Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/ayQEyC53jncjCyDHgEjHSqOSenQ.roa
File: ayQEyC53jncjCyDHgEjHSqOSenQ.roa (raw, json)
Hash identifier: w+R4JowqoWyjJqDf4YryYhVdq4yJ43mBmJxLrN1qYzQ=
Subject key identifier: 6B:24:04:C8:2E:77:8E:77:23:0B:20:C7:80:48:C7:4A:A3:92:7A:74
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 018570950AD53B3E484E493960801218FD7D
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/ayQEyC53jncjCyDHgEjHSqOSenQ.roa
Signing time: Mon 02 Jan 2023 03:44:53 +0000
ROA not before: Mon 02 Jan 2023 03:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8711
IP address blocks: 80.66.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:0a:d5:3b:3e:48:4e:49:39:60:80:12:18:fd:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Jan 2 03:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b2404c82e778e77230b20c78048c74aa3927a74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:94:69:97:b5:b4:90:13:58:4f:f7:95:36:2a:
8e:5b:3a:9a:d3:10:6b:a0:de:4e:e5:f5:37:60:1b:
b0:ab:08:f8:2b:d1:fb:eb:b4:7c:59:11:ee:c0:3e:
1f:43:57:b0:18:f6:f8:2f:58:fe:71:fb:f8:53:8c:
8e:ce:1b:0a:a8:9d:56:0a:39:7b:d3:25:51:2d:70:
d2:2a:0b:51:67:be:2f:06:0b:2b:3c:ea:90:fd:17:
dd:40:8c:b9:8d:9a:fc:00:01:33:cb:ae:f2:f7:ec:
ac:ec:45:2b:04:ea:17:97:58:45:ef:8b:02:1b:1e:
2d:04:c7:c2:12:76:31:b8:13:40:b3:f4:b4:7a:3a:
2f:15:64:3b:e3:6b:89:81:83:d8:df:65:03:ab:c9:
d1:fb:f4:64:42:4f:45:85:fe:92:d4:75:57:83:30:
47:5d:56:c1:bc:f6:70:d9:09:ee:ea:b1:a0:8b:15:
b7:b1:7b:df:f6:27:c6:8b:cc:7d:63:c3:fe:bb:1d:
6b:76:32:f4:ba:2d:41:16:3e:54:ec:ee:2a:5d:34:
c6:ca:29:93:4c:f6:84:20:af:05:81:17:8e:99:a5:
54:c9:92:20:93:80:6f:09:6d:65:04:5f:41:f5:50:
d0:29:6a:9e:bc:88:0c:1f:66:9e:3f:c7:94:3e:8c:
84:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:24:04:C8:2E:77:8E:77:23:0B:20:C7:80:48:C7:4A:A3:92:7A:74
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/ayQEyC53jncjCyDHgEjHSqOSenQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.67.0/24
Signature Algorithm: sha256WithRSAEncryption
39:ff:24:d5:c9:8e:8b:72:6c:23:2f:1b:53:1e:5a:0f:15:04:
27:d4:c2:95:8a:c0:43:04:e3:b3:c8:57:76:e1:66:c2:31:15:
55:ba:ea:77:ac:12:06:6d:55:d1:15:b4:3f:b9:c7:dc:38:d8:
23:c2:a4:36:6f:94:07:5d:30:ec:ce:1a:5c:59:c3:7a:b3:6b:
4e:4a:3f:93:44:3f:f9:7c:9d:9f:27:9c:76:2a:19:e1:f6:6f:
77:41:3f:14:09:0e:1f:da:cc:bb:83:f0:ac:3e:10:b9:78:c9:
de:23:f2:f8:f9:5f:1c:7b:3b:e6:d3:a4:50:fe:99:4b:f3:58:
72:78:a9:97:52:7e:6e:a4:8f:b4:07:ca:c3:e2:e2:01:7e:92:
d0:38:d6:73:ed:25:e7:4e:29:e9:34:9f:65:bb:ac:50:de:a9:
1f:0a:54:5c:4f:62:80:87:72:7d:98:7c:94:bb:ba:64:6f:fc:
9d:d0:2d:6e:0c:76:fe:71:3e:62:26:4b:86:94:6e:32:68:cd:
c3:1b:cf:69:59:6b:d5:14:94:df:55:63:f1:af:58:69:2b:90:
ee:7c:26:21:87:ba:b4:e6:c8:6e:e3:f9:a3:80:6e:99:4e:ef:
0d:8d:bd:01:33:8e:7d:67:1a:2c:26:34:60:e0:e6:e1:6c:d1:
69:e2:8c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:38 2024 by rpki-client on console-fra.rpki-client.org