Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/20f4ac-80d9-40e2-a9e6-1c88eebeb293/1/vH7jPb8g38dH2vR9qK3pMDNrfho.roa
File: vH7jPb8g38dH2vR9qK3pMDNrfho.roa (raw, json)
Hash identifier: rKaBTqH8QAGAB5iAgTH9070WMyiT9B1O0dQ1lB7jBZA=
Subject key identifier: BC:7E:E3:3D:BF:20:DF:C7:47:DA:F4:7D:A8:AD:E9:30:33:6B:7E:1A
Certificate issuer: /CN=fb236b213d56493f3b077e6b41f42e4f3df8cdce
Certificate serial: 01856DEF6ABC01D8BCAFD5A218D60A33DC8D
Authority key identifier: FB:23:6B:21:3D:56:49:3F:3B:07:7E:6B:41:F4:2E:4F:3D:F8:CD:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-yNrIT1WST87B35rQfQuTz34zc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/20f4ac-80d9-40e2-a9e6-1c88eebeb293/1/vH7jPb8g38dH2vR9qK3pMDNrfho.roa
Signing time: Sun 01 Jan 2023 15:24:44 +0000
ROA not before: Sun 01 Jan 2023 15:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200611
IP address blocks: 80.210.80.0/20 maxlen: 20
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:6a:bc:01:d8:bc:af:d5:a2:18:d6:0a:33:dc:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb236b213d56493f3b077e6b41f42e4f3df8cdce
Validity
Not Before: Jan 1 15:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc7ee33dbf20dfc747daf47da8ade930336b7e1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b9:1e:a8:0e:38:85:62:95:ba:89:35:5e:60:
ea:3c:48:d2:aa:66:e7:9b:88:68:7e:e0:1f:7d:78:
8f:2b:56:12:16:81:16:e3:3b:e9:bd:8e:bb:57:f9:
a3:fd:d3:49:24:12:7b:89:1b:63:c3:9e:b2:8f:c2:
bb:80:ae:f8:88:21:70:a8:ab:26:09:b3:3b:cf:65:
30:b8:89:e0:6a:49:d3:8b:1b:8d:30:2d:31:c3:52:
ed:e4:35:ca:9a:df:7c:57:43:f8:94:ed:c5:1b:51:
4d:48:9e:6a:a9:5f:4b:89:7b:9b:01:7f:cd:49:eb:
0a:07:f3:83:dc:53:23:22:18:83:15:77:64:57:40:
7d:73:fe:55:ad:27:b9:d0:c3:4a:08:e2:ce:2f:e9:
ff:65:01:6d:36:39:8b:31:97:3c:d4:5a:cc:47:08:
1b:40:eb:01:d2:4a:5e:0a:c5:3b:35:1c:fd:12:cb:
e3:7a:a2:94:eb:c6:bd:b8:c8:1c:2a:12:9f:87:7e:
03:19:0d:d9:13:0c:fb:80:36:75:5a:b5:ae:5b:88:
6f:19:e4:dd:b7:65:d5:bd:85:27:bb:2a:0d:72:4f:
91:bd:b4:00:18:9c:ad:e0:ab:98:aa:4e:2b:77:26:
2f:ee:a7:ef:91:2d:2d:2d:2f:ae:e1:f6:8b:fc:5b:
5b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:7E:E3:3D:BF:20:DF:C7:47:DA:F4:7D:A8:AD:E9:30:33:6B:7E:1A
X509v3 Authority Key Identifier:
keyid:FB:23:6B:21:3D:56:49:3F:3B:07:7E:6B:41:F4:2E:4F:3D:F8:CD:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-yNrIT1WST87B35rQfQuTz34zc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/20f4ac-80d9-40e2-a9e6-1c88eebeb293/1/vH7jPb8g38dH2vR9qK3pMDNrfho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/20f4ac-80d9-40e2-a9e6-1c88eebeb293/1/1-yNrIT1WST87B35rQfQuTz34zc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.210.80.0/20
Signature Algorithm: sha256WithRSAEncryption
33:f0:64:9d:97:c2:b8:e1:c5:0a:3f:b9:29:e8:90:1a:ce:e8:
15:02:7f:d5:20:81:be:47:bf:05:28:82:a7:b4:45:0e:36:c0:
1e:dc:64:4a:a6:a9:6b:72:8b:ce:6a:f7:1f:5d:4e:6b:e2:9f:
8f:c0:6a:fb:5c:ff:3b:21:ad:a5:b7:eb:9f:64:52:b7:1f:1f:
9a:1c:d6:ad:c8:ba:65:38:61:1b:d6:3f:13:61:7b:f4:f0:bb:
1a:65:0f:37:eb:22:5b:d6:76:5e:5a:9d:1e:9e:e5:4e:1a:5a:
ab:b6:ee:3d:51:8b:29:da:38:97:ae:66:fb:a7:e7:04:f9:e3:
a1:c9:46:10:52:41:9b:a8:25:79:e5:74:b4:0f:64:b1:47:41:
38:ff:43:c8:b0:8a:a5:c4:1e:26:bd:2e:28:c1:c7:07:86:bf:
b2:72:77:70:c1:d2:7e:32:bd:98:9a:ea:4f:01:b7:0a:67:d6:
fd:68:e6:ff:b8:8a:b9:1d:0b:3e:be:69:4a:ec:4e:04:fb:ce:
3b:03:60:2a:2a:6d:a9:21:be:66:cc:ec:80:e1:73:e5:da:8c:
19:46:74:3b:7a:b1:cf:6a:1c:52:b0:6e:d4:bf:d1:42:6d:25:
4e:5c:c6:b8:d8:4a:0b:23:43:f5:e0:c1:e2:08:a0:68:ea:2f:
85:70:4f:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:28 2024 by rpki-client on console-fra.rpki-client.org