Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/rOzx6MtdhK4PQIOLQXSrTV8gclo.roa
File: rOzx6MtdhK4PQIOLQXSrTV8gclo.roa (raw, json)
Hash identifier: fuK/mumZ3ilRSUElE55cM43OsnLDqievOgjojLdBJTw=
Subject key identifier: AC:EC:F1:E8:CB:5D:84:AE:0F:40:83:8B:41:74:AB:4D:5F:20:72:5A
Certificate issuer: /CN=28203decd08bd47d8a9162a6e1742f3c53ea3c74
Certificate serial: 0188252233F25F5A5EEC223EC62E4F56D75D
Authority key identifier: 28:20:3D:EC:D0:8B:D4:7D:8A:91:62:A6:E1:74:2F:3C:53:EA:3C:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KCA97NCL1H2KkWKm4XQvPFPqPHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/rOzx6MtdhK4PQIOLQXSrTV8gclo.roa
Signing time: Tue 16 May 2023 15:16:18 +0000
ROA not before: Tue 16 May 2023 15:16:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38442
IP address blocks: 80.92.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:25:22:33:f2:5f:5a:5e:ec:22:3e:c6:2e:4f:56:d7:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28203decd08bd47d8a9162a6e1742f3c53ea3c74
Validity
Not Before: May 16 15:16:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=acecf1e8cb5d84ae0f40838b4174ab4d5f20725a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e2:3e:78:28:5b:02:c7:2d:4b:9d:77:31:36:
b7:c1:9f:89:18:12:d5:cb:a4:2a:ac:12:61:08:63:
f2:cb:d9:42:eb:ed:fd:61:8b:c8:26:64:a1:28:90:
eb:ec:36:3b:55:e8:ec:52:cf:23:28:d7:87:30:34:
5a:c1:5f:61:c7:84:91:6f:78:13:13:d4:e0:3d:45:
a0:c7:69:96:2b:1f:d1:10:45:c0:80:e6:31:ac:8c:
e9:29:7d:f6:4a:66:07:d7:ff:57:19:0e:ba:d2:9e:
3b:c1:f1:76:3a:31:52:1b:0f:3e:59:29:87:83:07:
6d:98:6e:49:3b:41:6d:7e:23:d2:4e:ad:40:07:0a:
cc:54:07:75:46:38:93:3f:d3:3d:f4:bb:12:0a:9a:
00:b2:51:b9:8c:54:77:84:a3:80:2c:91:dd:d9:91:
a9:6b:74:61:a7:dd:61:53:32:bb:ef:4d:5b:24:aa:
e1:52:39:b5:67:5c:4e:e4:61:ad:c5:92:da:a8:82:
d1:9e:35:30:66:c8:57:12:79:8d:0a:e1:05:d2:1a:
40:da:07:61:e5:ae:6d:3b:40:bf:2d:ec:f3:ff:0e:
64:da:b7:b0:50:93:53:47:94:f8:0f:39:91:9c:06:
97:68:b0:4b:14:ab:df:c3:6d:87:21:0d:e6:8a:6a:
f6:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:EC:F1:E8:CB:5D:84:AE:0F:40:83:8B:41:74:AB:4D:5F:20:72:5A
X509v3 Authority Key Identifier:
keyid:28:20:3D:EC:D0:8B:D4:7D:8A:91:62:A6:E1:74:2F:3C:53:EA:3C:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCA97NCL1H2KkWKm4XQvPFPqPHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/rOzx6MtdhK4PQIOLQXSrTV8gclo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.92.59.0/24
Signature Algorithm: sha256WithRSAEncryption
70:96:5f:15:32:e9:35:88:39:07:c9:de:e8:ef:3f:3b:e7:cc:
fb:28:3f:29:89:89:c1:c5:fb:13:ad:25:91:92:77:7a:53:72:
0e:a0:6c:3c:22:dd:23:e2:83:b3:41:85:e8:e0:40:e6:98:ae:
d4:1f:aa:76:fb:ff:0d:c8:42:1c:62:6e:fb:3a:3b:2f:47:f4:
64:02:d4:51:0c:4a:3d:2c:ec:fc:ba:08:d5:c3:49:e9:45:8e:
e8:48:76:2a:21:62:3f:7f:82:2d:cd:a0:c0:58:24:8f:9c:b6:
ed:b4:f8:0a:ca:d3:0f:f4:64:4f:14:bb:6a:c5:db:28:11:e8:
97:8a:3b:b7:48:a0:c3:8c:fd:30:43:cd:6a:6d:da:bc:dc:24:
89:ac:eb:be:a0:40:cd:91:0e:22:b9:78:38:f4:d9:39:45:ed:
d9:48:a6:ee:2a:b7:97:c1:dd:5d:71:15:73:35:30:63:fb:fe:
42:5e:70:6c:01:08:50:13:f3:88:aa:81:66:da:a2:10:3a:80:
10:9b:e1:b6:d0:2f:b1:d9:f3:7d:19:60:da:fa:98:10:8e:5e:
56:c1:ca:f6:42:d9:0b:03:3c:5c:c6:8c:15:b7:e6:e5:87:d5:
6e:71:be:bb:23:74:d3:4b:8c:fe:79:62:54:6a:ef:37:b6:d3:
39:5b:cf:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:18 2024 by rpki-client on console-ams.rpki-client.org