Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/V1OM_3BiGkUhcNgPGwEXMKu0C4k.roa
File: V1OM_3BiGkUhcNgPGwEXMKu0C4k.roa (raw, json)
Hash identifier: L17ufj6g7l08+jkRwyqVZAIH9wGCHI/1ovzQhq9bV9Y=
Subject key identifier: 57:53:8C:FF:70:62:1A:45:21:70:D8:0F:1B:01:17:30:AB:B4:0B:89
Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c
Certificate serial: 01856E0B0F6F56B371C3F3D0C69E385E0262
Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/V1OM_3BiGkUhcNgPGwEXMKu0C4k.roa
Signing time: Sun 01 Jan 2023 15:54:56 +0000
ROA not before: Sun 01 Jan 2023 15:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6774
IP address blocks: 80.231.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0b:0f:6f:56:b3:71:c3:f3:d0:c6:9e:38:5e:02:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c
Validity
Not Before: Jan 1 15:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57538cff70621a452170d80f1b011730abb40b89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:8a:bc:90:66:9e:6c:28:ab:c8:04:8b:0d:ec:
af:95:3b:a7:e6:9b:68:73:4a:3a:bf:90:6d:bc:9b:
02:59:ad:fe:49:47:e7:75:21:af:40:55:5c:53:0c:
94:06:7e:04:b9:d0:19:fc:02:db:5b:8c:d1:16:27:
d6:f4:59:50:14:e9:82:97:23:e6:8f:e8:de:9e:69:
33:d2:bc:54:89:c7:77:e3:54:50:38:1a:f6:28:31:
74:ca:20:c8:0b:2c:a6:03:48:74:c9:2d:0e:72:57:
78:47:40:0e:cf:1e:73:22:13:01:11:d7:72:48:7f:
63:53:70:90:ae:7b:98:d6:b1:6c:cd:27:cf:ef:d5:
58:2c:7a:cf:a1:57:90:b6:65:6c:7a:12:06:fe:d6:
95:d2:c2:0b:db:a1:29:a3:a0:91:df:4e:3b:d0:5e:
e2:8c:12:59:80:e9:44:4b:a2:60:31:50:b6:e6:9e:
0a:dd:38:f0:33:9a:c2:7e:d1:34:5a:f4:53:67:ca:
47:1b:d2:3d:f8:ba:85:85:e4:28:d4:07:81:95:73:
43:0b:4c:c0:8e:5a:c2:22:8c:3f:f7:19:f5:3f:de:
69:0d:8b:a9:eb:6a:09:bd:0f:46:c3:9a:16:78:5e:
e1:d8:61:58:fe:1f:fe:5f:fa:d1:ad:fa:78:09:db:
62:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:53:8C:FF:70:62:1A:45:21:70:D8:0F:1B:01:17:30:AB:B4:0B:89
X509v3 Authority Key Identifier:
keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/V1OM_3BiGkUhcNgPGwEXMKu0C4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.231.53.0/24
Signature Algorithm: sha256WithRSAEncryption
92:12:2f:c9:c9:b9:ce:93:3e:5f:58:97:2d:9a:26:32:c3:f7:
ce:cf:2b:e6:05:f4:23:7d:75:0f:65:70:26:bd:cc:75:12:b6:
51:fb:7a:aa:f8:36:75:b8:c6:74:0f:0b:d6:9d:31:72:47:f0:
fa:de:d1:0e:27:e0:5c:32:cc:10:5c:64:0e:04:63:7b:c0:7e:
e0:2b:7d:9a:e5:d1:79:96:b5:1a:e5:b5:92:e3:dd:b4:4c:bb:
ff:16:9f:92:d3:5f:86:81:fd:f0:17:18:74:84:56:d5:14:8c:
6a:42:9f:6d:14:f8:27:69:54:6f:dd:2c:8f:1a:92:9c:65:11:
0a:e0:1a:1d:d0:75:b0:d4:9e:04:f3:de:58:cf:54:13:0c:eb:
cb:96:51:17:c9:ad:a4:ce:64:87:62:a3:15:af:71:6c:44:cc:
e2:af:52:dd:72:8e:f7:13:a3:ee:c0:1d:a8:36:e0:6c:42:9b:
5b:ea:a9:7a:04:98:98:02:ff:83:f7:01:06:5d:36:2d:f6:90:
68:e2:7b:21:71:0f:01:3a:b8:31:f8:58:cb:3c:2c:92:7b:b2:
b3:ce:8f:c9:df:f1:49:8b:3b:a1:3b:a3:50:9e:6a:24:f4:d4:
9b:6d:0b:54:66:fb:3e:0a:50:a5:04:4b:f3:cb:98:f2:43:8f:
b6:50:1c:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:30 2024 by rpki-client on console-fra.rpki-client.org