Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/Fyl1WJlNSE7MEuDXGTA2oxQbu7w.roa
File: Fyl1WJlNSE7MEuDXGTA2oxQbu7w.roa (raw, json)
Hash identifier: utY21mSEhVVyS6NTXftiGofCIj8NoN11FAsiwdrMjUg=
Subject key identifier: 17:29:75:58:99:4D:48:4E:CC:12:E0:D7:19:30:36:A3:14:1B:BB:BC
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018EEC1D97337A44077DE50085A002278C0A
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/Fyl1WJlNSE7MEuDXGTA2oxQbu7w.roa
Signing time: Wed 17 Apr 2024 12:52:25 +0000
ROA not before: Wed 17 Apr 2024 12:52:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9123
IP address blocks: 80.68.156.0/24 maxlen: 24
185.201.28.0/24 maxlen: 24
185.211.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Aug 2024 10:04:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ec:1d:97:33:7a:44:07:7d:e5:00:85:a0:02:27:8c:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Apr 17 12:52:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=17297558994d484ecc12e0d7193036a3141bbbbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:61:12:a2:42:e4:d2:18:05:db:f0:76:ba:0d:
9b:40:f5:bb:7a:9c:9d:c6:9b:6f:f8:96:c0:88:04:
81:67:1e:35:8a:c5:ba:76:a1:d5:54:f9:c4:f1:22:
cd:88:c2:cb:a2:22:bb:e2:a6:ec:0c:63:bd:18:b2:
cc:c9:d9:30:f3:1f:33:bb:ca:cc:80:29:6e:84:93:
e1:5e:1a:b4:66:76:d6:91:5c:f8:9e:6f:12:f8:c9:
02:fe:d9:90:52:a3:6f:40:9b:80:42:79:17:69:b9:
a2:74:3d:41:e3:8f:5a:23:25:81:86:02:a6:d7:e8:
47:08:10:3f:cb:bd:47:24:22:d7:ff:09:82:6e:b2:
a2:8c:f6:74:b9:4b:4b:74:07:7a:b3:93:9c:c0:78:
c0:b0:8b:a9:fc:ea:9f:59:ab:52:88:7d:ab:8d:16:
57:6d:21:c5:ce:00:63:65:3b:e6:5c:a2:5b:eb:e9:
fa:f6:39:70:af:cc:94:7d:0a:f3:f0:92:d2:8d:6c:
47:44:6c:d5:51:7b:8e:20:6f:31:9a:86:1a:43:c3:
77:9a:45:62:c0:5e:d6:b9:10:69:cf:94:15:50:6f:
2d:8d:47:6f:72:7f:55:ec:d9:dd:3e:80:79:ea:b3:
27:fa:05:63:2b:c7:49:20:d0:3d:8d:83:4a:08:c6:
fe:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:29:75:58:99:4D:48:4E:CC:12:E0:D7:19:30:36:A3:14:1B:BB:BC
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/Fyl1WJlNSE7MEuDXGTA2oxQbu7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.68.156.0/24
185.201.28.0/24
185.211.170.0/24
Signature Algorithm: sha256WithRSAEncryption
02:33:b1:ef:20:eb:91:03:fb:a4:18:3e:58:4e:90:11:85:d4:
91:02:3e:88:d1:6f:93:2e:e8:2d:c4:13:89:52:ab:e8:3b:be:
ba:c2:19:86:53:f9:1f:81:cf:ac:8a:93:67:1e:2f:de:f9:13:
ff:12:1f:fc:35:d9:ef:7b:54:72:97:bc:21:06:ba:fe:3a:32:
5f:5b:72:35:6a:d6:81:ef:56:4f:4e:41:d6:52:c4:fa:f0:e2:
06:c5:69:78:a3:8a:d1:2e:64:8f:5c:57:aa:77:70:d5:12:02:
41:ef:c9:c9:fa:1e:35:65:e1:d1:17:79:37:58:66:1f:a0:4e:
fb:bb:59:b1:cf:d5:05:36:31:0f:00:21:60:e5:37:1a:16:ec:
71:58:a9:5e:f2:b2:13:94:59:63:23:90:4b:cb:df:b5:2c:c9:
d8:d5:3f:e7:1b:a8:c1:f3:2b:64:e9:66:1a:1b:c9:37:5b:82:
21:6c:f3:bc:d8:93:c0:3f:b7:b2:65:7e:00:5e:c5:96:a0:e6:
52:77:ed:97:31:71:b3:69:d9:dd:7d:74:e6:40:cf:23:15:71:
a0:3e:f0:36:33:e7:66:67:5e:b6:33:d6:78:18:97:37:3c:2e:
ab:66:2a:9e:b7:db:6b:d4:b5:0c:8f:3f:af:c3:72:9d:79:39:
82:de:98:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 9 13:17:21 2024 by rpki-client on console-ams.rpki-client.org