Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/Tdxd6BqWRhkV71LB7vG54I-mdnE.roa
File: Tdxd6BqWRhkV71LB7vG54I-mdnE.roa (raw, json)
Hash identifier: kFzMMQbytvhSPT2gWGruLZgneu+CAALiQOxVfKkqY4A=
Subject key identifier: 4D:DC:5D:E8:1A:96:46:19:15:EF:52:C1:EE:F1:B9:E0:8F:A6:76:71
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 0185BAD1B1A75017BE12F4B313C98F4B5C5E
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/Tdxd6BqWRhkV71LB7vG54I-mdnE.roa
Signing time: Mon 16 Jan 2023 13:43:02 +0000
ROA not before: Mon 16 Jan 2023 13:43:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34882
IP address blocks: 80.66.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ba:d1:b1:a7:50:17:be:12:f4:b3:13:c9:8f:4b:5c:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Jan 16 13:43:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ddc5de81a96461915ef52c1eef1b9e08fa67671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:6d:77:8b:e5:44:c6:15:0d:f3:0f:6f:ce:b7:
86:47:b9:2a:7c:e6:9f:ab:9b:ef:14:16:10:de:44:
de:97:55:98:5d:df:62:bc:5d:cf:c9:1d:6d:e7:fb:
26:90:1e:37:68:86:31:c4:e5:0e:44:41:51:ec:3c:
82:d2:75:31:ae:af:74:38:f2:73:5a:9e:29:b3:9d:
92:5c:ef:52:78:f9:a7:bc:55:f2:ef:4d:b7:26:b9:
72:5e:9d:7f:64:41:95:2a:d9:de:0a:e2:f7:b3:8e:
fd:4d:58:17:88:e0:cf:7b:75:0b:a9:6e:23:b5:80:
94:2d:ca:0a:16:a7:83:5d:0c:5b:76:cc:54:22:1e:
f3:26:c9:e0:8a:f2:39:00:4f:a0:a4:fa:08:9a:a4:
87:09:33:39:37:b0:b2:e2:98:62:c6:2e:51:17:a6:
56:de:63:58:62:d6:d4:03:31:c4:d3:dd:6f:b6:33:
45:25:f4:bc:ac:ec:e4:25:6c:7e:7e:2f:9b:27:1f:
65:c6:18:87:4f:f2:d0:f4:4c:e3:eb:73:0a:8e:97:
ac:f2:ec:6c:2e:92:be:c5:73:2d:c9:63:7e:eb:12:
5b:9e:47:f6:51:30:3c:2e:c1:f1:76:fb:50:27:ff:
a2:04:f8:18:f3:e4:7f:13:0f:50:ec:e8:62:5f:5b:
ae:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:DC:5D:E8:1A:96:46:19:15:EF:52:C1:EE:F1:B9:E0:8F:A6:76:71
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/Tdxd6BqWRhkV71LB7vG54I-mdnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.70.0/24
Signature Algorithm: sha256WithRSAEncryption
77:fd:b3:fc:2e:46:08:60:f7:8f:34:f6:a6:53:86:c0:68:12:
6c:5c:5f:0f:ff:fb:3c:a5:63:96:19:51:11:29:8f:0c:f0:fb:
09:96:72:f2:65:7e:69:80:67:52:53:50:83:2e:50:ce:f8:22:
a9:36:40:de:88:57:ec:72:a8:c3:04:97:75:70:e9:aa:9b:6f:
91:14:28:06:a1:54:ad:46:cf:5e:02:7a:24:06:74:a7:5e:81:
0d:51:86:79:01:2e:f4:6f:ef:a6:4c:05:ba:b7:7d:c4:45:b5:
99:e8:4f:82:09:f1:80:f3:c2:81:c8:f7:db:0d:2d:d9:c5:37:
b1:a5:37:8f:b1:f3:80:a0:1e:dd:c7:77:12:3f:62:20:80:6e:
68:7d:39:1c:2c:b4:92:ef:6e:3a:29:e3:f4:ba:f8:9c:bd:08:
df:c4:21:91:fa:da:9e:51:7e:87:2d:6b:41:35:35:27:9b:21:
d2:23:5d:3f:7c:0f:cb:11:d7:b7:21:a4:14:07:92:01:65:35:
37:64:9f:a3:a0:34:94:43:e3:4b:56:ec:89:47:6d:99:b5:27:
dc:ae:8c:4a:e6:04:a4:61:80:03:35:4f:86:a0:5f:a4:91:c2:
c7:69:3a:fa:32:b8:81:0f:f9:59:4e:48:52:3c:37:77:df:0e:
89:9a:ae:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:50 2024 by rpki-client on console-ams.rpki-client.org