Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/LXrax7MHwOqJBopcD7TsL_TvNBw.roa
File: LXrax7MHwOqJBopcD7TsL_TvNBw.roa (raw, json)
Hash identifier: 41nl4S7KmDUVatyuzE9ssSYITMxFrxXjs9qKOtE5lys=
Subject key identifier: 2D:7A:DA:C7:B3:07:C0:EA:89:06:8A:5C:0F:B4:EC:2F:F4:EF:34:1C
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018C19BFFC1D1AB38F806454DC09701EA86D
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/LXrax7MHwOqJBopcD7TsL_TvNBw.roa
Signing time: Wed 29 Nov 2023 06:24:21 +0000
ROA not before: Wed 29 Nov 2023 06:24:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 80.71.231.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:19:bf:fc:1d:1a:b3:8f:80:64:54:dc:09:70:1e:a8:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Nov 29 06:24:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d7adac7b307c0ea89068a5c0fb4ec2ff4ef341c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:1d:7d:15:09:e7:f0:02:1b:08:31:2b:76:75:
57:37:4e:9a:e7:5d:41:51:43:11:4d:a5:b1:fb:cd:
2b:58:b3:e2:78:d8:3c:66:6c:25:96:33:1a:97:55:
72:0a:33:4e:06:39:cc:f8:fc:88:00:9a:6e:50:73:
f9:e6:10:4f:6e:c2:22:ff:1d:1f:d2:de:5e:d5:71:
45:9f:ba:70:35:4c:a4:9f:76:bc:da:29:ec:9a:78:
7c:ff:9b:f2:56:e1:6d:6e:3e:64:27:08:54:e6:32:
05:e9:b4:05:17:5e:85:c0:69:59:7e:ef:8a:51:f9:
e6:34:f0:ad:85:02:4b:9d:0b:8f:bb:16:a2:3a:52:
8c:0a:b5:39:b9:c0:2c:a5:df:3c:a6:52:fc:0b:dd:
2e:75:43:be:3e:b8:af:65:75:82:78:b0:63:cb:8e:
17:a1:f6:aa:ae:0e:ce:d7:c0:7f:25:1c:e4:f1:8e:
b4:0e:3b:0f:c5:a0:fe:e0:da:10:ea:77:d2:c6:76:
34:41:d5:d1:3a:7e:26:de:41:a5:75:69:61:82:ec:
55:d0:74:99:3b:1a:dc:ac:69:cd:c0:f1:5d:f3:3d:
ae:c4:62:c6:0a:09:f8:81:cd:0d:8f:f8:68:15:6f:
68:54:be:81:75:c9:c3:a5:c0:92:99:62:74:04:3a:
09:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:7A:DA:C7:B3:07:C0:EA:89:06:8A:5C:0F:B4:EC:2F:F4:EF:34:1C
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/LXrax7MHwOqJBopcD7TsL_TvNBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.231.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:00:a0:90:5c:6f:6c:c6:27:a3:c0:28:b5:61:7f:87:62:98:
d4:3c:e1:27:e7:b6:a0:78:d2:09:0a:64:77:c8:56:8e:b0:37:
be:e1:34:51:02:9d:c5:fe:28:4f:63:d6:64:f4:e4:ea:cf:13:
57:65:34:f3:5c:d3:b8:e3:c8:41:f5:b1:4c:94:06:9f:4c:8f:
6b:c1:16:7a:4c:c8:90:a2:3a:a0:6b:7c:8d:73:f5:36:82:26:
b0:3f:54:27:7c:81:76:41:64:bf:5e:cf:bb:09:20:95:cb:e1:
02:59:db:a2:91:da:4a:c8:e6:e9:91:c5:fc:81:69:bb:bb:66:
ce:cb:cc:61:80:12:5c:ec:66:6c:e6:0e:da:48:cf:5c:b4:c0:
57:46:f8:b9:18:94:59:de:87:b3:83:bf:9a:96:30:a7:17:2f:
4a:ea:d5:74:1c:34:3b:69:ce:48:ff:b8:78:0e:8a:c6:e5:fc:
56:c5:1a:ac:3c:c5:fd:29:aa:1f:4d:44:49:80:48:6a:49:0c:
f3:07:10:e4:a8:3f:8b:6a:80:86:fd:54:4a:73:01:12:68:85:
5c:5e:3b:35:d2:b3:c5:2f:60:5c:23:69:e4:cc:5d:b2:9d:bf:
88:e5:30:c6:41:ad:a7:61:aa:19:bd:f1:96:07:ff:2e:a3:48:
31:f8:18:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 1 07:12:45 2023 by rpki-client on console-ams.rpki-client.org