Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/8750f2-62b8-4058-a9f1-87e45c15e05c/1/jbnMElgx8V-LEaIWRh3jehpDlOs.roa
File: jbnMElgx8V-LEaIWRh3jehpDlOs.roa (raw, json)
Hash identifier: 4eQ6im062E8IIPiyNY650PFsRIKaF1yQCKDN+MqEDAA=
Subject key identifier: 8D:B9:CC:12:58:31:F1:5F:8B:11:A2:16:46:1D:E3:7A:1A:43:94:EB
Certificate issuer: /CN=e628ea452fcb72a04cb696fb4ca25e95c26e49c6
Certificate serial: 018570671634A499D1BC0DAE7B981EA93259
Authority key identifier: E6:28:EA:45:2F:CB:72:A0:4C:B6:96:FB:4C:A2:5E:95:C2:6E:49:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5ijqRS_LcqBMtpb7TKJelcJuScY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/8750f2-62b8-4058-a9f1-87e45c15e05c/1/jbnMElgx8V-LEaIWRh3jehpDlOs.roa
Signing time: Mon 02 Jan 2023 02:54:42 +0000
ROA not before: Mon 02 Jan 2023 02:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57878
IP address blocks: 80.68.149.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:16:34:a4:99:d1:bc:0d:ae:7b:98:1e:a9:32:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e628ea452fcb72a04cb696fb4ca25e95c26e49c6
Validity
Not Before: Jan 2 02:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8db9cc125831f15f8b11a216461de37a1a4394eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:a1:58:a3:68:48:88:24:ee:59:32:88:44:9a:
13:b7:f3:52:f1:f9:f3:9c:08:6a:c6:dd:20:b2:f4:
0a:8d:c4:69:9c:13:d5:c8:b1:13:05:47:63:5c:10:
e8:52:ed:51:b8:c6:2d:56:76:fe:88:cf:f8:15:c0:
aa:9e:ba:5e:cf:3f:69:79:63:1e:17:2f:6d:a4:9a:
00:e8:04:3d:a5:45:5e:33:e4:10:00:e3:97:71:4a:
40:9e:ac:11:c3:f2:c0:3e:d9:1f:4b:f5:d7:6c:ff:
fa:5d:bb:8d:b4:b8:e5:4a:87:51:38:c9:bd:d8:22:
65:0b:24:1a:18:2f:52:b3:fa:fb:81:c8:89:d9:5f:
97:24:9d:f4:bc:17:9e:26:23:69:74:b1:91:52:1f:
36:b8:d3:c7:ef:3f:f0:f4:d5:70:04:0b:75:94:20:
63:d9:37:4c:24:67:a5:bb:a4:67:18:c8:8e:de:37:
df:98:44:8b:94:a8:2c:22:1d:dd:65:46:a9:fc:86:
45:1e:78:7b:f0:ec:12:7d:06:e1:8f:28:ba:67:fd:
66:57:62:11:72:3c:85:ad:0a:b7:1f:ec:55:4a:81:
66:83:c0:56:1c:0e:36:82:85:bc:57:ef:1f:7f:df:
88:2f:b6:94:94:76:d8:4f:56:b3:46:67:5a:4f:06:
2d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:B9:CC:12:58:31:F1:5F:8B:11:A2:16:46:1D:E3:7A:1A:43:94:EB
X509v3 Authority Key Identifier:
keyid:E6:28:EA:45:2F:CB:72:A0:4C:B6:96:FB:4C:A2:5E:95:C2:6E:49:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5ijqRS_LcqBMtpb7TKJelcJuScY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8750f2-62b8-4058-a9f1-87e45c15e05c/1/jbnMElgx8V-LEaIWRh3jehpDlOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8750f2-62b8-4058-a9f1-87e45c15e05c/1/5ijqRS_LcqBMtpb7TKJelcJuScY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.68.149.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:f4:26:1a:a5:75:22:09:8d:6e:0d:9c:31:d0:fb:bb:80:ac:
f5:9f:45:a6:5f:6b:61:15:c9:67:11:1e:23:69:bb:45:1c:e3:
ab:af:77:43:48:73:ee:d1:c7:e1:dd:0e:96:2c:13:51:35:44:
b6:32:9a:09:5c:df:95:ae:42:c1:32:73:e7:f5:5c:c1:96:00:
dd:7a:0e:79:d3:5f:4c:76:21:e8:e5:0e:44:61:1f:0a:18:e1:
f7:bc:8e:43:da:54:cf:ff:d7:39:4b:a5:d5:fc:a7:8c:e7:ba:
5f:75:42:d9:22:c6:db:06:b1:24:71:06:46:2f:a7:cd:ff:0a:
4b:60:94:a9:18:f9:b8:a4:e6:f3:25:3a:da:0b:23:62:c5:d9:
e6:02:69:73:99:c8:b1:75:5a:ce:31:03:9b:7f:23:1c:2e:6d:
cd:2d:21:ca:f3:c1:e9:d8:25:dd:5a:78:34:e4:02:85:6b:ab:
a8:e0:66:76:91:b8:94:97:16:1d:59:55:6e:b1:6f:5f:e8:f6:
13:a4:23:e1:49:42:87:98:04:52:be:a6:2e:a8:65:ff:29:03:
dd:35:d8:b6:3e:af:bf:f8:9c:31:47:fe:05:a5:a8:c1:34:24:
c4:e2:d8:f5:59:1c:4a:ab:20:01:82:99:9c:08:ae:ee:e7:ee:
d6:15:86:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:23 2024 by rpki-client on console-fra.rpki-client.org