Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/1iLu9QmvvbrpsZRC8QElJnayym8.roa
File: 1iLu9QmvvbrpsZRC8QElJnayym8.roa (raw, json)
Hash identifier: iVKGgyssbhosvMF/yLFYdphPVrS55eq0gvsJ8W4dlQA=
Subject key identifier: D6:22:EE:F5:09:AF:BD:BA:E9:B1:94:42:F1:01:25:26:76:B2:CA:6F
Certificate issuer: /CN=49216f5c165b827a7fd73d8107aebd2f63c63e24
Certificate serial: 018BAFDA78F82023B30A65A2C601392B815D
Authority key identifier: 49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/1iLu9QmvvbrpsZRC8QElJnayym8.roa
Signing time: Wed 08 Nov 2023 16:53:32 +0000
ROA not before: Wed 08 Nov 2023 16:53:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 81.90.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:af:da:78:f8:20:23:b3:0a:65:a2:c6:01:39:2b:81:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49216f5c165b827a7fd73d8107aebd2f63c63e24
Validity
Not Before: Nov 8 16:53:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d622eef509afbdbae9b19442f101252676b2ca6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:09:97:83:b7:c4:7a:58:cb:16:ac:06:a9:55:
cc:42:c4:f9:89:df:01:5d:1a:c5:e9:d8:83:30:be:
a1:03:be:75:dd:8f:5d:1c:68:92:ae:a3:c1:a8:44:
63:01:0b:81:88:51:fe:8a:3e:d5:a5:82:99:9b:c9:
cd:5d:e2:a2:15:28:3d:9d:d9:a5:16:25:45:2c:2d:
8e:d1:2c:b4:d5:0f:3e:dd:0c:16:cc:b8:a6:fd:69:
94:ba:cb:c7:d1:a9:f1:a2:32:44:7c:cf:e3:1f:be:
1c:f6:f1:f2:9a:cb:65:6a:04:4c:c5:43:18:0e:85:
19:7c:48:7d:98:cb:87:07:59:65:b2:ae:24:20:c4:
03:97:14:62:0a:a4:f8:fd:71:b4:49:f4:c5:0e:6d:
f7:21:b9:ab:1a:6f:cf:1a:f8:4b:c5:fa:13:5f:ec:
5b:e6:ed:75:f5:fd:9d:7c:38:46:67:a4:b5:18:54:
85:95:ed:18:3c:75:91:43:8e:6a:8e:35:30:42:38:
9e:25:4e:d0:1d:56:69:d5:6b:55:f0:d9:f0:ef:73:
80:a5:e2:d3:5b:eb:c4:94:59:2e:ea:e5:31:50:4d:
8f:60:78:2f:68:1d:6c:00:b0:d4:90:96:3c:29:99:
d0:d3:f7:8a:83:c8:88:53:2e:58:d8:26:f5:35:5a:
94:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:22:EE:F5:09:AF:BD:BA:E9:B1:94:42:F1:01:25:26:76:B2:CA:6F
X509v3 Authority Key Identifier:
keyid:49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/1iLu9QmvvbrpsZRC8QElJnayym8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.90.25.0/24
Signature Algorithm: sha256WithRSAEncryption
27:7b:e9:60:ff:4b:c2:62:24:92:f8:1d:15:60:26:72:62:bf:
a2:68:0d:07:f0:36:11:ef:06:6f:19:ef:6e:4c:fe:ca:70:43:
e9:7f:e1:4a:24:23:76:00:4b:34:35:cd:ca:5b:31:d5:d1:c3:
e6:4a:44:d4:3b:23:80:47:a6:40:32:fe:c9:30:1c:3f:9a:59:
53:ba:52:3a:97:b2:99:f2:74:3d:cf:88:c5:4a:64:e8:ec:e3:
05:9d:1c:94:ba:e2:ae:04:5d:85:e0:b2:4e:0f:03:63:a4:47:
9f:79:c7:a5:19:25:37:53:b1:7c:52:9f:56:cc:8d:9f:1e:04:
2f:4b:b1:58:a1:87:e8:20:70:dc:ad:f6:89:c1:81:3f:aa:f2:
3f:3f:a5:86:c5:ee:e4:54:f2:8c:09:e6:ab:2a:2b:f7:8c:8c:
e9:08:c7:9e:f6:59:13:32:11:7e:aa:61:e8:d8:0e:16:ae:dd:
79:b0:a6:06:04:59:be:26:e9:cf:fd:d7:d1:a0:10:d9:19:b0:
ee:ff:1d:04:ee:f4:6a:e4:85:39:23:60:bf:0b:9f:e0:14:31:
f4:9d:4d:85:bf:b5:27:39:c0:55:d2:b9:c4:92:d3:31:73:e3:
fa:ed:75:45:ac:d6:4a:9c:34:6a:d4:b7:f3:02:62:18:5f:43:
94:95:9e:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:22 2024 by rpki-client on console-fra.rpki-client.org