Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/DerONJsp80fU0u3DlkbUsgm5keM.roa
File: DerONJsp80fU0u3DlkbUsgm5keM.roa (raw, json)
Hash identifier: ZzIquFpFynr6iccXI7nrQtkiu+/eddhqg4GXjvsgWis=
Subject key identifier: 0D:EA:CE:34:9B:29:F3:47:D4:D2:ED:C3:96:46:D4:B2:09:B9:91:E3
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 01856F94C71F383E21AA17AE45229C80A5F7
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/DerONJsp80fU0u3DlkbUsgm5keM.roa
Signing time: Sun 01 Jan 2023 23:04:59 +0000
ROA not before: Sun 01 Jan 2023 23:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59708
IP address blocks: 80.253.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:c7:1f:38:3e:21:aa:17:ae:45:22:9c:80:a5:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Jan 1 23:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0deace349b29f347d4d2edc39646d4b209b991e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:44:17:6f:15:be:52:67:ea:57:4c:6b:1c:fa:
a4:eb:2e:8c:43:3a:4d:28:de:41:bf:f7:d8:a0:f9:
2a:fc:87:e3:89:19:ac:a5:f7:2a:70:38:06:89:87:
d1:d4:59:8e:b9:82:6b:90:4a:5d:4f:2d:d8:d5:f2:
72:cc:7e:23:6e:5f:8d:ca:52:15:8c:16:6d:db:9d:
79:1a:a1:a6:2c:43:c2:f1:39:9e:68:88:8b:ef:f6:
94:04:01:1e:d3:63:fc:a9:44:73:ba:0c:2e:a4:7b:
0b:bb:a5:6f:16:f6:04:b5:da:69:f3:b8:5f:95:4b:
16:46:a6:60:a0:a8:6b:4e:7a:74:c6:36:77:ec:9e:
92:8d:28:bc:09:e6:d2:cf:a2:5f:67:ed:db:a0:02:
0d:e3:4b:ab:ff:60:86:db:57:ba:bf:c7:ab:e4:a2:
52:65:b0:9f:9c:b3:37:86:2f:28:de:10:83:f2:2d:
4b:7f:ba:b4:1e:33:7c:76:c7:31:9a:72:2b:7a:3c:
d9:23:6e:9e:48:cb:94:ad:b2:32:71:73:96:cb:00:
fe:0a:49:2e:0d:6c:fe:98:6c:fb:aa:6a:68:85:b4:
ea:5a:81:eb:fe:85:b2:5b:8e:75:81:52:a1:32:61:
fa:e7:7a:d8:90:3b:e6:e8:2a:3f:8d:eb:7c:f9:13:
9d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:EA:CE:34:9B:29:F3:47:D4:D2:ED:C3:96:46:D4:B2:09:B9:91:E3
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/DerONJsp80fU0u3DlkbUsgm5keM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.253.157.0/24
Signature Algorithm: sha256WithRSAEncryption
15:8d:7c:fd:93:38:6b:da:32:70:80:83:c0:cc:8a:e2:b3:c2:
35:26:d1:90:e2:dc:92:3c:a5:aa:a7:72:65:84:5c:f2:91:9c:
7f:0f:5a:83:dc:18:c6:9c:bf:3a:d7:27:1d:27:38:3a:85:9e:
05:ea:28:cd:f2:72:2d:91:72:20:72:10:0b:66:f0:4a:95:53:
2f:69:41:c9:9c:f8:cd:5b:6f:03:cc:88:21:8c:26:f7:55:fa:
e4:59:18:b0:0f:19:3d:7a:3d:97:90:d3:6d:a1:f7:dd:d4:f3:
9f:7f:d0:ac:32:d2:74:22:b5:dc:89:cd:74:7c:fe:c0:16:22:
21:22:d4:b9:2e:e8:84:5d:c0:cc:82:09:06:f8:bf:24:21:89:
88:9b:fb:dc:da:44:a6:9f:68:91:63:21:79:39:c1:4b:20:0e:
3e:29:8a:9e:1e:25:9a:be:29:d6:5f:f7:4b:13:95:80:c2:10:
8e:3c:a3:69:17:fe:20:8b:76:b8:82:0d:fe:cf:bc:93:e8:4d:
bc:2d:b7:db:25:84:b1:5e:61:f8:ee:c8:34:dc:ed:fc:b2:ee:
30:ae:12:26:8e:33:51:50:63:e6:0f:06:22:10:39:36:65:fb:
ea:4c:30:bf:0c:71:64:59:8e:5f:48:18:29:b3:1f:7d:de:bc:
48:2c:28:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:01 2024 by rpki-client on console-fra.rpki-client.org