Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/zLw2BBa1m5IOJY4oLWLLgTtmd0E.roa
File: zLw2BBa1m5IOJY4oLWLLgTtmd0E.roa (raw, json)
Hash identifier: g6FSUivo7goh4TjNG9tJYtyAgPFcQyV8a7mRj8NAzZI=
Subject key identifier: CC:BC:36:04:16:B5:9B:92:0E:25:8E:28:2D:62:CB:81:3B:66:77:41
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 01856F54B8F280F109A58FD3F81FB3881B02
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/zLw2BBa1m5IOJY4oLWLLgTtmd0E.roa
Signing time: Sun 01 Jan 2023 21:55:01 +0000
ROA not before: Sun 01 Jan 2023 21:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 80.71.230.0/24 maxlen: 24
80.71.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Feb 2023 08:32:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:b8:f2:80:f1:09:a5:8f:d3:f8:1f:b3:88:1b:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jan 1 21:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ccbc360416b59b920e258e282d62cb813b667741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:48:60:ca:8e:a4:d6:2a:1c:a0:17:ef:49:1f:
1b:1c:33:6d:2d:80:50:01:93:a5:a8:57:ba:53:3f:
e5:80:f4:52:c4:c8:0a:72:5b:04:5a:b6:26:4f:1f:
11:9b:23:b2:1a:3e:44:6b:c9:4b:f2:a2:69:1f:c1:
42:52:ea:8d:79:b3:6a:ab:6e:ce:d0:68:fe:22:e5:
c5:fd:d2:43:0b:23:4a:bb:d7:af:99:10:1d:d3:5e:
bf:0c:79:f9:49:8b:91:15:71:d5:e6:ad:d7:da:cf:
9b:80:a3:f8:cd:c4:58:83:7a:ef:d4:44:8f:6c:76:
b5:ea:bc:4b:bc:4b:65:b4:ff:dd:d1:04:3d:12:f3:
5f:ec:40:d2:b6:7f:d5:07:a0:86:2b:86:b6:4e:7e:
70:07:28:ee:bc:c4:f9:76:84:70:1e:88:13:4c:73:
f3:40:ff:99:26:01:55:5c:10:19:db:00:3e:3d:14:
d5:76:33:91:2b:07:5d:49:e6:28:6d:ed:11:bb:9e:
bb:d7:53:0b:8f:75:2c:6d:84:fd:20:e9:e1:7e:0f:
b7:85:12:65:cf:f0:08:31:3c:a4:4c:a9:1a:72:e8:
1e:45:62:9e:d1:81:2c:1a:ae:eb:fe:0d:36:98:d7:
2d:7e:97:b3:a6:69:70:64:d1:b9:90:c1:0c:df:08:
d2:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:BC:36:04:16:B5:9B:92:0E:25:8E:28:2D:62:CB:81:3B:66:77:41
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/zLw2BBa1m5IOJY4oLWLLgTtmd0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.228.0/24
80.71.230.0/24
Signature Algorithm: sha256WithRSAEncryption
33:63:0f:5c:67:b3:e9:55:4c:1b:45:ce:aa:e9:cb:03:07:7b:
46:c7:a1:4f:dc:6f:4b:61:80:c9:6b:60:bf:28:e5:28:c7:76:
f8:63:68:16:35:0c:e0:86:93:93:74:14:98:2b:57:85:c6:00:
b6:9a:6e:b7:db:d9:62:76:e1:16:78:06:e3:78:be:cd:d1:aa:
48:77:c6:23:e6:0c:f9:76:96:8d:52:5b:30:14:be:6e:0e:82:
2d:ef:f5:0c:08:7b:5c:02:85:9f:9d:8f:0a:44:06:b5:e8:73:
87:bb:6a:3d:9f:76:8a:d1:5c:43:1c:64:3c:a3:62:0e:e1:d5:
4d:96:a7:b7:63:86:1f:f2:88:3f:df:71:6c:d1:6a:c7:af:4a:
45:18:e6:35:03:dd:d1:7f:4c:66:3c:8a:22:0e:8d:79:0e:bd:
42:f5:f3:b8:1a:b3:70:e4:56:2b:82:6b:7c:50:ab:fa:f6:5f:
d6:12:e5:c1:18:09:cf:3e:7b:43:eb:0f:7a:bb:f0:6b:5d:b3:
10:9e:1f:d6:47:09:4b:f1:45:66:88:ab:ef:39:dd:fa:8c:e6:
b9:05:93:02:30:91:b3:ee:1f:66:d4:6b:d0:f7:00:f8:54:79:
01:0b:3c:57:31:fe:36:3d:67:9e:60:1d:15:d6:0a:85:ab:07:
40:a0:65:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:36 2024 by rpki-client on console-ams.rpki-client.org