Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/xveAe2dWCAgU2kvd4VFbuG1tB-c.roa
File: xveAe2dWCAgU2kvd4VFbuG1tB-c.roa (raw, json)
Hash identifier: USdGCOOpG08wYNuaIMYtYU5fpdbchDrEMfmzamf7DbM=
Subject key identifier: C6:F7:80:7B:67:56:08:08:14:DA:4B:DD:E1:51:5B:B8:6D:6D:07:E7
Certificate issuer: /CN=a4d029f2c321adb59eca5fca57a1eb9bdf531d6a
Certificate serial: 01856F42907D7452795238197AC24CB14104
Authority key identifier: A4:D0:29:F2:C3:21:AD:B5:9E:CA:5F:CA:57:A1:EB:9B:DF:53:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pNAp8sMhrbWeyl_KV6Hrm99THWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/xveAe2dWCAgU2kvd4VFbuG1tB-c.roa
Signing time: Sun 01 Jan 2023 21:35:11 +0000
ROA not before: Sun 01 Jan 2023 21:35:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21266
IP address blocks: 80.90.64.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:90:7d:74:52:79:52:38:19:7a:c2:4c:b1:41:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4d029f2c321adb59eca5fca57a1eb9bdf531d6a
Validity
Not Before: Jan 1 21:35:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c6f7807b6756080814da4bdde1515bb86d6d07e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:3f:08:1d:20:1a:8d:5b:9c:ca:bd:cd:de:31:
1a:93:c7:e9:08:fb:a5:3a:7b:9a:65:0c:d1:94:41:
d3:f2:83:b5:b0:6a:65:13:b0:d6:89:c6:32:99:2b:
8a:af:0b:ae:9e:9f:93:db:13:7d:15:6e:a1:6c:0d:
f7:1b:c7:12:ee:a6:a4:ce:85:bd:a4:f3:83:a3:1c:
64:e6:95:aa:50:fb:3e:46:09:cd:7d:e5:5e:5c:be:
05:99:47:1c:11:5c:f3:58:2c:58:40:b7:8a:0a:01:
30:aa:86:21:5f:41:b2:40:36:21:a9:af:ae:a0:30:
5d:c1:a3:53:eb:4d:96:50:8d:e1:67:6f:1d:74:56:
65:93:02:b5:11:f5:78:99:b8:da:e1:41:a8:7e:b6:
f2:70:24:90:f8:ef:34:34:a6:e2:bd:ff:4d:83:72:
60:e5:cc:f6:09:82:7f:36:a5:1b:c1:26:00:36:c9:
be:69:0e:aa:c6:9a:f4:16:8b:67:9c:4e:67:96:5f:
bd:1a:3d:d8:7c:f0:0d:f0:60:28:69:3f:6c:af:20:
78:10:86:63:d4:1c:9b:18:8a:4a:84:12:fd:ce:e0:
be:34:b7:28:68:bc:ed:ed:d3:d2:1b:09:b9:3d:30:
23:8a:eb:2a:c6:a8:7b:a8:dc:50:4b:f7:74:38:ed:
d6:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:F7:80:7B:67:56:08:08:14:DA:4B:DD:E1:51:5B:B8:6D:6D:07:E7
X509v3 Authority Key Identifier:
keyid:A4:D0:29:F2:C3:21:AD:B5:9E:CA:5F:CA:57:A1:EB:9B:DF:53:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pNAp8sMhrbWeyl_KV6Hrm99THWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/xveAe2dWCAgU2kvd4VFbuG1tB-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/pNAp8sMhrbWeyl_KV6Hrm99THWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.90.64.0/20
Signature Algorithm: sha256WithRSAEncryption
8c:2c:6e:5a:62:95:94:dd:85:f0:cc:c6:a0:43:19:75:19:bb:
3d:15:08:52:f1:30:c3:2c:27:0f:d1:a5:53:5f:c9:ef:61:ff:
72:d2:90:52:da:41:4d:a5:0e:33:5d:04:f6:7b:15:98:83:7d:
1e:a1:42:ba:08:fa:06:c2:b6:eb:80:dc:ff:ac:c8:e2:1d:4c:
c8:0e:56:18:a4:30:98:3f:a0:66:de:d7:1c:22:c6:ec:2e:0b:
36:0a:d5:ca:0c:40:b3:a8:76:2d:16:6d:0a:6e:3d:86:1b:75:
b4:45:4e:89:fd:5e:45:e9:5d:35:9d:65:1f:12:ee:90:9d:ae:
55:f7:49:5a:ba:74:15:4c:9d:14:3f:cf:fd:87:8b:8b:4f:16:
b7:95:88:ea:0b:40:b5:66:1f:06:f8:81:96:85:05:8d:55:62:
d0:0c:58:06:c9:cb:28:d0:00:3a:9c:a9:7b:15:05:e0:cb:1a:
fa:0e:cb:90:10:86:b4:58:3c:b3:a5:65:90:94:6f:c8:4d:7b:
99:53:a3:2d:b7:28:28:7c:db:bf:30:f3:c3:b5:69:e8:0b:27:
00:5f:ba:a9:34:0a:dc:0d:9c:38:01:32:86:d4:4c:49:d3:9e:
cb:aa:de:66:b9:bd:4c:15:ae:1c:94:a5:ee:71:54:03:cb:4b:
63:94:48:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:31 2024 by rpki-client on console-fra.rpki-client.org