Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/634172-bb37-4d82-88a2-942d2c6c5856/1/25do5n7ONKWSqJb071u4O38aoD0.roa
File: 25do5n7ONKWSqJb071u4O38aoD0.roa (raw, json)
Hash identifier: BRhXBrJSt0w9OKL+lH6zzkbnM7zsS8W3iQrRaw6NarY=
Subject key identifier: DB:97:68:E6:7E:CE:34:A5:92:A8:96:F4:EF:5B:B8:3B:7F:1A:A0:3D
Certificate issuer: /CN=95b980b81039581e0d2c37a51216cd79729b0c71
Certificate serial: 01857321C1FF1A64BEB07802F3FBB9D430C0
Authority key identifier: 95:B9:80:B8:10:39:58:1E:0D:2C:37:A5:12:16:CD:79:72:9B:0C:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbmAuBA5WB4NLDelEhbNeXKbDHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/634172-bb37-4d82-88a2-942d2c6c5856/1/25do5n7ONKWSqJb071u4O38aoD0.roa
Signing time: Mon 02 Jan 2023 15:37:49 +0000
ROA not before: Mon 02 Jan 2023 15:37:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204919
IP address blocks: 80.91.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:21:c1:ff:1a:64:be:b0:78:02:f3:fb:b9:d4:30:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95b980b81039581e0d2c37a51216cd79729b0c71
Validity
Not Before: Jan 2 15:37:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db9768e67ece34a592a896f4ef5bb83b7f1aa03d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0f:c0:4d:9f:4c:16:d1:c5:0e:1b:c2:ee:cd:
ac:2a:48:36:69:8a:ab:20:7d:3f:e4:20:b1:84:5d:
7b:5e:34:48:0d:54:32:ac:6d:e0:09:2d:b6:6d:84:
46:d5:dc:63:aa:0c:19:af:29:2f:b0:0c:4d:84:de:
65:8f:32:51:b5:89:2f:71:16:2e:3c:42:5c:9c:a9:
27:57:2f:1c:d4:47:fc:c2:0e:cc:4b:6d:9f:2d:1d:
c1:96:ba:f5:6f:38:3e:43:e5:e1:f2:47:fb:06:57:
4b:21:1e:30:ee:7c:73:c4:c8:3c:01:fd:5d:c5:b5:
21:2b:7d:f6:35:cb:f4:14:91:b6:09:98:be:56:66:
3d:7d:3f:9e:f2:8e:59:58:68:78:2a:cf:fc:f2:c1:
c6:50:d9:bc:bc:7e:d9:8c:b7:38:55:13:a4:09:af:
68:9d:5d:8e:4f:4c:50:93:f7:44:61:fa:f9:f3:b2:
bd:86:84:9b:14:51:be:d7:90:65:85:d3:c4:8e:43:
77:90:47:0a:ab:c7:49:ee:e4:ca:bb:c2:20:71:17:
73:08:45:89:d6:2e:39:5e:10:60:90:11:ae:e2:b6:
19:0d:65:a3:6f:9a:b2:54:c7:66:37:f0:8c:d0:c5:
c1:89:db:8d:5f:a3:9a:bb:0c:89:2a:45:42:28:56:
ac:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:97:68:E6:7E:CE:34:A5:92:A8:96:F4:EF:5B:B8:3B:7F:1A:A0:3D
X509v3 Authority Key Identifier:
keyid:95:B9:80:B8:10:39:58:1E:0D:2C:37:A5:12:16:CD:79:72:9B:0C:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbmAuBA5WB4NLDelEhbNeXKbDHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/634172-bb37-4d82-88a2-942d2c6c5856/1/25do5n7ONKWSqJb071u4O38aoD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/634172-bb37-4d82-88a2-942d2c6c5856/1/lbmAuBA5WB4NLDelEhbNeXKbDHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.91.205.0/24
Signature Algorithm: sha256WithRSAEncryption
39:b4:d4:68:11:83:59:e1:4c:f4:dd:ac:54:f8:b0:44:57:67:
41:21:fe:01:87:f4:f4:ee:42:cf:ac:28:83:4a:00:2c:c6:f9:
5c:da:6b:74:20:ad:b2:36:bc:58:34:2b:f1:94:c3:71:2a:41:
09:7f:bc:a0:92:93:b6:c7:d2:4b:17:51:a0:3b:4d:c4:f8:fb:
aa:7a:07:7a:b3:53:b7:0a:7a:dc:9e:62:12:15:d5:6a:94:05:
b1:1f:44:72:e4:2e:1f:38:2c:db:45:63:e5:92:f8:f9:2f:aa:
ec:05:77:d0:cf:93:33:75:87:82:a9:6f:6c:ec:52:9f:aa:e3:
e2:c9:c7:53:e5:03:f4:ee:ac:ae:4d:93:56:97:83:89:03:0b:
c2:37:ac:2f:c0:8f:d8:e1:32:d9:5f:cb:af:fc:1b:c3:75:54:
b1:cc:2e:64:5d:4e:c9:7e:c8:05:7e:12:62:7a:52:55:87:50:
dc:cf:92:0a:85:74:b8:c5:0c:cb:68:2f:bb:6c:9e:f9:df:ec:
c5:2e:8e:54:dd:07:aa:fc:10:37:83:2c:d1:10:28:9f:9f:cb:
7b:b5:36:35:46:6b:98:6d:51:15:e5:97:fd:23:33:69:cc:aa:
32:70:16:25:df:69:2d:f0:26:2a:03:4e:09:59:ac:0c:37:87:
62:21:fd:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:46 2024 by rpki-client on console-fra.rpki-client.org