Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/AXvVP2YMFT6yGWXJGkJJsN4DlGE.roa
File: AXvVP2YMFT6yGWXJGkJJsN4DlGE.roa (raw, json)
Hash identifier: 7/FBS1zenjJ5HjMp6Zyybcu/dyn4GuEOhWfLYETXBAg=
Subject key identifier: 01:7B:D5:3F:66:0C:15:3E:B2:19:65:C9:1A:42:49:B0:DE:03:94:61
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0187FFDF2F1EAD89E8EA246C92BA051679C8
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/AXvVP2YMFT6yGWXJGkJJsN4DlGE.roa
Signing time: Tue 09 May 2023 09:37:09 +0000
ROA not before: Tue 09 May 2023 09:37:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399471
IP address blocks: 80.71.238.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ff:df:2f:1e:ad:89:e8:ea:24:6c:92:ba:05:16:79:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: May 9 09:37:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=017bd53f660c153eb21965c91a4249b0de039461
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8c:d7:0a:62:80:de:3a:20:7f:a4:b9:53:fa:
2a:5f:dd:69:ae:d0:0c:fb:2d:a8:67:85:06:ee:2b:
9b:32:a3:fe:3a:59:3f:ce:b1:19:0f:a0:1a:83:da:
60:bf:62:be:20:18:01:6b:39:fe:f0:bd:84:26:19:
86:53:a2:0b:ac:b7:01:72:13:e1:fe:8d:00:c1:1a:
16:ff:bf:e0:da:01:4c:d6:79:74:0d:a3:26:3b:bb:
3f:2f:25:7d:22:82:62:e7:44:7f:31:ed:09:e6:c2:
d8:64:59:da:0a:64:c5:3c:86:77:ae:de:d4:70:15:
23:32:c2:0f:1f:9b:45:e6:8d:89:1d:08:c5:af:8b:
e2:b1:35:cb:0e:dc:9b:63:37:dc:96:20:10:ff:da:
ff:78:ad:84:a3:12:b8:ca:39:b5:e7:04:5f:0b:a1:
80:0b:96:0b:f2:c0:13:50:ea:62:9e:df:d2:e5:13:
15:47:de:f5:e7:df:ed:fd:3c:15:c1:da:fe:b7:c0:
05:c3:76:ef:02:be:33:4a:32:53:f4:51:7b:de:91:
e2:47:cd:56:98:be:03:c7:9a:37:29:d9:92:b7:3d:
cb:da:db:12:8c:19:70:6e:2b:e8:64:a0:92:da:5c:
7a:26:9f:20:93:fc:e5:e8:0f:07:a2:9f:05:0f:10:
77:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:7B:D5:3F:66:0C:15:3E:B2:19:65:C9:1A:42:49:B0:DE:03:94:61
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/AXvVP2YMFT6yGWXJGkJJsN4DlGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.238.0/24
Signature Algorithm: sha256WithRSAEncryption
21:d2:f6:bb:c0:c7:bd:61:0d:c6:ae:9a:de:d1:67:fb:1b:ed:
19:90:24:d3:3d:39:5e:38:df:4d:6a:2b:e7:66:b6:f2:87:66:
df:08:24:25:d2:38:19:b7:fe:c1:b3:f2:8b:61:0d:b1:96:31:
c9:ce:91:b4:3a:bc:95:a4:63:9e:df:5c:7b:2a:da:bc:29:e1:
9c:bd:b6:7f:3d:5e:32:22:22:e9:bb:67:7b:cf:81:76:3f:59:
49:54:d2:fa:31:30:3c:36:fe:6c:70:3f:1b:d6:58:3c:87:7d:
c6:c5:53:cb:13:de:88:05:d0:15:19:28:34:cf:c7:30:3a:4b:
52:3e:98:4e:55:ab:d4:9d:c9:8f:c9:1f:a4:cc:5b:f0:b7:34:
c0:dd:2c:2d:6c:52:63:b4:6b:cf:bb:92:97:65:0e:59:96:4d:
e1:a3:4c:be:95:17:cb:2c:60:69:1f:8a:22:0b:7c:f6:a2:47:
17:fd:47:98:27:ef:35:8b:ba:7b:c2:95:9d:43:2d:c0:85:f3:
62:4e:24:71:c5:83:c7:f7:8c:88:3e:5c:a2:64:bc:d4:3c:40:
b5:70:d8:80:23:3e:28:40:5a:21:62:39:44:f7:03:27:dc:01:
20:6f:62:0f:e4:36:09:c4:81:c4:fd:0a:b4:9e:8b:07:4a:12:
b6:9e:29:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 28 13:37:21 2023 by rpki-client on console-fra.rpki-client.org