Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/OgTsY5sN35NyV2sVY1GrdEm-o10.roa
File: OgTsY5sN35NyV2sVY1GrdEm-o10.roa (raw, json)
Hash identifier: IwKnPziV5hd4WK077yVG/NFSTsZzutq78dJSM4ibdtE=
Subject key identifier: 3A:04:EC:63:9B:0D:DF:93:72:57:6B:15:63:51:AB:74:49:BE:A3:5D
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018DAC2461B358D8EE1730699687B4780F52
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/OgTsY5sN35NyV2sVY1GrdEm-o10.roa
Signing time: Thu 15 Feb 2024 09:41:21 +0000
ROA not before: Thu 15 Feb 2024 09:41:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44947
IP address blocks: 212.80.24.0/24 maxlen: 24
212.80.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Mar 2024 07:45:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ac:24:61:b3:58:d8:ee:17:30:69:96:87:b4:78:0f:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Feb 15 09:41:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3a04ec639b0ddf9372576b156351ab7449bea35d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:26:fe:28:fd:97:c3:8d:a8:c6:26:63:ce:23:
d5:df:82:22:d0:db:84:e2:61:77:3e:93:65:63:83:
6b:c2:50:3a:75:b3:b5:2c:b3:61:49:54:52:d8:18:
a1:f6:11:c7:69:b5:31:64:ed:e2:57:8e:53:23:be:
80:88:5c:6a:28:04:da:2b:eb:71:c9:75:c9:32:95:
b5:44:c4:a0:5b:d1:d4:f2:7f:96:93:81:ca:4d:72:
37:8e:e5:39:65:03:cd:f0:2b:1a:cc:f2:b3:13:49:
a3:70:d8:a6:c6:1a:b3:47:e6:2b:d2:eb:4f:c3:6c:
71:9a:d8:39:17:fe:35:cb:f0:ca:90:0a:b0:5f:b0:
3c:10:54:d6:1f:0e:37:25:a8:b2:65:d5:1d:a1:81:
ec:85:f0:a4:b2:39:28:0b:18:8e:b1:37:bf:c1:c2:
f5:fc:69:72:77:8c:36:d3:57:af:a2:7c:37:7b:c5:
53:aa:64:50:cf:dd:c2:f8:f7:4c:17:f5:06:ee:02:
3d:0e:47:f5:03:e6:c3:bc:6d:30:ad:9b:ae:25:a5:
81:96:2c:c2:b0:92:e9:77:f7:48:51:e9:be:71:f7:
75:f6:49:35:58:81:77:f2:53:34:66:fe:82:69:90:
7d:ee:3f:3b:34:4a:80:1d:de:9b:60:7e:bb:16:ac:
06:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:04:EC:63:9B:0D:DF:93:72:57:6B:15:63:51:AB:74:49:BE:A3:5D
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/OgTsY5sN35NyV2sVY1GrdEm-o10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.80.24.0/24
212.80.29.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:42:dd:69:05:c6:b2:13:20:d2:09:b7:96:82:90:35:0e:51:
22:25:db:53:9d:0e:93:c0:ea:de:b6:66:4b:57:8b:30:48:bf:
ce:04:ce:42:34:42:0b:2a:77:34:32:15:f9:ff:1b:6b:14:f7:
cf:23:f4:df:cc:05:3a:06:4c:d7:0d:8c:59:2b:1b:a1:26:03:
45:8b:da:95:96:05:19:9d:ce:7d:2b:f4:10:1d:b9:fd:5e:23:
ba:85:b9:d9:0e:a5:35:0d:f3:fa:20:c8:ab:90:30:45:20:e5:
cf:49:1a:e7:f0:29:67:17:a8:a1:03:87:12:6c:3a:d8:3b:45:
e9:8f:72:b0:7c:7f:48:d9:15:4b:98:f7:ca:59:2c:5b:51:8a:
99:d5:11:1b:01:32:bb:03:16:4d:81:98:5e:8f:93:4b:bc:aa:
c6:dc:fe:fc:34:df:80:71:39:27:02:f3:11:1c:f9:aa:75:14:
1e:6c:a4:7c:91:b8:1c:f9:5f:5d:67:6b:66:d1:41:00:13:37:
13:c5:6b:c2:47:2b:aa:c2:f9:48:d9:9d:62:b6:11:f7:20:10:
b9:3a:22:9c:ad:4d:9d:97:eb:a9:3f:34:88:1e:a5:eb:64:1b:
ac:84:1d:2f:65:1b:1d:74:b5:57:d6:48:fb:23:6e:e6:99:1d:
85:83:13:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 3 10:18:18 2024 by rpki-client on console-fra.rpki-client.org