Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/Avqfo2Bm0KQZ7NVPLEHCqgJ09D4.roa
File: Avqfo2Bm0KQZ7NVPLEHCqgJ09D4.roa (raw, json)
Hash identifier: zgZwd8lkN3no1N304hdVe+cj/B6Qj4/ewSAanLtKhkU=
Subject key identifier: 02:FA:9F:A3:60:66:D0:A4:19:EC:D5:4F:2C:41:C2:AA:02:74:F4:3E
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 018570950BD51E2EDFB8049E87A26C4B6308
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/Avqfo2Bm0KQZ7NVPLEHCqgJ09D4.roa
Signing time: Mon 02 Jan 2023 03:44:54 +0000
ROA not before: Mon 02 Jan 2023 03:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35029
IP address blocks: 80.66.77.0/24 maxlen: 24
80.66.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:0b:d5:1e:2e:df:b8:04:9e:87:a2:6c:4b:63:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Jan 2 03:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02fa9fa36066d0a419ecd54f2c41c2aa0274f43e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:63:3e:f8:44:4a:f9:24:1f:45:5e:18:ee:5e:
8e:93:35:ce:8b:71:12:0d:d1:18:76:d0:53:a4:e4:
4c:81:25:cc:1f:de:f4:26:79:c9:69:7c:49:d4:b1:
56:46:51:72:4d:dd:2f:b1:df:a9:64:20:77:59:43:
7d:07:fa:ce:18:be:59:07:68:67:b0:59:4e:b1:f1:
98:1d:44:07:49:70:09:97:84:49:fe:c2:58:03:8f:
23:97:c9:25:05:31:71:44:03:2c:39:68:71:d1:57:
ac:f6:56:4c:7a:68:06:56:fb:00:35:67:b5:2a:17:
57:2b:31:a0:7b:1b:8b:c1:af:1e:68:31:46:0e:42:
29:e9:99:1b:d9:df:59:47:62:89:c5:e9:b8:dd:5f:
b7:2a:2d:5a:40:f4:d5:9b:9f:ce:65:52:2e:94:2b:
5c:ae:71:3e:f1:49:58:02:67:52:20:fb:c5:3d:0b:
c3:9e:ed:5e:1b:95:53:7c:52:f6:44:a9:16:7a:58:
98:98:70:76:ea:ad:93:fc:48:0d:19:51:45:f8:32:
9f:03:68:d4:7d:12:cc:6b:f3:b1:2f:e8:65:4a:f0:
e4:60:c8:bc:49:e0:e5:f5:77:25:82:5b:c7:b3:be:
37:16:8b:47:32:a8:22:f5:7b:2d:c3:ed:51:d4:d4:
18:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:FA:9F:A3:60:66:D0:A4:19:EC:D5:4F:2C:41:C2:AA:02:74:F4:3E
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/Avqfo2Bm0KQZ7NVPLEHCqgJ09D4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.75.0/24
80.66.77.0/24
Signature Algorithm: sha256WithRSAEncryption
83:10:bd:72:cf:b1:c8:4e:19:3d:68:02:f9:3e:44:04:eb:96:
2f:2e:67:89:24:86:22:82:d6:1c:9e:9e:39:17:3f:01:23:92:
91:4f:34:76:d5:e8:4a:4a:44:0c:ef:c7:25:b7:df:79:9d:fa:
ed:2c:76:cd:7a:d2:4a:7d:89:ea:14:8b:a5:f2:a7:d3:55:a7:
4a:30:d6:3b:0e:00:86:73:ff:8d:d6:6b:79:c8:71:01:b1:a6:
2a:f6:02:6a:a1:26:4f:d2:d5:31:ea:f8:5e:1b:61:1a:64:a7:
f7:a6:2e:d4:26:d9:2e:13:4c:a9:5b:1a:d0:3c:10:1e:d3:fd:
f4:c4:ce:ac:d4:b6:b2:14:55:cd:c5:4d:59:13:4e:0d:4a:6c:
06:21:92:9a:ba:96:46:0b:88:e6:09:f0:76:7e:e3:7b:67:41:
ca:84:c4:f8:8c:97:f0:97:2b:6e:1b:ed:77:0a:e8:1b:56:24:
df:98:8a:f1:e4:54:e3:66:2e:20:e6:0f:a3:e5:2a:02:e5:dd:
28:c8:08:3b:e8:c5:88:70:50:dd:28:cb:c0:e8:f5:43:c3:35:
44:70:5b:a5:82:ad:d8:83:0c:00:6d:4d:9e:09:9f:6c:ad:80:
98:cd:b4:f5:ad:9b:35:f1:32:46:65:5a:86:ca:f0:12:5c:75:
8f:b6:02:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:36 2024 by rpki-client on console-ams.rpki-client.org