Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/A-ATB9f2D1yB_8R1U55vcH-FjvI.roa
File: A-ATB9f2D1yB_8R1U55vcH-FjvI.roa (raw, json)
Hash identifier: zJ2+V9sqMwuNtQGRsd6jUjjVzgnzYxYlHkdJY61Xipg=
Subject key identifier: 03:E0:13:07:D7:F6:0F:5C:81:FF:C4:75:53:9E:6F:70:7F:85:8E:F2
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 01886706E50E08BE7CB3C6363E8E74E9681D
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/A-ATB9f2D1yB_8R1U55vcH-FjvI.roa
Signing time: Mon 29 May 2023 10:21:25 +0000
ROA not before: Mon 29 May 2023 10:21:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48359
IP address blocks: 185.80.196.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 17 Jun 2023 11:06:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:67:06:e5:0e:08:be:7c:b3:c6:36:3e:8e:74:e9:68:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: May 29 10:21:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03e01307d7f60f5c81ffc475539e6f707f858ef2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:71:5c:22:67:c6:01:44:ec:69:1a:cc:0c:91:
18:91:53:10:85:3c:e0:96:13:63:6b:06:b7:e7:ce:
87:d8:ea:ac:96:ab:2e:c3:d9:18:7a:ec:f1:4a:da:
4f:26:fe:88:49:01:28:df:5c:ce:84:e7:c6:5e:92:
79:2f:be:2e:35:13:6d:5b:df:4c:da:f6:89:8c:cd:
d8:9e:61:60:e3:bb:45:90:78:84:c3:d5:3a:f3:55:
16:8e:cd:ad:e2:56:09:d7:3c:f6:1b:07:38:c1:71:
fb:74:06:d3:e3:3f:8c:80:b7:6c:0d:75:41:60:d3:
cd:4a:19:79:55:4c:3a:05:4d:8f:ce:1a:31:72:c4:
9c:40:ef:81:e6:8a:f9:25:ec:56:f6:78:15:6d:02:
e2:da:69:dc:7b:b0:62:4b:51:f4:cf:28:1a:4a:01:
d0:83:f4:d4:c2:6b:c9:9c:82:92:12:18:32:e6:01:
09:7d:95:44:6e:e2:34:6e:71:c8:66:4c:f1:48:40:
b5:72:b5:36:29:0d:b1:eb:de:84:aa:a7:18:a8:57:
66:32:59:0d:f5:48:90:39:94:c4:14:76:32:fe:82:
ba:39:5f:57:89:9f:84:aa:57:e5:02:ed:18:1a:a9:
de:48:d6:6b:dd:c4:f3:ae:ca:ee:f0:37:ce:4a:79:
ad:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:E0:13:07:D7:F6:0F:5C:81:FF:C4:75:53:9E:6F:70:7F:85:8E:F2
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/A-ATB9f2D1yB_8R1U55vcH-FjvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.196.0/23
Signature Algorithm: sha256WithRSAEncryption
62:4d:48:88:ad:d2:6b:e7:e6:b8:a7:42:c1:df:20:d4:e5:62:
cf:23:2e:ef:56:23:7e:0c:b6:b3:51:84:f4:d8:94:31:aa:c2:
8c:4e:8e:a9:59:a4:80:4e:bf:b9:59:4a:16:78:4f:02:ff:81:
b0:e4:94:16:ed:99:36:cc:a0:9b:5a:98:33:78:b6:25:c8:7e:
45:82:8c:b7:fa:0e:a8:3f:4b:d3:3b:6a:9b:a1:91:63:af:d1:
6e:7b:e1:18:24:ae:f9:30:32:c7:7d:52:b5:cb:5b:10:97:96:
98:94:06:bf:f4:09:35:3d:ba:40:f2:86:0c:9a:7a:8b:b4:71:
b0:77:d8:66:a3:f8:46:c8:ed:bb:dc:f9:e3:0e:31:e5:22:95:
a4:ef:c4:4a:ef:8f:3c:17:f5:9e:ea:b5:10:09:6e:e4:ab:a5:
a6:1a:64:97:e5:b7:5a:7e:41:a4:77:a9:81:e5:79:36:9f:26:
8f:fd:fb:aa:6d:b9:28:02:f4:ac:d5:13:ba:76:ce:b8:8a:8e:
30:7e:74:31:aa:c0:bb:e7:36:c5:14:bd:81:bd:44:1a:4e:7d:
4f:21:a8:35:95:d4:57:a6:7c:af:2c:65:4a:62:ef:e8:31:28:
a8:07:76:e5:22:97:ce:12:46:bd:f9:9b:27:9e:05:c1:0c:7f:
a8:fe:03:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:15 2024 by rpki-client on console-ams.rpki-client.org