Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/AaIijlOo-RnusFr15LNy-W13HlY.roa
File: AaIijlOo-RnusFr15LNy-W13HlY.roa (raw, json)
Hash identifier: sTtzIOSUCoIwPxh0KYWcBC4qFXZSeEueitIhD4Of5Sg=
Subject key identifier: 01:A2:22:8E:53:A8:F9:19:EE:B0:5A:F5:E4:B3:72:F9:6D:77:1E:56
Certificate issuer: /CN=53b46ab79b9fc58f5dc4cf29d72dc5267ec3edde
Certificate serial: 0185704BF1F039FE3A9F157200E6C5FC33CC
Authority key identifier: 53:B4:6A:B7:9B:9F:C5:8F:5D:C4:CF:29:D7:2D:C5:26:7E:C3:ED:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/AaIijlOo-RnusFr15LNy-W13HlY.roa
Signing time: Mon 02 Jan 2023 02:25:03 +0000
ROA not before: Mon 02 Jan 2023 02:25:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42695
IP address blocks: 80.254.228.0/23 maxlen: 23
80.254.230.0/23 maxlen: 23
2a13:5243::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 28 Jun 2023 06:27:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:f1:f0:39:fe:3a:9f:15:72:00:e6:c5:fc:33:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b46ab79b9fc58f5dc4cf29d72dc5267ec3edde
Validity
Not Before: Jan 2 02:25:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01a2228e53a8f919eeb05af5e4b372f96d771e56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:2b:97:83:c3:53:c9:19:1c:1b:3d:33:c5:c9:
93:6e:92:e3:a4:a5:62:34:8d:24:e1:69:f2:ec:31:
f7:98:a9:46:77:ec:84:e6:12:70:26:77:a9:99:5b:
b2:9b:03:d0:25:6a:13:a4:5f:00:36:1f:82:31:f6:
66:32:40:d5:ea:f6:5c:62:a4:85:38:3a:0d:57:20:
69:99:f3:89:46:88:1d:63:b8:63:ef:a8:04:ab:23:
7c:3a:f6:96:4e:a9:c9:21:be:6e:c1:c0:a6:b9:32:
e8:67:c6:09:4a:6d:9d:ce:14:df:b7:3c:d9:c4:0e:
c9:a5:7b:c8:eb:c3:51:66:57:a1:f8:c8:ff:c7:b8:
c8:ed:f9:4b:9a:a2:4e:87:19:30:cf:44:74:2c:9a:
60:1a:bf:f9:39:2e:5b:ee:ba:c0:29:0d:cc:bd:f5:
c2:eb:91:54:a7:59:94:a8:9b:e2:0c:79:ac:83:57:
06:63:f4:7a:fd:29:48:52:23:13:ed:5f:84:44:78:
48:3d:95:56:45:9a:a2:68:fb:a2:4f:8f:9f:64:91:
b0:85:3c:7c:a2:c1:42:ae:ce:d5:86:23:cf:e3:3e:
f5:24:ef:76:b1:38:41:c8:ec:54:e8:4b:d9:61:2d:
4c:76:99:e6:81:c1:cc:1e:71:3c:48:a3:a9:a2:f7:
77:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A2:22:8E:53:A8:F9:19:EE:B0:5A:F5:E4:B3:72:F9:6D:77:1E:56
X509v3 Authority Key Identifier:
keyid:53:B4:6A:B7:9B:9F:C5:8F:5D:C4:CF:29:D7:2D:C5:26:7E:C3:ED:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/AaIijlOo-RnusFr15LNy-W13HlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.254.228.0/22
IPv6:
2a13:5243::/32
Signature Algorithm: sha256WithRSAEncryption
56:a2:3e:de:06:84:98:8b:f5:9c:b8:83:06:fd:cc:70:26:05:
9b:45:b0:5a:94:3b:d7:84:f3:73:60:e5:37:8f:37:40:15:de:
80:27:3f:9f:c6:5a:c7:6e:ab:b6:c2:90:ae:e8:fe:5f:d3:65:
06:98:1a:9c:40:15:41:ba:a7:4c:4f:af:59:0e:42:b2:5c:d4:
c9:a7:b4:ee:ca:4b:f9:7f:dc:cf:da:82:61:30:d2:58:4a:99:
3b:28:7f:90:18:f1:4e:47:dc:26:af:83:da:d8:65:e4:bd:39:
70:71:70:e5:27:38:c3:b3:69:66:40:7e:0d:90:3f:3c:21:d2:
19:09:96:17:b6:b5:eb:e4:77:10:0d:7c:db:7c:de:29:b4:d8:
c6:3e:55:9f:dd:9b:b5:2a:3d:5e:78:63:f4:b5:2b:94:b6:ad:
6c:38:0a:bf:38:71:92:3d:98:12:50:6c:a8:4f:15:84:a3:00:
eb:24:7c:8b:0e:f5:1c:a8:58:5c:98:e1:ad:8d:e3:15:3f:27:
db:6d:90:fb:55:a3:fb:4f:ec:d5:df:89:ad:95:16:35:d9:38:
7a:37:ed:64:35:4f:7a:68:61:93:d2:48:2a:c4:4d:a6:34:b5:
33:40:14:1d:c8:f3:14:86:cb:5f:3b:83:32:33:42:38:21:b0:
f0:e1:49:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:03 2024 by rpki-client on console-ams.rpki-client.org