Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/1--RbOLdt3hknkKgXU2Pfxah1A2g.roa
File: 1--RbOLdt3hknkKgXU2Pfxah1A2g.roa (raw, json)
Hash identifier: GXsPw2sYgT9fP6kQ4JrBxnTne0IwLXXbz2lkYoQuBCQ=
Subject key identifier: FB:E4:5B:38:B7:6D:DE:19:27:90:A8:17:53:63:DF:C5:A8:75:03:68
Certificate issuer: /CN=afb4e04a0ed344112c1853cab09f52e1cd9abaf2
Certificate serial: 0187FC436D6EA963C11488E4683F88621845
Authority key identifier: AF:B4:E0:4A:0E:D3:44:11:2C:18:53:CA:B0:9F:52:E1:CD:9A:BA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7TgSg7TRBEsGFPKsJ9S4c2auvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/1--RbOLdt3hknkKgXU2Pfxah1A2g.roa
Signing time: Mon 08 May 2023 16:48:09 +0000
ROA not before: Mon 08 May 2023 16:48:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57242
IP address blocks: 81.163.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:fc:43:6d:6e:a9:63:c1:14:88:e4:68:3f:88:62:18:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afb4e04a0ed344112c1853cab09f52e1cd9abaf2
Validity
Not Before: May 8 16:48:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fbe45b38b76dde192790a8175363dfc5a8750368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:c9:4d:87:88:52:a7:a9:53:c3:1e:98:7d:e8:
2f:63:da:b5:11:12:16:85:7c:d8:b0:51:9b:3c:0c:
81:64:7d:c3:86:98:cb:4b:11:76:f6:81:01:07:a3:
0d:55:56:b4:0d:96:e2:3a:3c:ec:a5:13:ca:3b:bd:
ac:e1:cb:5c:07:c2:5f:d6:49:4e:67:e0:82:72:a1:
2c:9d:b2:b2:e7:42:d9:a5:52:7e:d6:4e:51:ee:16:
15:08:0e:0c:aa:f7:15:84:9f:a7:2f:d5:dd:7b:e1:
e4:a3:05:64:b6:4b:07:8f:04:9a:a0:55:ff:65:1b:
13:34:dc:72:62:77:13:bd:c1:5a:72:d5:d1:76:2b:
d3:e8:e3:74:09:c6:1b:2f:6b:ec:87:59:7c:26:97:
7e:99:9a:42:2f:95:e0:9f:8f:4f:7e:77:32:41:07:
dd:b3:71:60:0c:d9:a0:28:e1:12:2a:16:ce:d3:11:
09:45:fe:ac:4b:c0:47:fc:79:8a:9b:10:e8:8c:08:
b9:64:37:bc:c8:cf:9c:cd:70:c7:49:2b:93:1f:be:
c6:d8:d0:02:f8:25:16:32:7f:dd:19:f5:d3:7e:fc:
5f:73:2d:3c:ad:37:fb:5b:a7:cd:bf:ad:2a:7d:50:
32:a4:7a:2e:00:8e:a1:56:44:87:6d:8c:ba:91:90:
fa:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:E4:5B:38:B7:6D:DE:19:27:90:A8:17:53:63:DF:C5:A8:75:03:68
X509v3 Authority Key Identifier:
keyid:AF:B4:E0:4A:0E:D3:44:11:2C:18:53:CA:B0:9F:52:E1:CD:9A:BA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7TgSg7TRBEsGFPKsJ9S4c2auvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/1--RbOLdt3hknkKgXU2Pfxah1A2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/r7TgSg7TRBEsGFPKsJ9S4c2auvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.163.208.0/24
Signature Algorithm: sha256WithRSAEncryption
30:d2:2f:9e:ef:81:ff:c8:c2:65:bf:2c:dc:be:89:d9:b2:73:
bc:d5:bd:1e:f5:e6:2a:c4:2f:c9:06:5d:89:d1:9e:32:09:cd:
9a:2e:62:0b:c3:ae:29:26:f5:f3:a1:b5:61:b2:99:58:ac:6b:
66:90:73:5f:31:e9:01:eb:54:ce:5d:09:21:9c:bc:ff:11:2e:
c7:5c:f1:c2:d6:8a:92:e9:be:b7:00:e3:f5:54:f3:9c:30:9d:
4f:85:8f:7f:fe:9a:4a:e0:bc:68:45:d7:5d:fe:7b:ce:f3:9c:
28:ff:a2:b7:f3:1e:0a:0e:89:b3:45:ef:95:d9:0a:75:52:51:
14:8b:e8:15:72:33:94:b6:fc:7d:9b:f9:fd:f8:22:72:7a:5f:
1b:7e:06:06:a9:21:ea:7f:63:69:17:96:32:21:ab:05:e0:e3:
e0:ee:7a:80:05:9b:1c:b6:63:db:5e:35:95:2b:d2:d2:44:61:
a3:62:7c:82:0a:7c:5f:00:51:e3:d2:7c:4c:6d:f5:54:fd:d4:
3a:7d:ec:31:01:93:4d:a2:ab:0b:8a:31:09:bc:2f:33:01:95:
78:66:2e:46:6f:38:4e:27:5d:66:54:78:03:5f:63:8b:0c:f2:
bb:6d:14:47:c8:e7:9a:dc:06:69:24:95:1c:08:0e:e6:4c:37:
5f:2d:09:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:07 2024 by rpki-client on console-ams.rpki-client.org