Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/b96584-1f71-48bb-a021-a347b56f3b9a/1/cc8FQXmoig_tpedF1ILk1xPM8z8.roa
File: cc8FQXmoig_tpedF1ILk1xPM8z8.roa (raw, json)
Hash identifier: 4W2OJ7s7PXSEKes3y1Ne3XXy2dN6fSLbiY61qMc/ggk=
Subject key identifier: 71:CF:05:41:79:A8:8A:0F:ED:A5:E7:45:D4:82:E4:D7:13:CC:F3:3F
Certificate issuer: /CN=c4eb34dda2f8094968494892063351ee0f10e91a
Certificate serial: 01899BCBB78AB01C46C319EDB6DCAFAAE7D0
Authority key identifier: C4:EB:34:DD:A2:F8:09:49:68:49:48:92:06:33:51:EE:0F:10:E9:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xOs03aL4CUloSUiSBjNR7g8Q6Ro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/b96584-1f71-48bb-a021-a347b56f3b9a/1/cc8FQXmoig_tpedF1ILk1xPM8z8.roa
Signing time: Fri 28 Jul 2023 09:19:26 +0000
ROA not before: Fri 28 Jul 2023 09:19:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 152.89.228.0/22 maxlen: 23
45.80.250.0/23 maxlen: 23
2.58.176.0/22 maxlen: 23
Validation: Failed, certificate revoked on Mon 18 Dec 2023 11:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9b:cb:b7:8a:b0:1c:46:c3:19:ed:b6:dc:af:aa:e7:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4eb34dda2f8094968494892063351ee0f10e91a
Validity
Not Before: Jul 28 09:19:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71cf054179a88a0feda5e745d482e4d713ccf33f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fa:a2:9a:9d:6a:bd:85:90:a5:68:61:46:62:
81:b7:64:ee:93:b7:22:a9:46:0b:d7:07:e0:3c:ae:
fb:c3:c3:7d:99:5d:3e:ae:1c:de:5d:7c:9e:ff:a4:
e6:7f:50:50:7f:73:3c:4a:0f:b3:e9:9d:10:5a:cd:
33:85:85:48:a6:59:ad:a3:bc:00:48:a7:23:f2:cd:
e3:8f:85:8a:86:59:c3:18:b3:d4:e1:29:7a:37:61:
71:6e:8b:7d:dc:84:66:02:74:90:c6:77:35:28:3c:
74:88:5a:72:f4:2a:c6:37:13:f9:05:4e:ec:22:c9:
50:4b:84:c7:ab:4c:5b:c2:05:67:59:20:3d:19:fb:
91:e8:0c:7f:b4:e1:9d:b7:86:27:ea:ed:6a:5b:e0:
f6:21:46:bd:60:f2:27:fb:ce:07:40:85:96:fa:20:
3b:9b:81:0b:ad:4e:51:04:f4:cc:86:33:48:f3:5a:
11:d3:8a:f5:f7:4e:42:dd:6d:01:97:23:29:66:78:
fe:81:ff:1a:0f:c6:01:59:3f:aa:24:c7:68:27:79:
da:43:39:01:bb:aa:81:3b:31:63:10:3c:49:df:88:
ac:8c:d3:cd:fb:83:cd:b7:16:00:44:a0:a9:89:ff:
b6:75:24:b3:aa:d4:16:a7:59:b9:31:a5:3e:f4:5e:
2f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:CF:05:41:79:A8:8A:0F:ED:A5:E7:45:D4:82:E4:D7:13:CC:F3:3F
X509v3 Authority Key Identifier:
keyid:C4:EB:34:DD:A2:F8:09:49:68:49:48:92:06:33:51:EE:0F:10:E9:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xOs03aL4CUloSUiSBjNR7g8Q6Ro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/b96584-1f71-48bb-a021-a347b56f3b9a/1/cc8FQXmoig_tpedF1ILk1xPM8z8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/b96584-1f71-48bb-a021-a347b56f3b9a/1/xOs03aL4CUloSUiSBjNR7g8Q6Ro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.176.0/22
45.80.250.0/23
152.89.228.0/22
Signature Algorithm: sha256WithRSAEncryption
82:5a:e0:57:b2:2c:20:05:31:58:14:56:53:35:33:ab:6e:b8:
5b:76:3d:08:31:7c:c0:d4:21:f3:1e:d1:1d:e8:ba:07:b4:da:
5e:cf:2c:76:a2:da:87:3e:2a:f4:d3:7a:01:c6:ad:01:62:54:
e0:1c:a4:24:51:75:2c:cd:b6:0d:d1:d8:86:4c:52:d3:b1:af:
8f:50:e2:0a:c9:c6:dc:8b:33:f1:a8:f3:df:77:bb:7f:a1:75:
c0:0b:dd:dc:75:30:be:76:47:c4:9a:69:2a:64:0b:07:d6:f5:
a6:32:6f:a1:22:46:22:58:2e:f9:33:68:e2:a5:3d:38:30:a9:
ef:22:0c:00:55:be:f3:6b:d9:06:af:fa:a4:9f:08:5f:eb:b5:
ed:11:ca:20:d0:64:e4:97:ad:54:f3:fe:a7:ff:d9:bb:27:cc:
01:ad:69:f1:ef:15:18:2f:96:ba:61:fd:61:b9:f5:1d:82:79:
fe:62:e9:69:13:0d:12:f1:24:37:70:9d:b8:4d:f0:f8:c5:dc:
b7:15:13:ff:f5:e3:04:19:05:85:ff:68:7b:c6:44:b4:f4:80:
14:e3:6b:81:37:03:58:66:ec:7c:ff:47:ed:3e:1a:08:38:35:
ef:c4:69:18:3d:f8:22:81:c6:75:e1:18:25:55:e7:56:cd:47:
57:f1:6c:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:01 2024 by rpki-client on console-fra.rpki-client.org