOrA8IKU29IC3OMxqZLQIjA18.roa
File: IbuOrA8IKU29IC3OMxqZLQIjA18.roa (raw, json)
Hash identifier: tXWzuWfY92ThFeh7sXe6dG/2+zpsZSr2lk1dDq32QMk=
Subject key identifier: 21:BB:8E:AC:0F:08:29:4D:BD:20:2D:CE:33:1A:99:2D:02:23:03:5F
Certificate issuer: /CN=2c71c96005e13a84a3f31ef1d991777f4b6e31a7
Certificate serial: 018EFAF0306B910262D9CEB9CA5B193038EF
Authority key identifier: 2C:71:C9:60:05:E1:3A:84:A3:F3:1E:F1:D9:91:77:7F:4B:6E:31:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LHHJYAXhOoSj8x7x2ZF3f0tuMac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/IbuOrA8IKU29IC3OMxqZLQIjA18.roa
Signing time: Sat 20 Apr 2024 09:57:08 +0000
ROA not before: Sat 20 Apr 2024 09:57:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215540
IP address blocks: 81.17.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 May 2024 07:56:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:fa:f0:30:6b:91:02:62:d9:ce:b9:ca:5b:19:30:38:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c71c96005e13a84a3f31ef1d991777f4b6e31a7
Validity
Not Before: Apr 20 09:57:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=21bb8eac0f08294dbd202dce331a992d0223035f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c5:c6:e1:47:e2:09:7d:89:06:9f:5e:8f:47:
12:af:e2:1a:cf:23:d1:e6:78:b7:3b:e8:c5:9b:eb:
88:d7:7b:9c:69:d3:93:76:fb:2e:15:23:c5:be:1e:
c4:e0:9f:7e:80:d2:c6:e0:e0:22:dc:65:40:88:87:
56:20:57:fe:f8:ee:69:c7:f3:16:b4:0e:1b:fa:88:
96:ae:18:dc:4f:87:4a:5d:63:c2:03:69:07:6b:30:
35:31:34:93:c2:5f:94:6a:e5:30:51:b3:3e:27:82:
9f:e6:26:ca:89:79:6d:84:df:11:e1:a7:26:b4:4c:
9d:8c:c1:5a:92:6b:8f:fe:df:54:64:80:3d:53:e1:
5a:e7:85:73:a6:4c:5f:86:00:bf:03:4c:1f:f2:8e:
90:da:e8:1c:71:c0:ed:18:d4:47:1e:25:6c:20:dd:
1a:10:d0:c3:d7:3f:9b:15:3c:7d:2d:44:a3:86:99:
f9:fd:86:c7:ae:67:2d:47:a7:ff:5f:50:7a:f1:cb:
0e:59:8b:24:1a:a1:62:96:c4:66:f1:f4:8c:dc:48:
31:5b:59:e5:3c:54:7a:e2:dc:e0:7a:6f:73:b4:7f:
99:17:f1:b8:d5:75:f3:8a:e1:e6:92:b5:ee:22:2a:
7e:1e:44:39:e1:ab:ad:c7:df:68:49:a6:27:4b:eb:
ca:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:BB:8E:AC:0F:08:29:4D:BD:20:2D:CE:33:1A:99:2D:02:23:03:5F
X509v3 Authority Key Identifier:
keyid:2C:71:C9:60:05:E1:3A:84:A3:F3:1E:F1:D9:91:77:7F:4B:6E:31:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LHHJYAXhOoSj8x7x2ZF3f0tuMac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/IbuOrA8IKU29IC3OMxqZLQIjA18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/LHHJYAXhOoSj8x7x2ZF3f0tuMac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.17.159.0/24
Signature Algorithm: sha256WithRSAEncryption
60:24:62:1b:ba:14:1b:95:fd:58:ec:10:e3:f0:c1:df:30:b2:
55:d1:32:1c:d9:a1:ac:01:bc:9f:db:77:36:e8:c4:04:76:94:
ec:2b:ed:3d:0b:17:4e:3e:f8:09:74:8b:b6:7f:2e:2b:ff:cf:
94:bf:cf:3f:b1:d9:3c:ed:e2:c4:d1:e0:db:6b:fd:ba:51:4a:
5e:b9:20:43:4d:41:1b:52:e4:e9:4c:c5:fb:4b:c8:24:45:4b:
ff:4c:eb:08:1f:c8:c6:aa:33:29:91:e4:4e:4f:d8:d0:1d:7a:
25:ef:27:7e:11:30:c8:ae:59:04:67:9b:bb:09:23:cd:7a:8d:
a5:1c:ac:a5:ff:3b:06:b2:23:ca:c0:1a:02:7a:90:47:2d:18:
86:a2:ed:2c:cc:11:9b:aa:91:bf:3f:cd:11:10:b6:08:2f:01:
fd:e9:3e:e9:ca:91:4a:75:2b:8a:26:e4:79:2d:74:79:76:56:
1f:33:19:89:96:30:d5:cb:83:3b:d5:1e:08:67:52:0e:b1:41:
71:1b:2c:3a:3b:7e:1a:70:c7:6b:fc:62:c2:b7:17:a7:f7:3f:
bd:50:56:22:12:6a:b3:b7:1d:cc:b9:a6:ef:a1:9f:31:0a:62:
e2:90:d5:f9:af:da:6a:c7:1e:f9:d1:18:65:9e:0d:54:bb:77:
5e:c1:4d:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:45 2024 by rpki-client on console-ams.rpki-client.org