Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/WiHlYVKixQ2Sf9z0ww5D1N0o2oc.roa
File: WiHlYVKixQ2Sf9z0ww5D1N0o2oc.roa (raw, json)
Hash identifier: ylLS0BZJxXe60KIXVwfdnafr3lM6aOBXVU/55clI/HE=
Subject key identifier: 5A:21:E5:61:52:A2:C5:0D:92:7F:DC:F4:C3:0E:43:D4:DD:28:DA:87
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 01856F54B88379DEBDBBFCAEAF168FE87276
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/WiHlYVKixQ2Sf9z0ww5D1N0o2oc.roa
Signing time: Sun 01 Jan 2023 21:55:01 +0000
ROA not before: Sun 01 Jan 2023 21:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 80.71.239.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:b8:83:79:de:bd:bb:fc:ae:af:16:8f:e8:72:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jan 1 21:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a21e56152a2c50d927fdcf4c30e43d4dd28da87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:c9:58:df:59:6d:37:58:57:ad:82:8e:93:e0:
db:49:8c:91:2c:2d:de:09:11:c7:01:b7:8d:20:d8:
e3:3b:f3:53:1f:ed:08:5b:e3:b6:f0:ed:2f:e8:37:
e1:46:04:4b:4d:56:db:36:f1:ab:66:87:80:76:14:
99:3e:34:d7:3c:72:e8:0e:0e:0a:af:80:85:ac:62:
d7:3e:7c:38:fd:a3:98:91:a9:dd:c1:0e:bc:bf:da:
b8:0f:51:ea:c4:70:0b:cb:ac:ff:dd:44:9b:d9:8e:
6c:cf:08:19:06:89:04:32:75:5b:4a:5a:3a:32:60:
64:81:e0:79:de:24:b6:c6:85:de:9b:0a:d4:0e:a3:
d7:4a:98:b5:e8:69:9e:bf:2c:80:5f:13:e2:7f:05:
88:0e:8e:a4:89:f2:32:26:89:5b:32:5b:5a:29:a4:
a7:92:fe:10:1a:65:5b:30:89:83:a1:82:e5:b3:4e:
dc:e8:c4:8e:67:6f:be:3d:4c:66:e2:7f:c2:50:e6:
bb:b0:5c:88:30:b4:56:61:07:20:4f:77:3a:8d:db:
ba:d5:82:b9:51:5e:aa:4b:6b:f8:60:01:eb:e0:ae:
8f:bd:db:ca:f5:af:d5:fd:3e:2d:13:75:7f:e0:71:
7d:8d:0b:f0:90:ce:f8:7f:b8:3a:3a:e6:a8:ae:89:
7a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:21:E5:61:52:A2:C5:0D:92:7F:DC:F4:C3:0E:43:D4:DD:28:DA:87
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/WiHlYVKixQ2Sf9z0ww5D1N0o2oc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.239.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:ec:48:61:d0:20:52:8c:d8:d2:ec:12:02:15:8d:a7:40:02:
b7:bf:dc:7e:e7:05:d3:c4:b8:e7:77:c0:59:e9:db:c8:9f:44:
dc:6d:4c:a4:63:53:14:aa:ce:21:9d:11:69:35:db:04:4c:2f:
e0:8c:d4:e4:d9:ab:f9:24:07:b1:02:42:06:9c:16:1c:34:bf:
6d:70:b2:fb:e7:dd:e4:b2:d4:a8:a6:66:54:de:75:53:d2:53:
02:d1:db:4c:c9:89:29:1b:34:86:30:20:e1:97:94:61:ea:28:
46:e1:f6:11:70:70:63:d5:8b:90:90:95:e8:a0:19:bf:60:88:
86:72:a8:b4:4a:02:36:bd:92:c8:b6:0f:ee:70:79:53:48:77:
fe:80:df:92:a6:52:fa:1b:54:38:a2:3c:2a:b4:88:4d:5c:cb:
06:66:85:e3:19:df:f4:5d:a2:43:4a:b7:64:ac:c2:24:f2:27:
d3:c2:c4:9a:31:f1:f5:91:53:d5:6f:a0:6c:01:44:79:e5:39:
88:ff:47:01:21:fc:02:aa:dc:d7:a0:9b:f1:87:f4:7b:38:a2:
02:53:a6:5d:0e:e5:5e:b4:9d:87:62:87:c6:ac:53:8e:bf:b7:
35:4d:12:4e:b6:55:c5:de:1a:af:da:0e:70:5a:12:bd:b7:67:
d9:5d:7c:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:56 2023 by rpki-client on console-fra.rpki-client.org