Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/egVYgiyQ66k9k5KGzUyE5Nd8uao.roa
File: egVYgiyQ66k9k5KGzUyE5Nd8uao.roa (raw, json)
Hash identifier: c6RKIZaCM1whIZkVcVNFLC2XjlDEdUxR+ZmSr2MfMxw=
Subject key identifier: 7A:05:58:82:2C:90:EB:A9:3D:93:92:86:CD:4C:84:E4:D7:7C:B9:AA
Certificate issuer: /CN=53b46ab79b9fc58f5dc4cf29d72dc5267ec3edde
Certificate serial: 0191FBA3E95803BDC546C27E4920C9F40A19
Authority key identifier: 53:B4:6A:B7:9B:9F:C5:8F:5D:C4:CF:29:D7:2D:C5:26:7E:C3:ED:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/egVYgiyQ66k9k5KGzUyE5Nd8uao.roa
Signing time: Mon 16 Sep 2024 16:21:48 +0000
ROA not before: Mon 16 Sep 2024 16:21:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200712
IP address blocks: 80.254.231.0/24 maxlen: 24
2a13:5240::/32 maxlen: 32
2a13:5245::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 02 Oct 2024 13:18:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fb:a3:e9:58:03:bd:c5:46:c2:7e:49:20:c9:f4:0a:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b46ab79b9fc58f5dc4cf29d72dc5267ec3edde
Validity
Not Before: Sep 16 16:21:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7a0558822c90eba93d939286cd4c84e4d77cb9aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:cb:b1:3d:f3:f6:d7:9b:51:ef:c8:21:6e:33:
5c:98:e0:3b:64:39:80:11:42:b9:18:54:03:ea:f3:
ca:ee:dd:51:5e:21:84:cb:b8:fa:45:48:d6:1d:1a:
13:29:11:60:d6:7c:e5:7d:87:fe:b9:13:fb:37:9e:
05:64:05:ea:bb:e0:0c:74:08:31:ba:8e:c4:0d:be:
e6:80:e2:61:d7:d4:7b:ff:14:c8:ad:e6:eb:a0:91:
3e:b2:1a:d7:1f:71:5e:c8:7c:1c:2a:99:f9:7a:5b:
d4:1a:c6:bd:85:01:4d:fb:e6:50:f3:e1:78:4d:45:
95:44:c9:5a:46:66:af:8d:a2:3c:95:40:3f:7e:44:
80:2d:57:32:3a:d8:1d:59:08:45:10:83:0d:7e:96:
7c:24:55:fb:61:77:4d:5a:bf:a1:72:6e:92:c4:3e:
4d:a2:ad:ba:12:e7:fd:85:6e:ec:32:85:f6:ef:37:
94:77:cc:e5:99:e0:c2:da:46:41:f9:8e:92:d2:ae:
b7:cd:cf:cd:ea:5e:51:8b:e0:e0:1d:6d:7e:96:63:
38:5e:0b:e7:5b:a3:e7:12:56:43:e2:38:46:0d:e7:
f9:e3:37:c6:85:d5:3a:a9:d7:e5:b3:3e:c2:e3:ee:
91:05:e1:0a:14:44:fa:b0:a6:fb:48:fc:97:19:3a:
32:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:05:58:82:2C:90:EB:A9:3D:93:92:86:CD:4C:84:E4:D7:7C:B9:AA
X509v3 Authority Key Identifier:
keyid:53:B4:6A:B7:9B:9F:C5:8F:5D:C4:CF:29:D7:2D:C5:26:7E:C3:ED:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/egVYgiyQ66k9k5KGzUyE5Nd8uao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.254.231.0/24
IPv6:
2a13:5240::/32
2a13:5245::/32
Signature Algorithm: sha256WithRSAEncryption
80:3f:ff:67:4d:83:48:6c:a3:51:45:cb:4a:aa:f5:40:11:43:
2d:e7:88:31:37:ba:b5:9e:16:78:eb:ae:da:99:22:44:a7:0f:
fd:17:c0:11:fa:f9:ae:c8:a9:d2:91:0b:f7:65:20:0d:ac:28:
e4:ed:f6:86:e1:06:44:75:a6:3d:bf:35:fb:e2:9e:e5:d3:87:
af:4e:cd:f4:f3:a9:16:57:03:aa:51:99:f5:ef:d3:3a:e7:fa:
80:59:8d:33:7f:c5:90:d2:7c:94:e7:6d:ed:cb:fd:44:d1:92:
cc:d1:63:41:ef:68:22:e2:78:bf:0c:79:ca:70:d0:14:ce:ea:
53:b5:ad:58:cc:48:5c:8b:c8:ad:3b:a8:d9:8f:db:11:6f:92:
db:d0:78:da:c3:fa:5b:8e:ad:eb:ee:a5:53:fa:f2:20:95:67:
7c:a3:98:ba:51:2d:a9:d9:b1:58:e7:2a:91:8b:e8:05:7b:5f:
a9:aa:36:4f:c8:0c:3b:34:61:f3:af:9f:fa:fe:bb:58:45:a1:
56:60:f6:c6:0f:7e:69:db:b7:13:b1:5b:c3:f2:7c:86:9e:84:
ac:89:3b:b0:a6:29:d6:f4:c9:59:62:89:b7:05:70:b1:e0:57:
e9:34:29:6c:be:8a:91:f2:a2:7a:bc:7e:66:d7:a2:cc:09:d3:
de:c0:88:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 2 17:25:50 2024 by rpki-client on console-ams.rpki-client.org