Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/ItF4BCPkWeVmlWRniztb2aRqgT8.roa
File: ItF4BCPkWeVmlWRniztb2aRqgT8.roa (raw, json)
Hash identifier: 1RO+9PUm0NI3fKplnzv5r001KrQGF6C0si3FL4XZWsc=
Subject key identifier: 22:D1:78:04:23:E4:59:E5:66:95:64:67:8B:3B:5B:D9:A4:6A:81:3F
Certificate issuer: /CN=65a665b90069bd71850602e7400c529793269e39
Certificate serial: 018ED749446C686C3474095FBAE3E19976FA
Authority key identifier: 65:A6:65:B9:00:69:BD:71:85:06:02:E7:40:0C:52:97:93:26:9E:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/ItF4BCPkWeVmlWRniztb2aRqgT8.roa
Signing time: Sat 13 Apr 2024 11:48:06 +0000
ROA not before: Sat 13 Apr 2024 11:48:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58224
IP address blocks: 80.75.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Apr 2024 18:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d7:49:44:6c:68:6c:34:74:09:5f:ba:e3:e1:99:76:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65a665b90069bd71850602e7400c529793269e39
Validity
Not Before: Apr 13 11:48:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22d1780423e459e5669564678b3b5bd9a46a813f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ca:41:86:31:95:03:76:c3:49:f8:56:8a:47:
ad:be:09:f4:13:ae:40:d5:0a:c1:f7:8f:0e:ab:f4:
05:2d:fb:f3:14:ea:b5:49:43:68:ea:f4:94:de:b8:
c0:67:b8:d0:df:72:92:39:62:72:ed:be:1a:1c:94:
be:8f:d2:cc:7d:0a:c2:3b:bc:53:17:7a:43:36:9b:
fa:d0:57:d6:77:c3:82:02:1c:dc:78:ff:f1:5f:c1:
33:d0:d0:ba:5c:a8:2d:60:f8:d9:a3:c1:a3:0f:0d:
19:b9:23:8e:44:5d:44:3d:64:c1:f9:0d:7b:1d:55:
a6:20:27:6e:ca:cb:f1:29:db:08:f1:bd:79:cf:a4:
d9:54:02:e5:82:12:93:15:ff:68:77:50:fe:ca:bf:
83:99:c6:eb:ba:9b:fa:1f:5d:0b:2b:e6:5b:26:5b:
8e:5c:08:6a:ae:c1:9b:a3:f6:dd:c6:07:4d:ed:b7:
f1:dd:9f:40:11:a7:42:61:ea:05:86:d2:e6:6f:e5:
01:33:75:d9:37:61:3a:b6:74:de:d9:17:00:ba:3a:
08:c9:b0:d8:c8:76:86:51:de:11:94:6d:3a:af:df:
60:bf:0c:44:f4:90:df:59:69:aa:9e:23:21:fe:65:
ee:db:98:1f:f2:95:7a:b2:72:95:12:49:e6:96:f3:
07:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:D1:78:04:23:E4:59:E5:66:95:64:67:8B:3B:5B:D9:A4:6A:81:3F
X509v3 Authority Key Identifier:
keyid:65:A6:65:B9:00:69:BD:71:85:06:02:E7:40:0C:52:97:93:26:9E:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/ItF4BCPkWeVmlWRniztb2aRqgT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.213.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:5f:ee:b7:19:9a:71:c4:f2:cf:da:f6:3b:14:97:cd:3d:e4:
82:44:93:a7:46:9b:19:b0:ab:98:f9:cd:25:81:21:b0:6b:f4:
4e:ca:d1:9f:a2:a3:f3:96:8d:67:b2:f9:4e:ff:9d:d7:7f:23:
dd:81:34:db:4a:00:36:09:ed:57:f9:90:3d:df:45:58:a2:51:
40:4c:26:56:b1:e4:41:90:85:64:0a:01:0d:72:29:32:33:89:
32:27:de:08:c4:c5:9a:ab:74:7e:fd:71:4d:a9:06:a4:e7:d1:
56:0f:7f:f1:d0:79:c8:9e:66:14:97:f8:a0:53:37:dc:02:ea:
6f:bb:e6:7c:24:f6:68:ea:e1:04:45:1e:29:4d:5d:c4:b5:06:
5f:ee:dc:f5:77:c5:a1:ab:87:66:1e:53:fb:04:fe:b9:36:84:
c4:ba:dc:3f:ba:6b:96:1e:3a:71:79:b9:25:71:6e:81:10:ef:
4a:49:52:81:0b:c0:04:8b:e3:6c:94:b6:f9:ed:90:ca:9d:b3:
ba:45:0a:cb:40:be:d7:b5:a0:af:ef:15:37:82:cb:0a:16:15:
c3:bb:df:d3:25:b9:62:2c:e3:6a:83:68:69:cb:3f:3f:f7:92:
d9:a8:10:0f:f3:a1:44:c7:9a:ac:d8:64:93:8d:a6:0b:fd:05:
78:74:5a:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:17 2024 by rpki-client on console-fra.rpki-client.org