Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/7o041nC2s6aRA6zLDOLZCSCiwDc.roa
File: 7o041nC2s6aRA6zLDOLZCSCiwDc.roa (raw, json)
Hash identifier: FTATXZF+R0XGVk8IIAGhHJrfoWrRx1icF3NTVlcofy0=
Subject key identifier: EE:8D:38:D6:70:B6:B3:A6:91:03:AC:CB:0C:E2:D9:09:20:A2:C0:37
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018A5E902E015C9F45CEF5848006E7B2DEF3
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/7o041nC2s6aRA6zLDOLZCSCiwDc.roa
Signing time: Mon 04 Sep 2023 05:00:21 +0000
ROA not before: Mon 04 Sep 2023 05:00:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212815
IP address blocks: 80.71.239.0/24 maxlen: 24
80.71.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Oct 2023 10:54:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5e:90:2e:01:5c:9f:45:ce:f5:84:80:06:e7:b2:de:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Sep 4 05:00:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee8d38d670b6b3a69103accb0ce2d90920a2c037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3b:ef:1e:28:85:72:f9:f0:76:51:cc:61:34:
d1:e2:02:cd:10:1d:95:bd:69:7f:cd:27:05:85:df:
a2:85:d5:da:f0:12:eb:a9:64:1a:1d:ed:11:f7:f4:
29:ab:54:b0:fc:cb:43:08:a5:5a:9b:b5:cd:1a:5a:
77:90:92:b9:59:15:96:d4:59:83:aa:c0:75:06:a2:
2a:d4:45:ee:f8:6b:1a:e5:b8:3b:79:dd:65:81:89:
34:8f:65:75:c2:c7:c6:a5:c7:b6:8b:0e:7a:34:cc:
5c:12:21:59:22:b4:16:60:18:3b:1d:d8:8c:b7:03:
37:fd:d0:fa:bf:d3:3e:b5:38:a9:ac:b5:75:07:24:
ac:04:0a:ad:f3:cf:4f:28:ad:2c:8c:54:27:1f:1f:
93:10:c4:8d:56:b6:85:1b:3a:cb:96:35:b0:e3:1e:
d9:0f:11:4b:a3:7e:60:11:68:8d:42:71:61:07:10:
2e:4e:8b:27:86:ef:cd:80:4a:51:5a:e8:bc:ac:8a:
12:55:f1:81:45:0e:0d:9a:d6:dc:c7:96:26:d2:45:
dd:17:47:85:22:aa:6b:a1:a2:22:29:9a:9e:86:85:
ef:82:26:7a:31:c4:ca:4b:02:78:e3:c5:4f:91:c6:
ab:2d:1d:c5:84:5a:02:2c:e8:6a:af:87:e1:f6:ad:
44:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:8D:38:D6:70:B6:B3:A6:91:03:AC:CB:0C:E2:D9:09:20:A2:C0:37
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/7o041nC2s6aRA6zLDOLZCSCiwDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.234.0/24
80.71.239.0/24
Signature Algorithm: sha256WithRSAEncryption
51:b2:8d:ba:0d:b6:88:91:8d:73:3e:80:94:b1:42:df:6b:aa:
4c:ec:92:3f:cf:e2:e7:dc:5e:2c:59:6b:a8:1f:6e:64:54:ef:
78:90:ce:04:db:67:b1:45:00:8b:fd:93:a5:e3:d3:3c:1c:d5:
b3:04:af:6f:eb:9a:7b:b3:e9:6d:b4:80:1b:0c:d7:03:b4:76:
37:4e:1f:a2:fd:cf:64:24:99:3d:f4:08:09:ea:47:31:6d:4c:
81:6c:eb:7e:56:43:2d:4f:b7:62:08:b7:66:69:1c:ae:c2:00:
04:01:fe:ee:b3:26:00:92:c2:9e:d5:8a:1c:59:26:9e:4d:1e:
cd:e8:dc:91:b3:9b:d6:c6:76:24:78:65:5a:a2:87:d6:32:a4:
dd:6c:9c:19:72:07:33:63:66:4b:e2:8b:cc:f9:d4:bc:35:d3:
83:80:05:e2:b1:26:83:e2:a0:9e:9b:6b:01:6b:e1:e3:ac:ab:
9c:12:f8:d0:fa:b6:42:2d:b3:1b:8a:52:56:f2:c5:80:e1:d9:
bf:58:67:e0:20:9e:89:c5:77:68:81:3f:d1:8f:04:29:5b:fa:
74:11:f0:a3:d3:8d:66:04:3a:30:78:c7:65:82:9b:17:f6:a1:
06:a8:f9:d1:61:27:8d:e4:91:90:c2:0a:4a:e1:be:f3:f8:91:
04:50:94:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:35 2024 by rpki-client on console-ams.rpki-client.org