Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/5fXDzS-al6MvcirhM2f6anBTs1M.roa
File: 5fXDzS-al6MvcirhM2f6anBTs1M.roa (raw, json)
Hash identifier: 3bfZIN49FEvGZoauBaUXQaJLDLY4kl/624+fv4aLsNg=
Subject key identifier: E5:F5:C3:CD:2F:9A:97:A3:2F:72:2A:E1:33:67:FA:6A:70:53:B3:53
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0186FDDBD23F0158DDB08B127F906EEE3B01
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/5fXDzS-al6MvcirhM2f6anBTs1M.roa
Signing time: Mon 20 Mar 2023 07:11:27 +0000
ROA not before: Mon 20 Mar 2023 07:11:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 17447
IP address blocks: 80.71.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 Nov 2023 06:28:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:fd:db:d2:3f:01:58:dd:b0:8b:12:7f:90:6e:ee:3b:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Mar 20 07:11:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5f5c3cd2f9a97a32f722ae13367fa6a7053b353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:cf:9c:a0:f7:4c:24:3c:23:0a:c9:72:4c:c3:
2c:7d:e5:1c:18:53:ca:4b:6d:97:fa:0c:cb:af:65:
19:0d:cc:03:f2:af:c6:d4:24:bc:36:90:93:0f:2c:
cb:b4:1e:36:e2:1e:b2:89:41:16:79:ef:f1:d3:bb:
6d:62:d5:27:97:85:6b:50:99:b0:84:e5:2a:7e:44:
04:b2:78:da:bb:59:2d:8f:0e:17:77:c0:fe:f0:f9:
96:03:06:8c:ce:72:d0:d1:9e:84:e3:fa:7f:93:dc:
4c:e9:b5:f4:87:26:88:40:0e:68:ca:54:ea:60:e5:
ed:fc:17:9e:cd:78:8c:74:35:24:1f:95:c4:24:6f:
15:d1:f6:ce:2d:e9:35:68:67:c3:88:bb:9b:15:3a:
37:b7:af:6e:71:f4:8c:6e:1f:35:95:9c:27:34:68:
50:61:59:66:f5:97:a2:86:82:38:4b:1c:5e:77:a1:
65:be:1e:1d:da:46:d0:1d:a8:e6:63:05:07:f4:4d:
1f:50:10:18:7d:ba:f2:1d:ba:c5:fd:9a:bc:f3:ca:
1f:b6:e3:d7:5b:1a:1e:9b:ff:8c:e3:cc:24:c4:6d:
28:ba:b9:b4:16:2b:c2:43:05:a3:de:83:d9:8c:24:
35:01:f6:93:dc:38:88:7a:6f:30:65:e2:4c:77:55:
5e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:F5:C3:CD:2F:9A:97:A3:2F:72:2A:E1:33:67:FA:6A:70:53:B3:53
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/5fXDzS-al6MvcirhM2f6anBTs1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.226.0/24
Signature Algorithm: sha256WithRSAEncryption
59:d5:60:d9:be:6c:2b:a0:28:5a:1f:ab:f4:b7:36:ee:09:7d:
26:54:24:fe:c5:b2:a0:1c:17:39:a1:ff:c3:42:72:b5:ce:68:
9a:3b:1e:96:d6:da:63:ae:43:45:c7:c8:5f:65:cc:6e:cb:ad:
72:6b:97:4d:83:b4:46:7e:54:fd:6f:36:d0:54:c7:77:f4:8a:
35:86:d0:3c:c6:09:51:ef:fb:c6:98:99:7a:be:d2:3a:83:98:
a7:be:75:22:45:ec:28:da:11:73:49:07:02:09:da:55:17:5d:
5b:de:e4:b9:52:27:50:7f:a3:b4:a0:7c:7d:79:98:f6:3f:46:
27:cd:c5:a3:59:62:04:87:36:ce:72:38:3d:70:63:46:c1:df:
62:f2:28:ec:ee:b9:06:c4:0e:4a:fe:e9:24:37:38:2c:57:d4:
5f:8f:31:d1:2d:d3:df:bc:50:98:84:a0:40:73:4a:03:86:f2:
88:8b:97:75:bc:1a:43:4a:57:b3:bd:07:a6:be:dd:50:9a:cc:
d1:6f:d6:22:3f:49:67:df:28:d0:83:07:7f:02:a4:01:11:3f:
6c:77:1d:4e:d3:5c:9c:da:6d:37:c0:31:f6:de:11:80:77:6c:
4c:ca:12:22:04:87:fe:d6:06:34:aa:63:65:2e:df:88:c0:9b:
84:62:cd:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:39 2024 by rpki-client on console-fra.rpki-client.org