Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/NdEJI1kzwHcN9xeWrE4fyFSyhMA.roa
File: NdEJI1kzwHcN9xeWrE4fyFSyhMA.roa (raw, json)
Hash identifier: u4kAFUYNfDYUCFQmE/AimbBrUoxNzK24dVs7rKT2TrE=
Subject key identifier: 35:D1:09:23:59:33:C0:77:0D:F7:17:96:AC:4E:1F:C8:54:B2:84:C0
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 01862679019603768FC3BCF46B31CD723F8A
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/NdEJI1kzwHcN9xeWrE4fyFSyhMA.roa
Signing time: Mon 06 Feb 2023 11:25:09 +0000
ROA not before: Mon 06 Feb 2023 11:25:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 80.93.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 Mar 2023 10:46:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:26:79:01:96:03:76:8f:c3:bc:f4:6b:31:cd:72:3f:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Feb 6 11:25:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35d109235933c0770df71796ac4e1fc854b284c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:02:fb:b9:50:e6:44:d2:db:f9:aa:1e:b3:b2:
98:95:7c:02:a1:6e:0a:e1:88:c0:e4:00:39:fe:20:
17:bf:fd:da:fb:70:47:bc:97:81:9a:d4:3b:41:8e:
e2:2d:e8:22:09:4a:23:03:ce:12:bd:94:28:a9:e7:
d7:46:10:53:8e:68:62:66:10:29:2d:f4:40:33:ef:
56:6b:4c:72:ad:56:99:22:4e:17:ae:d0:ba:5b:ad:
47:62:3d:51:78:85:48:5b:7e:48:c8:4e:aa:3e:e2:
27:a2:16:d4:e2:0c:dd:05:3d:da:c4:5d:36:a8:ea:
6e:b6:6b:31:11:ce:1e:72:7d:7e:ce:1d:fd:5e:af:
83:36:e2:8b:cc:f6:22:44:54:b0:ba:82:f5:3f:d5:
63:d9:30:0a:ca:45:b3:ef:65:cd:14:a1:c4:09:49:
61:5f:f1:e5:c3:7e:2e:20:33:b3:34:a5:fb:c4:56:
2a:c4:96:3f:03:c9:66:20:b8:3e:44:e1:d1:15:26:
bb:37:68:5c:1d:6a:c1:ad:96:f1:f1:fe:1e:bf:8e:
b4:12:04:b5:cf:f1:13:cd:96:57:42:ce:ef:50:4e:
56:48:7c:b9:4a:b5:8a:6f:66:b9:26:23:5c:69:06:
ce:53:b7:2e:d0:7b:4e:88:67:1d:ed:8e:7f:e6:65:
cc:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:D1:09:23:59:33:C0:77:0D:F7:17:96:AC:4E:1F:C8:54:B2:84:C0
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/NdEJI1kzwHcN9xeWrE4fyFSyhMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.93.202.0/24
Signature Algorithm: sha256WithRSAEncryption
42:7e:b8:bf:06:2f:b6:f3:3b:f1:47:06:60:42:54:fc:f2:e6:
74:d5:ba:6d:b3:7a:11:fd:ca:76:b5:16:10:bf:39:a9:72:be:
7c:eb:74:f6:b4:b7:a8:d4:af:4c:47:de:84:78:c2:68:b4:02:
9e:bf:0b:42:fb:9b:7a:2c:2a:fc:db:4f:c7:cb:2e:7a:cf:dc:
cb:22:81:68:51:c7:c4:31:58:87:a6:fb:01:b6:21:e6:a4:90:
74:3d:d2:60:ae:5d:11:3e:6c:eb:28:c9:37:56:6f:55:18:7a:
a7:0f:78:bf:a0:12:13:a6:04:9f:ca:25:22:12:3f:a6:7b:7e:
a8:72:b0:2a:89:51:a3:a7:26:58:a0:7a:51:62:bf:22:5e:5f:
7f:a6:65:54:01:ee:fc:4b:c1:36:5f:9f:91:81:45:0b:8f:2f:
d6:6f:d6:f4:9d:e5:01:c1:3e:e0:98:ee:77:3b:3f:3c:30:88:
f7:37:89:3c:93:43:30:a1:20:97:47:3e:23:94:43:88:75:fd:
22:4f:8f:a3:9b:d7:06:93:ac:97:24:80:6b:47:15:e8:ef:bc:
94:3c:bc:05:d0:00:13:72:be:42:d3:e3:42:0f:30:ea:c2:0f:
c4:8e:b2:6c:0d:ec:4c:7f:39:3d:33:c8:bc:3b:d5:12:5c:83:
18:f3:c1:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:44 2024 by rpki-client on console-fra.rpki-client.org