Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/5b36ce-d8dd-4561-8ebf-53e9ef6073c5/1/4bhoibcNfzJNSOA7Xu0x9n7TuJ8.roa
File: 4bhoibcNfzJNSOA7Xu0x9n7TuJ8.roa (raw, json)
Hash identifier: xK9CO1M23wNJ1OTDOvmDpH3nO7KDXV9B+6BXyUPAZN4=
Subject key identifier: E1:B8:68:89:B7:0D:7F:32:4D:48:E0:3B:5E:ED:31:F6:7E:D3:B8:9F
Certificate issuer: /CN=97310ada6a1bbd7aa68e140223bf9c625a33be41
Certificate serial: 018A988DE2FD96AE045743136416C0C552C4
Authority key identifier: 97:31:0A:DA:6A:1B:BD:7A:A6:8E:14:02:23:BF:9C:62:5A:33:BE:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lzEK2mobvXqmjhQCI7-cYlozvkE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/5b36ce-d8dd-4561-8ebf-53e9ef6073c5/1/4bhoibcNfzJNSOA7Xu0x9n7TuJ8.roa
Signing time: Fri 15 Sep 2023 11:15:50 +0000
ROA not before: Fri 15 Sep 2023 11:15:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21105
IP address blocks: 80.89.9.0/24 maxlen: 24
80.89.8.0/22 maxlen: 22
80.89.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Sep 2023 02:08:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:98:8d:e2:fd:96:ae:04:57:43:13:64:16:c0:c5:52:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97310ada6a1bbd7aa68e140223bf9c625a33be41
Validity
Not Before: Sep 15 11:15:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1b86889b70d7f324d48e03b5eed31f67ed3b89f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c3:cc:fc:97:7e:52:7a:fd:31:af:73:90:65:
18:54:79:59:2a:11:e7:2b:52:a3:bd:36:c3:b4:41:
ae:5a:8a:cc:4f:4d:21:27:05:aa:30:19:73:b3:aa:
a1:25:f4:2f:ea:df:e1:11:1a:d9:f8:5b:20:37:1d:
c5:12:ea:41:c7:8d:f4:60:a5:13:ce:d5:b0:4b:ad:
65:15:c3:42:16:28:e9:6b:86:2a:ee:01:2f:5e:66:
73:b4:6a:8b:f9:6d:cc:87:86:89:be:a0:3b:10:0c:
20:45:06:24:26:71:ff:8a:4e:30:0d:67:49:3f:51:
c7:3e:75:d4:63:08:b3:96:ce:66:53:0b:b1:ab:14:
56:ad:36:3d:77:93:15:89:89:3b:47:df:74:01:24:
85:8b:a7:8b:9d:97:55:7a:62:d7:c4:fc:4d:06:ae:
85:9c:d3:00:88:fd:43:3b:66:f5:f8:dc:31:d0:be:
e3:54:83:fc:a0:a4:8f:8d:f2:86:2b:cb:c9:82:6b:
b4:63:5a:a3:ef:35:49:b5:8c:44:3a:65:d1:94:c0:
fa:cc:a2:f5:31:87:c1:3e:2f:d2:85:7e:81:82:be:
63:2b:13:0d:ed:65:f4:3c:c3:eb:cf:6f:9e:1d:ef:
5a:28:ee:bd:a5:75:cc:77:08:f8:a7:bc:e6:7b:06:
6a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:B8:68:89:B7:0D:7F:32:4D:48:E0:3B:5E:ED:31:F6:7E:D3:B8:9F
X509v3 Authority Key Identifier:
keyid:97:31:0A:DA:6A:1B:BD:7A:A6:8E:14:02:23:BF:9C:62:5A:33:BE:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lzEK2mobvXqmjhQCI7-cYlozvkE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5b36ce-d8dd-4561-8ebf-53e9ef6073c5/1/4bhoibcNfzJNSOA7Xu0x9n7TuJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5b36ce-d8dd-4561-8ebf-53e9ef6073c5/1/lzEK2mobvXqmjhQCI7-cYlozvkE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.89.8.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:1b:d8:8c:ad:a6:5f:88:bf:06:9d:5f:9d:d3:af:89:28:e5:
76:23:61:3e:68:f2:83:55:4d:e0:e0:a0:30:d4:8f:f8:76:13:
52:bd:96:7b:81:20:bb:fd:29:d7:3e:b0:68:12:2b:d9:63:96:
f6:52:0b:07:08:2e:30:b5:54:35:38:4b:39:d4:90:cf:45:ec:
fb:03:07:c9:20:b3:9c:1b:3d:14:5e:71:23:b8:d6:98:77:38:
e5:7d:f2:ff:dd:e9:78:21:1b:cf:4d:30:1f:01:41:c2:7f:b0:
33:a3:b6:ec:fd:0a:a1:44:5c:89:e7:7b:61:08:df:47:1d:8c:
0e:3e:4c:fb:20:2c:65:af:df:54:6c:e0:20:d5:6a:0b:a5:32:
93:02:42:4f:6b:b5:24:31:bc:2a:8b:10:c5:9a:f9:45:e9:ae:
1e:ea:32:c0:dc:3a:30:be:5e:3b:00:c5:b8:ab:35:f2:93:cf:
3c:67:9b:73:42:b6:f9:a9:c1:37:1c:26:e7:f9:04:d8:53:5b:
75:ca:70:0c:2f:51:89:5c:dc:09:6d:ff:cd:be:05:e8:e4:bb:
3c:4e:b3:0e:2c:60:e6:d8:90:a2:b4:2e:38:3f:d4:6b:43:31:
e9:30:d2:d1:7d:d6:55:9e:bd:7f:da:3d:43:6b:3d:6c:da:1b:
e0:d5:e5:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:45 2024 by rpki-client on console-fra.rpki-client.org