Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/hk8GbenQwGJmhXupuzsfaBaa8Ps.roa
File: hk8GbenQwGJmhXupuzsfaBaa8Ps.roa (raw, json)
Hash identifier: TmDhqi65Fsw2fNEVKNDhpmiRxRVfe4Q2m14edBtII+4=
Subject key identifier: 86:4F:06:6D:E9:D0:C0:62:66:85:7B:A9:BB:3B:1F:68:16:9A:F0:FB
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: 0188C4EAD36D8166FDB26237692AAA912BBB
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/hk8GbenQwGJmhXupuzsfaBaa8Ps.roa
Signing time: Fri 16 Jun 2023 15:55:03 +0000
ROA not before: Fri 16 Jun 2023 15:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7029
IP address blocks: 80.83.88.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Aug 2023 12:15:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c4:ea:d3:6d:81:66:fd:b2:62:37:69:2a:aa:91:2b:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Jun 16 15:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=864f066de9d0c06266857ba9bb3b1f68169af0fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0c:0e:af:23:e7:a6:fa:eb:49:7b:dd:e5:ff:
fc:82:a3:97:77:c0:c1:ab:66:cb:0f:9a:b0:7b:60:
cd:e1:c5:2b:ac:6b:57:1d:15:76:35:40:4c:cd:2a:
1b:c2:ac:9a:e2:57:00:dc:74:9f:d6:c4:10:45:50:
f5:31:bd:9d:31:dc:f3:57:5d:9f:08:43:8d:31:d3:
a4:45:e1:f9:19:18:28:e4:1f:a7:48:2a:bb:a0:46:
e5:0d:56:c2:d8:c1:57:fc:dc:f4:d3:9c:70:cc:35:
cd:8d:ec:e9:1f:82:91:ad:97:a2:84:45:13:dd:ce:
43:a5:79:6e:33:44:ec:23:82:d9:f0:61:13:c1:20:
89:1c:ee:ea:8b:ef:72:7f:42:1b:20:ff:cf:19:e1:
29:d3:4d:99:44:b8:a2:5e:3d:1d:f4:ae:5f:12:fc:
dc:63:4e:1b:aa:97:93:78:c1:ca:39:fb:ec:0f:cb:
42:69:09:04:6d:18:8e:70:40:26:54:9f:ac:11:ab:
66:56:8e:f8:a0:e9:34:e1:0d:66:7a:99:f7:03:aa:
22:b1:75:c1:eb:95:07:1f:35:f8:de:82:32:6a:e2:
a4:89:45:38:63:8f:2b:11:75:b0:12:ca:e0:f1:80:
43:f8:a6:61:c0:e8:5d:fe:31:f8:1a:fb:c0:ce:f1:
e0:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:4F:06:6D:E9:D0:C0:62:66:85:7B:A9:BB:3B:1F:68:16:9A:F0:FB
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/hk8GbenQwGJmhXupuzsfaBaa8Ps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.83.88.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:c4:4b:b0:bf:9b:3f:ae:83:92:cb:6a:9f:79:c7:8f:45:b2:
73:5c:91:ec:55:27:54:60:7b:8b:4f:c3:b4:c6:4b:36:06:e4:
22:77:b2:5b:c5:9e:ea:72:6d:9f:3c:0d:ae:6e:ef:bb:2c:64:
87:a6:07:98:c9:9e:e5:db:54:c8:27:4d:54:a1:34:b1:08:47:
16:af:df:84:d8:68:bf:2e:33:91:63:5d:83:ff:4e:bf:13:5f:
b2:b8:ab:22:0c:0f:dc:d7:41:ba:a2:86:1d:c0:78:51:4d:d8:
06:6b:91:5e:07:e0:f5:61:c6:d8:28:7e:80:1e:de:9a:11:72:
e9:53:ae:1e:a5:b3:e1:46:2c:88:01:2e:46:04:b8:b1:4a:02:
10:7d:c1:71:75:5a:a2:9d:46:83:c3:ae:52:c2:c3:c0:d3:cd:
c4:22:1b:50:e4:8d:85:08:ee:e2:56:ec:c3:4b:8a:0b:95:63:
8f:f1:b8:de:03:6c:87:ac:4e:59:de:e8:aa:46:1a:2f:a0:3f:
76:c6:cf:1f:75:91:8a:20:4e:4d:fd:94:bb:18:bb:c2:6b:d6:
91:06:73:5b:14:b9:1e:e8:ed:a0:9a:04:85:8a:06:b6:80:9e:
6b:9b:3c:f9:d7:30:d9:99:60:6c:ba:27:6c:47:1d:89:4b:a7:
a9:c4:38:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:42 2024 by rpki-client on console-ams.rpki-client.org