Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/Fl-3k2sVjjMrwtOcl24lx-Yr29o.roa
File: Fl-3k2sVjjMrwtOcl24lx-Yr29o.roa (raw, json)
Hash identifier: DFZsOi+kNclYa2RrjA2fI7Jwnhge2yVufxR5IVYiC8Q=
Subject key identifier: 16:5F:B7:93:6B:15:8E:33:2B:C2:D3:9C:97:6E:25:C7:E6:2B:DB:DA
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018B70165E17593C7AE335FA1FA8B8B860ED
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/Fl-3k2sVjjMrwtOcl24lx-Yr29o.roa
Signing time: Fri 27 Oct 2023 07:43:15 +0000
ROA not before: Fri 27 Oct 2023 07:43:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142430
IP address blocks: 80.71.229.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:70:16:5e:17:59:3c:7a:e3:35:fa:1f:a8:b8:b8:60:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Oct 27 07:43:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=165fb7936b158e332bc2d39c976e25c7e62bdbda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4d:4d:3b:91:9e:e6:62:ee:47:ac:be:f9:a8:
90:56:82:d6:1d:a1:da:71:7d:53:46:f2:64:b1:43:
73:73:21:02:25:99:f1:f9:04:cb:c0:bd:ff:78:df:
2f:e5:25:3b:62:8f:30:cf:8a:74:76:c1:e4:fe:db:
56:19:b2:2d:b8:75:f4:48:e9:46:4c:1b:9f:2b:bb:
4b:69:2c:d5:e6:89:01:c9:23:bc:f5:4e:ba:20:f1:
b1:f2:bf:df:d6:8e:96:a1:4c:31:79:25:9e:7a:c6:
41:95:44:b6:71:2b:56:f2:e5:21:f2:4b:ba:3c:80:
34:ec:ba:06:4f:77:21:b7:c5:90:1b:18:eb:a2:e4:
83:f2:2f:d2:41:c8:4a:89:e9:24:72:1c:25:c9:7f:
80:33:8d:d9:7b:da:2f:aa:56:95:f5:e2:8f:18:55:
3f:b6:de:db:46:10:fd:96:69:ba:d7:57:c8:8d:be:
f5:98:1f:fe:80:85:64:b7:72:5c:5c:85:b6:11:42:
4f:dc:a3:55:de:8b:92:4c:44:ea:2d:ae:66:fa:99:
1a:fd:33:85:ee:6b:62:28:45:6e:6f:68:45:47:8e:
12:71:48:6c:3c:0f:92:e8:b0:8b:89:b8:4d:ab:dc:
18:11:b0:57:5b:76:d6:94:b2:31:33:15:61:43:7f:
77:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:5F:B7:93:6B:15:8E:33:2B:C2:D3:9C:97:6E:25:C7:E6:2B:DB:DA
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/Fl-3k2sVjjMrwtOcl24lx-Yr29o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.229.0/24
Signature Algorithm: sha256WithRSAEncryption
09:98:27:48:bc:a2:06:8a:84:3a:1a:6e:8f:7d:66:be:4b:8f:
52:c7:79:06:28:02:e5:c4:a7:82:92:af:f9:5d:49:53:9f:8a:
f3:02:8e:4a:f5:bc:5e:c8:64:26:04:97:df:55:2b:c3:35:ea:
94:97:e0:84:05:f6:b5:3b:57:a9:7b:57:76:e5:1f:0c:96:01:
94:77:5c:b7:06:2b:2f:62:93:f2:e0:96:cb:90:45:44:5e:73:
11:35:de:81:40:91:a3:04:e0:8a:4f:e9:ab:5b:59:73:15:20:
78:fc:65:d2:8f:ef:83:dd:29:39:7c:40:48:82:53:e7:ad:88:
f2:1e:0f:13:0c:a9:5e:dc:32:c1:8c:1a:3a:c8:0d:aa:69:b5:
e9:48:12:e3:f4:81:bc:b7:3f:27:29:96:c8:bb:4c:03:78:b2:
19:3b:d8:4f:be:73:a8:aa:5f:7b:1d:4a:5e:79:ec:aa:63:99:
1d:f3:27:b0:2f:8e:db:4a:5f:63:fa:9c:d1:e9:66:53:a1:e2:
5e:1b:d7:db:f5:27:6a:b3:b5:a0:e7:ea:5b:90:78:df:0c:03:
f0:30:a1:25:4f:be:92:83:72:2a:aa:d9:fe:36:27:16:96:1b:
3e:ed:6e:85:6a:56:79:34:05:1d:1f:9f:d0:29:ad:41:15:b1:
67:84:c0:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 27 08:00:10 2023 by rpki-client on console-fra.rpki-client.org