Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/DRSPnXNiXbKaxGnYyLbHclBAkjg.roa
File: DRSPnXNiXbKaxGnYyLbHclBAkjg.roa (raw, json)
Hash identifier: ayvtzFOrNNmvPnTnv1UOBy6oIOpEjRuDbqITiYl7bxY=
Subject key identifier: 0D:14:8F:9D:73:62:5D:B2:9A:C4:69:D8:C8:B6:C7:72:50:40:92:38
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018C317A829ED6145BB9AE78B49993E9849A
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/DRSPnXNiXbKaxGnYyLbHclBAkjg.roa
Signing time: Sun 03 Dec 2023 20:59:21 +0000
ROA not before: Sun 03 Dec 2023 20:59:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16276
IP address blocks: 80.71.226.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:31:7a:82:9e:d6:14:5b:b9:ae:78:b4:99:93:e9:84:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Dec 3 20:59:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d148f9d73625db29ac469d8c8b6c77250409238
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e6:1e:49:23:d7:10:44:dd:4b:d0:31:0b:39:
1b:95:a0:fa:b7:26:65:ff:6d:f3:de:fe:c4:a4:48:
27:2a:56:87:7a:7f:82:84:e4:01:17:3b:f7:99:40:
2d:a5:17:c0:73:33:99:5c:4d:ed:17:6f:dd:70:2e:
ba:d0:f9:01:25:34:47:b1:54:01:a7:cb:ed:87:37:
15:5f:23:22:f3:72:31:af:7b:bb:83:f1:2a:eb:76:
34:bf:31:7c:3b:b5:e4:52:61:d0:68:c7:2d:ab:6b:
05:04:fd:c3:98:27:e0:b8:27:c4:ff:01:39:af:f6:
0a:26:94:d0:dd:06:b7:39:c1:84:19:c2:b6:d4:03:
d9:ba:c6:93:d7:a3:50:4f:5e:eb:7a:c1:0d:ee:a2:
b8:f1:31:b8:1c:9c:1c:3c:1b:06:8b:bf:04:fa:70:
f9:18:58:14:0b:5a:17:09:2e:6b:e0:f3:ce:b1:83:
74:50:c7:74:7c:9c:5d:d1:ae:55:6a:8a:80:44:08:
b8:4c:12:0b:7d:1e:3d:a4:ae:e3:2b:02:71:ed:67:
f9:d8:f7:b3:62:95:8c:34:d0:02:a9:bb:7d:d9:be:
86:75:ba:4b:51:2b:63:ba:64:18:5d:10:ce:b0:0e:
2f:b4:72:c4:fe:9b:fd:91:cc:e1:dd:e2:0c:9e:85:
d0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:14:8F:9D:73:62:5D:B2:9A:C4:69:D8:C8:B6:C7:72:50:40:92:38
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/DRSPnXNiXbKaxGnYyLbHclBAkjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.226.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:ac:35:a0:13:35:79:8e:86:5e:9d:31:c4:3a:14:23:75:24:
56:b3:6a:a9:48:21:5e:c1:4e:24:00:e7:d5:1a:1c:45:fb:6a:
ff:68:37:3d:b5:d4:db:21:04:07:a6:a2:61:2a:d6:8c:d6:ef:
16:50:5d:6e:64:0e:28:1c:28:22:a9:e6:d6:52:5f:d5:2e:a1:
93:73:d9:d4:98:8c:55:32:dc:37:89:0c:d6:8b:20:d3:4c:fb:
d9:f8:33:65:c9:40:75:08:89:b0:b9:2a:20:c1:90:ec:a1:4a:
43:04:69:b7:39:69:22:86:2d:28:36:f6:a5:ca:c2:28:18:89:
d7:f7:cd:d4:d2:b7:ca:cf:37:c0:6d:e1:a0:17:19:51:d5:f6:
81:94:54:06:b7:b9:67:d5:91:31:da:5d:ad:82:0b:04:c6:03:
63:23:64:02:8e:60:58:19:54:54:e8:a6:f6:00:a9:7b:46:b0:
75:d6:48:0c:cc:33:90:c5:c6:6e:77:71:d4:d8:3c:75:e5:eb:
d7:ce:55:48:ae:f6:d1:61:fb:13:ce:10:9b:9f:e2:be:00:41:
e2:28:16:9c:7a:e7:5d:5d:e0:d1:ed:cc:bf:37:c4:e1:4b:ed:
5f:69:f1:21:e5:12:53:b7:b2:c2:b5:eb:38:30:a5:e4:68:83:
67:fb:98:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:02 2024 by rpki-client on console-fra.rpki-client.org