Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/4faaff-384f-402e-8b8c-45f77dfa2636/1/X6GZbn0Q1h0koNh14UhMolXtYLk.roa
File: X6GZbn0Q1h0koNh14UhMolXtYLk.roa (raw, json)
Hash identifier: CPeMJeZsMAl0FLti90xMnGQa4HtaANU3FO74/uVNy9g=
Subject key identifier: 5F:A1:99:6E:7D:10:D6:1D:24:A0:D8:75:E1:48:4C:A2:55:ED:60:B9
Certificate issuer: /CN=bbf3a257f99528c3a924d269d1af438185c2006d
Certificate serial: 0193B007D080BCBA5E32728A5144ED78C952
Authority key identifier: BB:F3:A2:57:F9:95:28:C3:A9:24:D2:69:D1:AF:43:81:85:C2:00:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u_OiV_mVKMOpJNJp0a9DgYXCAG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/4faaff-384f-402e-8b8c-45f77dfa2636/1/X6GZbn0Q1h0koNh14UhMolXtYLk.roa
Signing time: Tue 10 Dec 2024 10:05:22 +0000
ROA not before: Tue 10 Dec 2024 10:05:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9146
IP address blocks: 80.87.254.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 02 Jan 2025 11:49:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b0:07:d0:80:bc:ba:5e:32:72:8a:51:44:ed:78:c9:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbf3a257f99528c3a924d269d1af438185c2006d
Validity
Not Before: Dec 10 10:05:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5fa1996e7d10d61d24a0d875e1484ca255ed60b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:42:78:00:68:8f:71:9d:ef:54:20:87:d1:9c:
2b:b4:4a:02:22:bc:1e:f4:0f:86:24:4f:e9:63:2e:
d1:49:a9:55:26:ef:08:95:89:b1:27:2a:da:89:68:
1a:3b:f9:dd:55:4b:c8:77:cd:1e:f4:ab:4b:d2:3d:
45:73:d7:73:0f:6e:bb:b2:8f:36:28:6d:a1:a2:4e:
1b:84:b3:8d:9b:15:63:f3:a0:c4:f5:53:d6:e2:13:
2c:99:3e:24:39:12:29:fd:62:2a:bc:eb:76:12:b6:
97:6b:e9:f0:62:41:36:d6:5a:3c:b1:fa:a0:2f:71:
1d:b5:90:2d:b1:b8:0f:93:7c:b6:7b:cd:aa:5c:33:
86:6c:c5:dc:86:0f:7f:04:73:d1:a4:ed:e6:32:81:
84:e7:33:62:72:9e:be:ae:d2:22:a5:0c:31:9b:b9:
48:c1:a5:13:78:6b:aa:32:ce:e7:db:83:87:91:00:
06:30:47:28:a9:dc:b4:2b:93:6c:e0:42:ef:d8:aa:
57:0c:2f:af:29:60:8b:a4:06:8b:4b:2b:2a:f2:1d:
b4:d3:d5:2b:d8:da:1a:ab:2e:66:54:aa:c4:54:c5:
87:eb:e6:c1:27:6d:2a:d9:1a:38:8c:80:d0:e0:0b:
c7:62:84:db:8b:93:94:87:b8:d4:da:ac:3f:8b:4f:
12:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:A1:99:6E:7D:10:D6:1D:24:A0:D8:75:E1:48:4C:A2:55:ED:60:B9
X509v3 Authority Key Identifier:
keyid:BB:F3:A2:57:F9:95:28:C3:A9:24:D2:69:D1:AF:43:81:85:C2:00:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u_OiV_mVKMOpJNJp0a9DgYXCAG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4faaff-384f-402e-8b8c-45f77dfa2636/1/X6GZbn0Q1h0koNh14UhMolXtYLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4faaff-384f-402e-8b8c-45f77dfa2636/1/u_OiV_mVKMOpJNJp0a9DgYXCAG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.87.254.0/23
Signature Algorithm: sha256WithRSAEncryption
cb:4d:1f:6a:b4:e3:00:4b:b7:88:05:6f:c3:92:8d:24:4d:bc:
48:1a:88:02:4c:07:9a:1c:d2:70:ae:1d:87:c4:dd:eb:e8:4c:
b8:6c:1e:08:03:01:07:1e:8c:4c:9d:fe:01:98:b5:ad:4a:33:
92:28:70:45:f8:d5:3c:41:65:1b:44:fc:85:dc:0f:01:78:c3:
ad:00:e1:94:c6:a3:41:a4:45:17:92:83:3b:3c:ae:fe:a7:4b:
c6:e6:3d:55:33:4f:49:ec:9a:d3:f4:bd:ff:55:cc:98:05:23:
be:33:c3:e1:bd:44:c1:05:f4:c2:fc:ab:65:d8:9b:7d:96:c2:
13:de:1c:c6:b3:ac:de:91:e2:7f:fb:49:e6:e4:53:aa:c5:ff:
f2:63:1a:f7:77:48:f6:01:e9:5a:37:55:bb:ba:16:5a:09:9e:
ce:a2:83:18:67:31:ea:af:9f:62:23:8e:d1:03:5c:1f:f0:9f:
69:29:cf:de:b4:f2:76:49:4c:c9:d1:01:8c:a0:14:20:c4:cc:
a2:5d:72:4e:52:d3:94:b6:ab:ce:86:c2:a4:d6:74:cb:b3:1a:
f5:d4:6d:0f:cd:98:2e:a8:cb:5b:e9:83:05:4c:ce:40:22:b6:
e3:19:fb:56:9e:f3:f3:5a:d0:4d:a0:c3:e7:6a:eb:9f:68:63:
3f:26:5e:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 23:27:06 2025 by rpki-client