Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/QpY4oepTYgHnMz8wgqH2l98z5E0.roa
File: QpY4oepTYgHnMz8wgqH2l98z5E0.roa (raw, json)
Hash identifier: J1cnPc2TAhP1F/D9t3dPQRocMbk5B4cBYuX+M/HXu+w=
Subject key identifier: 42:96:38:A1:EA:53:62:01:E7:33:3F:30:82:A1:F6:97:DF:33:E4:4D
Certificate issuer: /CN=49216f5c165b827a7fd73d8107aebd2f63c63e24
Certificate serial: 018BAFDA7836539481896A77819DAC7F82CB
Authority key identifier: 49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/QpY4oepTYgHnMz8wgqH2l98z5E0.roa
Signing time: Wed 08 Nov 2023 16:53:32 +0000
ROA not before: Wed 08 Nov 2023 16:53:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 81.90.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:af:da:78:36:53:94:81:89:6a:77:81:9d:ac:7f:82:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49216f5c165b827a7fd73d8107aebd2f63c63e24
Validity
Not Before: Nov 8 16:53:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=429638a1ea536201e7333f3082a1f697df33e44d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:74:52:e2:d3:3f:ff:41:85:1a:a6:f8:38:e2:
c9:a1:b4:59:5b:2d:db:cf:0e:55:94:a8:91:7c:9d:
6e:f7:b9:60:25:cb:6d:4d:6f:2e:bd:0b:21:71:ae:
17:c0:be:f4:a7:75:76:1f:cc:78:e7:32:62:91:ac:
f0:e0:1f:8e:34:f7:d5:d2:6d:c6:18:57:e6:ee:4c:
86:b5:76:8e:7a:82:76:90:44:5d:1e:ec:92:47:7a:
c6:b5:64:90:2a:3e:cd:e7:97:0d:1d:3f:3e:f5:ec:
b8:53:bf:bd:d7:2e:5a:29:ac:f4:a7:96:ce:6f:87:
61:de:a2:fb:1c:85:99:2e:f0:74:6b:c0:b2:ce:f3:
82:a7:2b:75:5d:09:9f:b6:6c:27:6c:91:98:e7:15:
61:dd:b5:61:bd:4e:20:22:37:5d:53:ab:07:f4:b5:
1c:36:e0:97:40:f5:6f:c9:62:2b:dc:8a:bb:f0:95:
02:be:a4:c6:fb:73:e8:22:bf:f4:10:b1:e6:0b:4a:
78:61:be:94:39:02:c3:ee:4b:d2:f4:c9:10:cd:8b:
0b:16:64:be:1e:e4:83:99:33:14:80:e9:a3:19:8e:
c9:5d:d7:0a:79:86:e9:aa:2a:c5:47:82:fa:f0:d2:
28:6f:cf:b3:e8:7b:02:df:18:d7:44:29:c1:f2:5e:
fa:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:96:38:A1:EA:53:62:01:E7:33:3F:30:82:A1:F6:97:DF:33:E4:4D
X509v3 Authority Key Identifier:
keyid:49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/QpY4oepTYgHnMz8wgqH2l98z5E0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.90.25.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:38:df:53:8f:9c:bf:0a:a3:00:ec:d9:ef:4c:c2:d1:22:b8:
e1:11:07:07:f4:1d:e6:79:54:2e:5f:7e:dc:6b:78:2e:ae:90:
5c:8b:ec:2c:29:21:12:3f:9e:1b:29:7e:91:a5:3d:d8:00:bd:
96:d4:66:7f:44:45:61:c3:51:a5:59:45:2e:00:9b:19:6f:0f:
61:c1:09:3d:c9:ce:b3:d6:cf:38:52:f7:a0:f6:e1:bd:a0:2c:
bf:3c:f1:24:f8:61:ff:e4:ba:24:db:3e:cf:ba:d3:2e:9e:87:
0e:dd:4b:35:08:92:89:60:4d:16:a1:84:9a:c3:34:6a:ff:dc:
97:75:a0:3c:dd:2c:e4:6e:f8:80:ab:2c:ef:4d:d3:3d:b0:1a:
57:c3:e7:44:02:27:bb:ce:99:82:2c:07:62:bf:db:3e:0a:e3:
bf:5a:62:6f:af:6a:fa:c9:c5:f4:66:20:07:d5:5e:23:ad:11:
0a:6f:89:bb:a2:bb:3c:18:fc:bc:82:54:14:4b:53:2d:b4:3f:
2a:5b:8e:af:67:b0:f8:96:05:ec:28:f1:dc:00:30:be:f2:69:
cd:ed:40:80:ed:10:e3:1a:92:aa:5c:48:e4:49:48:06:68:3c:
51:a8:e0:d5:73:f8:cc:1d:aa:6c:87:03:48:83:ab:ff:87:02:
43:3f:f5:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:22 2024 by rpki-client on console-fra.rpki-client.org