Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/7b8b6f-e44c-49cb-8c93-0f08559d7d18/1/K0OprEFOFyZ6Ga2tv_iW29e_LDE.roa
File: K0OprEFOFyZ6Ga2tv_iW29e_LDE.roa (raw, json)
Hash identifier: 48kX4/BXyHZNfMFcBhxyh4L7ndwmbjcGFKUbJpPrzkU=
Subject key identifier: 2B:43:A9:AC:41:4E:17:26:7A:19:AD:AD:BF:F8:96:DB:D7:BF:2C:31
Certificate issuer: /CN=2698a5754dee9eef6f224562cb8239ac8bdb05b8
Certificate serial: 018570CBD3FE07FA213DD3ADA40FBC2A8A28
Authority key identifier: 26:98:A5:75:4D:EE:9E:EF:6F:22:45:62:CB:82:39:AC:8B:DB:05:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JpildU3unu9vIkViy4I5rIvbBbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/7b8b6f-e44c-49cb-8c93-0f08559d7d18/1/K0OprEFOFyZ6Ga2tv_iW29e_LDE.roa
Signing time: Mon 02 Jan 2023 04:44:44 +0000
ROA not before: Mon 02 Jan 2023 04:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64396
IP address blocks: 185.167.80.0/22 maxlen: 24
2a0b:5200::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:d3:fe:07:fa:21:3d:d3:ad:a4:0f:bc:2a:8a:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2698a5754dee9eef6f224562cb8239ac8bdb05b8
Validity
Not Before: Jan 2 04:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b43a9ac414e17267a19adadbff896dbd7bf2c31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:8f:b8:74:b4:5f:b9:fb:80:8f:43:de:04:18:
8c:b4:00:85:c6:0f:3d:56:11:4c:04:f9:13:a5:1d:
c6:b0:7e:cc:cd:27:09:cf:48:0a:0b:5c:a7:e0:1e:
42:9b:5b:3c:ca:c5:3e:22:85:8f:29:18:82:68:8d:
a7:f0:63:59:51:22:30:e1:4c:8f:8a:3d:24:2d:db:
54:7c:9a:aa:cf:27:57:c2:8f:4d:09:4c:c2:4d:ce:
d8:41:36:8e:27:67:3d:65:96:cd:5e:4b:8b:7a:fc:
9c:43:c3:44:27:d1:38:ea:fe:47:b4:a8:32:58:57:
03:ff:ee:89:68:c2:5b:af:99:fe:41:5b:39:ec:cb:
05:65:ac:21:f9:1d:f3:4c:a9:d2:59:40:dc:da:dc:
70:ac:23:44:8c:c8:c2:85:60:e9:54:13:2d:31:ec:
71:a4:a9:c8:f7:d5:4d:f6:4d:b8:cd:66:04:25:df:
fc:54:72:e7:a2:2c:23:d7:b1:90:77:b8:9c:30:f8:
9b:10:63:b3:36:19:cb:9f:64:40:df:36:cb:bd:c0:
7a:bd:6b:1e:58:bf:d5:65:80:f0:68:d0:bc:7f:f6:
72:9d:25:2c:e6:b3:68:18:42:ed:34:61:ea:7b:d9:
87:f8:97:3b:7a:92:74:5d:9e:07:66:bb:7b:ec:33:
ea:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:43:A9:AC:41:4E:17:26:7A:19:AD:AD:BF:F8:96:DB:D7:BF:2C:31
X509v3 Authority Key Identifier:
keyid:26:98:A5:75:4D:EE:9E:EF:6F:22:45:62:CB:82:39:AC:8B:DB:05:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JpildU3unu9vIkViy4I5rIvbBbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/7b8b6f-e44c-49cb-8c93-0f08559d7d18/1/K0OprEFOFyZ6Ga2tv_iW29e_LDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/7b8b6f-e44c-49cb-8c93-0f08559d7d18/1/JpildU3unu9vIkViy4I5rIvbBbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.80.0/22
IPv6:
2a0b:5200::/29
Signature Algorithm: sha256WithRSAEncryption
7a:33:69:c2:46:d6:59:53:cc:7b:48:f0:e7:b1:64:da:85:9b:
d4:65:c8:e0:06:07:82:22:08:8b:43:1d:de:37:8b:7c:e1:fb:
57:7b:41:83:ef:60:51:cd:f9:fe:a1:40:bf:36:cc:33:24:7d:
91:dd:f5:8d:d3:a2:b3:a0:9f:06:57:a5:43:08:70:ee:5c:b9:
34:80:5a:8a:cf:b0:df:f4:26:be:44:6b:f2:e6:bd:96:65:a6:
91:01:96:12:14:cb:fe:12:de:31:9f:c5:df:60:f5:e1:ac:bd:
4d:ad:cf:49:a5:eb:c1:af:4e:dc:f0:f2:9e:e0:d5:03:56:99:
b2:49:50:97:30:c8:4c:15:9d:0a:30:3f:b1:bf:a7:6b:dc:a7:
67:06:73:c0:3f:74:e5:cb:c4:6f:43:48:1b:ad:63:f9:df:d3:
8d:b0:0e:fc:db:d0:02:c9:a7:55:55:95:fa:24:3a:55:1b:be:
50:fd:00:f3:e2:92:06:14:3b:d8:6d:5a:c6:f7:63:08:19:ab:
d2:b1:79:f3:7c:90:d6:61:ef:23:12:f5:ad:3e:89:ff:45:45:
af:ac:a8:96:10:66:e9:fb:e7:97:a8:e0:99:0d:d9:3e:3e:c0:
1f:64:b1:c2:5b:4d:bc:59:8b:2a:2d:76:26:d9:b9:b5:f9:2a:
b5:27:9e:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:42 2024 by rpki-client on console-fra.rpki-client.org