Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/b79871-b1dd-4e6e-95e7-de025e6f8589/1/1-kEzLx8zLSTvTq-HxaTM1yUz0ew.roa
File: 1-kEzLx8zLSTvTq-HxaTM1yUz0ew.roa (raw, json)
Hash identifier: u4jJrgLC3CGvNj9JjTBXdMKeiCqx3IsOJflRfeEk79w=
Subject key identifier: FA:41:33:2F:1F:33:2D:24:EF:4E:AF:87:C5:A4:CC:D7:25:33:D1:EC
Certificate issuer: /CN=bb30155764cb2ee0f5eeefcdf52a7b12d372eddd
Certificate serial: 01856DC19A79826DACB1BB31C3A093360E14
Authority key identifier: BB:30:15:57:64:CB:2E:E0:F5:EE:EF:CD:F5:2A:7B:12:D3:72:ED:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uzAVV2TLLuD17u_N9Sp7EtNy7d0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/b79871-b1dd-4e6e-95e7-de025e6f8589/1/1-kEzLx8zLSTvTq-HxaTM1yUz0ew.roa
Signing time: Sun 01 Jan 2023 14:34:42 +0000
ROA not before: Sun 01 Jan 2023 14:34:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28847
IP address blocks: 81.94.64.0/19 maxlen: 19
80.245.224.0/20 maxlen: 20
185.145.92.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 09 Jan 2023 12:25:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:9a:79:82:6d:ac:b1:bb:31:c3:a0:93:36:0e:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb30155764cb2ee0f5eeefcdf52a7b12d372eddd
Validity
Not Before: Jan 1 14:34:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa41332f1f332d24ef4eaf87c5a4ccd72533d1ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:28:b6:cb:47:49:5f:a3:88:d7:30:bc:b2:56:
e1:d6:aa:37:af:4c:b2:88:03:20:6c:bb:c4:6a:bd:
8e:54:15:e2:70:8d:70:a6:07:68:a9:ba:a4:88:9a:
c6:a5:52:06:c7:c9:a5:e2:5c:ad:e9:30:57:fe:ca:
97:ec:4a:1f:d8:ee:a1:e5:40:0e:e7:b9:43:7c:8b:
51:21:62:60:13:23:2d:a1:f9:bf:bf:79:19:69:ed:
db:9c:6d:ba:12:29:2a:3b:03:b2:27:b8:8b:1e:1c:
e2:b6:e4:47:89:2d:06:f5:ec:76:46:39:0d:8b:31:
a0:d4:cc:2f:0b:65:49:15:fb:07:ca:ec:14:e4:cc:
84:be:25:ad:d0:89:6e:a7:83:33:5d:01:b1:f9:28:
a0:6e:18:83:56:d0:f7:30:da:33:df:6f:7b:48:bd:
80:47:fb:53:95:e8:2a:1c:35:0b:db:24:98:1a:76:
0e:0b:56:4a:d6:39:45:d8:e5:fa:7d:dc:52:9d:bb:
5f:e3:ad:e3:81:fe:42:1e:05:1b:c2:46:64:92:47:
24:57:6c:55:a1:7d:66:5e:db:49:8a:4d:44:d5:f6:
a3:50:b7:95:69:11:1c:6a:c2:30:48:65:c2:17:dd:
08:9d:d7:0f:87:52:52:6a:c3:3f:1c:6e:9f:54:1d:
22:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:41:33:2F:1F:33:2D:24:EF:4E:AF:87:C5:A4:CC:D7:25:33:D1:EC
X509v3 Authority Key Identifier:
keyid:BB:30:15:57:64:CB:2E:E0:F5:EE:EF:CD:F5:2A:7B:12:D3:72:ED:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uzAVV2TLLuD17u_N9Sp7EtNy7d0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b79871-b1dd-4e6e-95e7-de025e6f8589/1/1-kEzLx8zLSTvTq-HxaTM1yUz0ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b79871-b1dd-4e6e-95e7-de025e6f8589/1/uzAVV2TLLuD17u_N9Sp7EtNy7d0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.245.224.0/20
81.94.64.0/19
185.145.92.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:04:2b:9f:f3:87:fb:1a:fc:c4:69:8a:d5:3e:02:ba:5c:d5:
b9:48:19:49:9e:17:08:d5:31:c3:46:fd:ba:f7:84:05:5b:8f:
94:af:b5:18:65:84:b4:c0:19:3b:07:cc:77:d4:2e:b0:b9:fc:
2f:91:19:d9:0e:a1:31:e7:56:cf:79:7c:09:9c:0d:b2:18:a5:
19:db:d1:88:92:36:51:1e:5e:e4:05:2f:14:41:ea:b6:be:1f:
4a:4a:5c:6a:10:86:82:f0:b1:6a:7d:c1:7c:2d:6b:52:b7:35:
54:24:a8:c7:bb:51:a6:e5:c7:62:37:96:87:35:82:30:3c:06:
39:76:f4:58:fe:71:e4:a2:d3:93:8b:b5:67:3e:aa:b3:c4:c0:
d8:00:d3:e4:49:db:96:4c:e2:31:ad:5e:f2:73:4d:21:ab:3d:
60:cc:12:6c:d3:86:46:3c:7d:a2:1b:a3:11:f5:c9:b7:57:0a:
58:bf:bd:b6:0d:d7:5c:d9:63:a6:ea:51:42:52:66:50:ee:3a:
e2:6f:be:b0:16:cc:65:95:ea:52:e0:dd:3c:0c:fd:f2:a8:18:
95:dd:d6:a9:af:08:4f:62:8d:5f:ca:d4:3c:6e:b6:a6:e0:1c:
b0:05:bc:11:93:55:cd:2c:55:73:39:07:49:c0:f7:47:12:ae:
64:25:83:43
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:24 2024 by rpki-client on console-ams.rpki-client.org