Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/6ca5b6-c423-4b54-9655-7c5964990397/1/cmEGQYD8WtaUjgwD_mzJHcKL7BI.roa
File: cmEGQYD8WtaUjgwD_mzJHcKL7BI.roa (raw, json)
Hash identifier: HxHsijXJWPbcmtq8xnLT8WhcK+UuvZlwsq2gqc+7Yqk=
Subject key identifier: 72:61:06:41:80:FC:5A:D6:94:8E:0C:03:FE:6C:C9:1D:C2:8B:EC:12
Certificate issuer: /CN=a036af22669183ba26f23976530e349b34651968
Certificate serial: 0192D972438D32635186790BF5D597C2B9B1
Authority key identifier: A0:36:AF:22:66:91:83:BA:26:F2:39:76:53:0E:34:9B:34:65:19:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oDavImaRg7om8jl2Uw40mzRlGWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/6ca5b6-c423-4b54-9655-7c5964990397/1/cmEGQYD8WtaUjgwD_mzJHcKL7BI.roa
Signing time: Tue 29 Oct 2024 18:03:17 +0000
ROA not before: Tue 29 Oct 2024 18:03:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30910
IP address blocks: 80.64.16.0/21 maxlen: 21
80.64.16.0/22 maxlen: 22
80.64.20.0/23 maxlen: 23
185.39.16.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 31 Oct 2024 12:51:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d9:72:43:8d:32:63:51:86:79:0b:f5:d5:97:c2:b9:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a036af22669183ba26f23976530e349b34651968
Validity
Not Before: Oct 29 18:03:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7261064180fc5ad6948e0c03fe6cc91dc28bec12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:14:f0:58:d1:f9:b8:1b:f2:e4:61:2b:db:a3:
0a:09:9a:8b:8f:2a:7a:1a:cc:a3:6e:ec:2a:49:2f:
63:13:a1:dd:69:bb:4f:54:a9:6f:ee:8e:81:2b:7e:
78:37:32:12:b5:7e:85:8d:0d:44:02:d3:e6:4f:79:
a1:3f:91:19:56:c1:32:aa:ea:7d:b6:46:c8:c1:91:
72:e0:8f:6d:21:4e:b9:aa:57:1a:76:b0:7e:e1:8c:
a5:b9:3b:5c:bf:d6:6e:3b:6a:aa:e5:c6:23:c8:63:
ee:9a:15:e7:9f:94:19:48:86:25:78:4b:5b:90:c4:
64:65:a7:b1:b5:30:02:b0:0c:6d:87:ca:84:91:cb:
b5:6c:68:96:c3:1c:02:d7:05:76:f4:40:b3:42:7b:
05:37:f6:46:f1:b7:6f:10:06:af:d6:53:fb:de:5b:
e5:ff:3e:28:d3:f9:31:79:b3:31:07:8d:8d:1f:d3:
7d:ab:5c:07:92:c5:05:25:c4:f9:f3:ab:63:15:91:
aa:0c:50:2b:97:eb:9b:16:b5:9a:9f:53:83:e4:63:
1b:9e:d5:7c:03:ff:94:6b:67:bb:cb:9f:d0:59:c8:
33:5c:eb:f9:46:e7:aa:44:d0:0f:31:7f:3b:ef:ba:
5c:49:bf:61:3e:d5:dd:cf:13:68:9c:fd:ef:43:12:
f7:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:61:06:41:80:FC:5A:D6:94:8E:0C:03:FE:6C:C9:1D:C2:8B:EC:12
X509v3 Authority Key Identifier:
keyid:A0:36:AF:22:66:91:83:BA:26:F2:39:76:53:0E:34:9B:34:65:19:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oDavImaRg7om8jl2Uw40mzRlGWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/6ca5b6-c423-4b54-9655-7c5964990397/1/cmEGQYD8WtaUjgwD_mzJHcKL7BI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/6ca5b6-c423-4b54-9655-7c5964990397/1/oDavImaRg7om8jl2Uw40mzRlGWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.64.16.0/21
185.39.16.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:d0:e1:24:8c:55:f5:77:d5:0e:e0:89:c3:33:50:06:68:a3:
c9:00:0e:49:14:38:c3:aa:36:0d:cd:f0:3a:32:cc:ea:ff:46:
6e:15:69:07:73:98:c6:08:c2:dc:9e:db:05:f2:50:00:9d:4d:
52:a7:1d:7a:55:18:d4:4d:67:02:ff:2f:6b:b9:06:16:b6:39:
9b:51:3a:7d:49:29:d3:ca:2b:5a:68:e2:8d:79:68:e8:56:87:
79:72:77:12:d5:d9:3b:3f:ec:cf:00:1f:02:33:fd:8c:78:a1:
11:81:58:85:88:59:03:c3:b9:cb:fc:0e:4b:af:b5:84:a8:72:
e2:4f:b7:32:1f:b1:f9:90:a5:e7:b4:c5:00:e1:e9:67:2e:5c:
de:fd:50:98:f6:47:d9:1b:59:b7:a4:03:47:f2:0e:a2:1e:21:
d7:fd:ce:1f:61:70:44:83:55:87:fa:fa:e3:03:79:86:cb:99:
ac:e8:ea:50:79:3c:fe:a7:83:ed:23:a5:92:0d:15:39:03:94:
c5:f1:19:b0:0d:9f:7d:1f:46:dd:c6:32:06:e7:17:d2:5c:7f:
8e:62:f3:8c:71:ae:c9:2d:63:24:da:7b:98:4b:e5:f2:62:bd:
26:4a:f3:41:26:61:11:06:1f:20:80:db:96:4a:75:db:f8:0f:
ac:ac:37:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 31 15:31:01 2024 by rpki-client on console-fra.rpki-client.org