Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/swzyB6bjHmVAmEmP1Y2dWBoAKXw.roa
File: swzyB6bjHmVAmEmP1Y2dWBoAKXw.roa (raw, json)
Hash identifier: Yij0AGQU3fhWrNGKEeE/i4mWbV5odeZkyUs1UZZL53M=
Subject key identifier: B3:0C:F2:07:A6:E3:1E:65:40:98:49:8F:D5:8D:9D:58:1A:00:29:7C
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018EA378C6E039064E752ABE817D2F1BE04C
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/swzyB6bjHmVAmEmP1Y2dWBoAKXw.roa
Signing time: Wed 03 Apr 2024 10:19:45 +0000
ROA not before: Wed 03 Apr 2024 10:19:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12380
IP address blocks: 80.248.144.0/20 maxlen: 20
89.20.16.0/20 maxlen: 20
Validation: Failed, certificate revoked on Thu 04 Apr 2024 04:13:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a3:78:c6:e0:39:06:4e:75:2a:be:81:7d:2f:1b:e0:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Apr 3 10:19:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b30cf207a6e31e654098498fd58d9d581a00297c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:17:fa:73:10:04:01:63:d3:91:a9:82:05:cf:
47:bb:d3:29:c5:9b:a9:47:e3:82:ca:a8:11:96:a6:
1d:d8:4f:ab:4b:b5:6a:2f:ab:91:3d:7e:8d:1a:1b:
0e:ec:ae:7e:e1:76:b3:08:01:c9:f5:21:75:a9:7d:
b1:f9:54:68:f4:5f:e8:80:78:ea:37:9f:e9:6b:a7:
e0:90:a6:0d:3a:6a:6d:6c:65:36:df:92:b0:db:ae:
8e:63:e9:62:69:42:8a:81:b0:3a:32:78:39:5b:70:
1f:99:bb:df:c1:88:90:09:fc:c2:22:71:92:e9:a9:
4d:7e:35:1c:4b:2b:5c:fb:1c:7c:8b:b1:5b:4d:21:
08:2c:aa:56:4c:c9:d2:b7:2f:aa:c6:50:08:30:c1:
d5:46:6c:4a:2a:e5:91:ee:cc:35:de:58:e6:d0:ac:
d7:69:b7:b7:21:ea:d1:2a:a3:f8:0c:b0:1f:2e:9a:
dc:7b:c4:14:c1:0e:75:bc:7b:11:d0:95:a5:a6:c9:
a4:c1:18:41:92:f0:08:e7:d4:de:6f:4d:ed:c5:cf:
fa:9a:ce:a6:47:d9:51:d2:fa:8c:6a:30:da:ae:d3:
77:91:b7:90:43:cf:0c:3d:69:e5:ec:4c:e1:0e:74:
2c:5b:a4:e0:c7:a7:be:78:72:07:f7:8a:5f:cb:88:
42:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:0C:F2:07:A6:E3:1E:65:40:98:49:8F:D5:8D:9D:58:1A:00:29:7C
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/swzyB6bjHmVAmEmP1Y2dWBoAKXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.248.144.0/20
89.20.16.0/20
Signature Algorithm: sha256WithRSAEncryption
90:11:18:f8:31:ba:7f:b1:65:53:df:0f:66:40:c6:cd:ca:3b:
90:65:ca:4a:8b:9a:ba:a3:20:62:77:fc:6e:12:fc:ec:50:77:
48:f6:39:92:7c:7e:9e:e8:47:1f:10:d4:48:10:1e:18:a7:11:
95:02:b8:12:f2:d3:47:fa:72:da:5e:23:7d:d1:bb:88:72:f3:
eb:c7:5c:74:e4:a8:0a:6a:83:2e:4d:d1:c4:c8:f3:04:57:a4:
10:b2:8d:a6:2d:d3:77:8c:12:45:0a:cb:c8:ec:27:c7:91:34:
67:46:9b:18:2a:b1:91:e6:61:2c:62:7a:eb:c5:ab:b5:8b:30:
97:73:0b:71:d4:c0:7d:51:cc:64:9b:96:f2:b0:10:aa:a2:52:
76:50:42:d7:e9:ca:f8:1f:2a:ad:2c:7f:a4:25:69:7e:b1:5c:
6e:85:ac:99:4a:a0:72:38:9f:60:53:b0:33:61:b2:b0:f2:e6:
13:77:68:fd:5d:67:db:4e:05:33:a7:61:3a:fc:46:8a:8c:86:
22:7a:78:0e:c3:8a:e5:66:35:b6:6e:ad:f4:e7:6a:21:d3:25:
73:1e:5e:8f:c9:dc:cb:a4:06:7f:65:87:3b:f3:b5:0e:3c:0f:
18:7c:44:e3:19:21:90:ac:5c:26:e4:af:1d:a8:fc:1f:93:8a:
9f:de:89:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:26 2024 by rpki-client on console-ams.rpki-client.org