Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/5b36ce-d8dd-4561-8ebf-53e9ef6073c5/1/3pDkGYJSQ8IPcxQuOi8jggAL8sE.roa
File: 3pDkGYJSQ8IPcxQuOi8jggAL8sE.roa (raw, json)
Hash identifier: HYkEJA+qcn//LPwwADHO2T7swPYJXqQJ/XoldZ2bS84=
Subject key identifier: DE:90:E4:19:82:52:43:C2:0F:73:14:2E:3A:2F:23:82:00:0B:F2:C1
Certificate issuer: /CN=97310ada6a1bbd7aa68e140223bf9c625a33be41
Certificate serial: 01881E93E6AED521D7A0F0DD8E7FF7CECD46
Authority key identifier: 97:31:0A:DA:6A:1B:BD:7A:A6:8E:14:02:23:BF:9C:62:5A:33:BE:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lzEK2mobvXqmjhQCI7-cYlozvkE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/5b36ce-d8dd-4561-8ebf-53e9ef6073c5/1/3pDkGYJSQ8IPcxQuOi8jggAL8sE.roa
Signing time: Mon 15 May 2023 08:43:09 +0000
ROA not before: Mon 15 May 2023 08:43:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21105
IP address blocks: 80.89.4.0/22 maxlen: 22
80.89.0.0/22 maxlen: 22
80.89.9.0/24 maxlen: 24
80.89.8.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sat 22 Jul 2023 09:28:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1e:93:e6:ae:d5:21:d7:a0:f0:dd:8e:7f:f7:ce:cd:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97310ada6a1bbd7aa68e140223bf9c625a33be41
Validity
Not Before: May 15 08:43:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de90e419825243c20f73142e3a2f2382000bf2c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:93:7f:ec:3f:8b:4a:dd:8a:c2:96:5d:29:3b:
55:40:5d:b7:0d:35:cf:45:12:70:c2:c6:72:d3:a6:
fc:b2:e6:e4:eb:a1:5f:ac:c0:fc:b9:8b:65:06:6e:
91:b9:6c:08:6b:db:b7:81:1b:dc:7f:2d:06:8a:6f:
ac:6f:89:44:43:d8:48:69:53:fe:1e:2f:7c:f3:7a:
c7:14:31:f1:5e:45:23:1c:a9:a2:10:44:9b:ff:8a:
1d:db:c9:b7:83:60:38:e1:c5:ea:7e:9f:2c:e9:64:
8e:d8:f2:b3:14:31:f5:a6:98:9a:38:be:31:83:67:
7f:c8:ef:30:0c:77:69:9f:a2:55:37:1b:17:75:ef:
69:53:63:1e:24:f4:29:14:b0:ce:26:fd:24:29:34:
93:75:c6:1b:7b:35:cc:8b:aa:6c:10:f1:f5:fb:3b:
1e:15:62:92:43:f6:c3:a3:e5:1a:b6:df:46:57:95:
b6:da:5a:51:b2:31:e3:cb:00:bb:3b:45:2b:9b:d6:
ed:0a:5c:80:64:41:eb:26:c8:27:3d:88:b1:ee:6a:
cc:e6:ec:43:3d:65:c9:ba:b7:b5:f3:81:ed:78:85:
5b:19:57:e1:62:9e:09:69:7f:20:f1:01:ca:5d:4f:
aa:1c:96:bf:3c:09:2e:a5:1c:71:10:7f:54:39:b4:
ab:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:90:E4:19:82:52:43:C2:0F:73:14:2E:3A:2F:23:82:00:0B:F2:C1
X509v3 Authority Key Identifier:
keyid:97:31:0A:DA:6A:1B:BD:7A:A6:8E:14:02:23:BF:9C:62:5A:33:BE:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lzEK2mobvXqmjhQCI7-cYlozvkE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5b36ce-d8dd-4561-8ebf-53e9ef6073c5/1/3pDkGYJSQ8IPcxQuOi8jggAL8sE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5b36ce-d8dd-4561-8ebf-53e9ef6073c5/1/lzEK2mobvXqmjhQCI7-cYlozvkE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.89.0.0-80.89.11.255
Signature Algorithm: sha256WithRSAEncryption
95:54:cb:37:b3:51:55:9d:eb:67:71:5d:cf:2f:24:8d:fc:7d:
bd:2b:27:ba:47:64:25:40:82:cf:6a:1a:7c:5f:e3:f3:76:6e:
89:cb:64:01:89:0b:a4:2f:19:48:ee:f6:e7:a5:b3:d7:44:12:
75:ac:c0:2d:7d:54:db:b7:27:65:2a:9e:e7:0b:2a:aa:f1:3d:
1c:a5:f1:df:08:1f:f3:95:53:e8:03:12:74:7d:2f:47:ca:4f:
b5:d2:50:83:90:ff:08:03:7d:e1:d0:14:c1:e9:d1:7b:e6:a0:
29:16:37:a6:1d:61:38:e4:e5:4b:c5:fb:b5:8b:3b:ef:60:28:
60:f7:2e:a9:aa:ac:28:cf:f4:31:4b:fd:87:72:a6:a2:07:71:
61:be:99:8a:78:87:b2:8a:35:e9:41:6c:00:37:18:a1:06:a0:
42:25:ac:fc:27:ec:25:ee:aa:c6:97:88:f1:50:52:aa:8c:12:
f8:c0:d2:04:78:9c:85:ae:59:24:54:a9:ad:65:d1:31:c9:17:
f9:0b:4e:d9:db:97:8f:ae:27:df:d0:94:60:1b:3e:f8:29:28:
4b:c9:39:3a:b2:bd:02:a3:d4:81:81:d5:c8:5a:2d:a2:95:2b:
5c:6f:7c:59:ed:b5:d5:93:17:5e:7a:60:a9:99:28:d2:12:b6:
48:c2:f9:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:57 2024 by rpki-client on console-ams.rpki-client.org