Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/067837-baa0-4085-aa23-8023d945497a/1/3QjQqse9qn1utDzuNfLfipM6Neg.roa
File: 3QjQqse9qn1utDzuNfLfipM6Neg.roa (raw, json)
Hash identifier: JDhccGNkDvkmALIWyPvJNVIpf+FvwDuf8DDQRAG9Y1s=
Subject key identifier: DD:08:D0:AA:C7:BD:AA:7D:6E:B4:3C:EE:35:F2:DF:8A:93:3A:35:E8
Certificate issuer: /CN=bfac971076263bddb0eecf5bea6574a405b985de
Certificate serial: 018E2E4728116BBCA1E11C1370D39970D32C
Authority key identifier: BF:AC:97:10:76:26:3B:DD:B0:EE:CF:5B:EA:65:74:A4:05:B9:85:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v6yXEHYmO92w7s9b6mV0pAW5hd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/067837-baa0-4085-aa23-8023d945497a/1/3QjQqse9qn1utDzuNfLfipM6Neg.roa
Signing time: Mon 11 Mar 2024 16:09:58 +0000
ROA not before: Mon 11 Mar 2024 16:09:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212150
IP address blocks: 80.244.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Apr 2024 06:03:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2e:47:28:11:6b:bc:a1:e1:1c:13:70:d3:99:70:d3:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfac971076263bddb0eecf5bea6574a405b985de
Validity
Not Before: Mar 11 16:09:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dd08d0aac7bdaa7d6eb43cee35f2df8a933a35e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:54:0c:46:b8:bd:4e:f3:74:12:06:d3:16:2a:
f8:91:47:63:04:46:13:4d:e9:82:27:91:b7:88:12:
10:61:ca:fd:c5:b5:80:9f:ae:c3:ca:1a:b5:82:43:
c0:18:8b:6d:f2:cc:61:3d:08:66:06:2c:79:53:54:
b5:de:1c:03:6e:ba:28:39:cb:1c:ac:c0:28:eb:54:
f0:44:0a:6e:1b:15:12:54:03:7f:9a:e3:97:41:74:
8c:ba:4b:11:ba:80:7d:3d:83:8d:4b:a9:28:e8:7f:
58:0d:65:5c:31:b3:e1:fc:b1:de:2e:e4:03:c5:e8:
08:b3:e9:1c:c1:fe:90:1c:77:59:4d:94:d1:b4:ff:
5a:e4:ce:5a:31:4d:76:77:37:c0:b6:c2:07:0a:2a:
d8:d4:85:7e:14:e0:63:56:51:53:c1:66:f7:bf:6a:
ff:01:bc:34:e6:26:92:06:63:2d:e9:35:63:27:7c:
d7:dd:6b:6f:63:0a:9f:2d:59:7d:3f:39:24:c5:aa:
f0:3e:74:9f:6f:bd:70:a4:f5:1a:d4:c5:85:1d:b0:
85:f3:ad:27:b2:83:32:a0:22:6f:e8:64:25:56:0d:
76:6b:54:c4:42:a3:b6:b7:cc:41:06:a4:b9:d2:4f:
bf:6e:79:f6:3a:5f:0f:5d:21:0a:96:3d:68:e1:c3:
aa:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:08:D0:AA:C7:BD:AA:7D:6E:B4:3C:EE:35:F2:DF:8A:93:3A:35:E8
X509v3 Authority Key Identifier:
keyid:BF:AC:97:10:76:26:3B:DD:B0:EE:CF:5B:EA:65:74:A4:05:B9:85:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v6yXEHYmO92w7s9b6mV0pAW5hd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/067837-baa0-4085-aa23-8023d945497a/1/3QjQqse9qn1utDzuNfLfipM6Neg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/067837-baa0-4085-aa23-8023d945497a/1/v6yXEHYmO92w7s9b6mV0pAW5hd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.244.13.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:e2:4b:90:72:87:fb:fe:4e:84:8a:79:0e:04:1f:a2:47:1c:
28:f8:9f:12:d7:3e:d3:e0:ae:6c:13:e0:64:b3:b5:df:33:36:
91:8f:19:4b:76:be:47:9f:05:92:2b:31:1e:07:40:a9:b9:dc:
8b:0a:ad:f1:45:6b:78:c3:c6:2d:96:48:7e:42:03:52:37:8c:
74:9f:a7:a9:17:04:4f:67:ca:a5:a6:35:53:95:36:9f:08:23:
eb:17:a7:45:c5:10:da:c5:a8:4c:66:bf:64:13:15:93:26:31:
b3:14:18:20:94:d8:25:f6:a6:97:cd:88:56:d1:f1:42:06:46:
2c:96:3e:43:55:4a:c0:b0:bf:56:c5:99:04:c9:7b:50:ac:e4:
c1:47:a6:1c:57:0d:6c:b2:1a:3d:b0:d0:75:7e:af:f4:32:c8:
bf:18:19:dc:a6:56:12:e2:53:2d:73:36:50:1b:45:6c:40:e8:
07:0c:df:29:3c:68:c0:bf:a0:96:ab:a1:5a:20:04:75:02:c9:
04:dd:4f:4a:e3:bf:8b:8b:e5:55:17:64:60:e4:e3:f8:92:36:
b3:74:61:09:c3:a1:4c:be:27:6d:c7:24:9d:65:95:01:5b:e5:
c8:cc:99:14:9a:ca:c6:ca:3f:8f:10:dd:11:b7:bb:c3:24:3b:
c2:2f:59:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:54 2024 by rpki-client on console-fra.rpki-client.org