Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/kecfRvjj3CK6jRS-NJPJe5ahoD4.roa
File: kecfRvjj3CK6jRS-NJPJe5ahoD4.roa (raw, json)
Hash identifier: sjob7qwyL8LfC7Aq8HikXsjJ0IIPnt0opG7sYVOL03E=
Subject key identifier: 91:E7:1F:46:F8:E3:DC:22:BA:8D:14:BE:34:93:C9:7B:96:A1:A0:3E
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: 018A4644BD9EEFB9C6CB12CF10840CFB62AF
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/kecfRvjj3CK6jRS-NJPJe5ahoD4.roa
Signing time: Wed 30 Aug 2023 11:47:04 +0000
ROA not before: Wed 30 Aug 2023 11:47:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 80.83.80.0/21 maxlen: 24
80.83.88.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Sep 2023 07:32:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:46:44:bd:9e:ef:b9:c6:cb:12:cf:10:84:0c:fb:62:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Aug 30 11:47:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91e71f46f8e3dc22ba8d14be3493c97b96a1a03e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:cc:aa:b7:d0:a1:dd:fa:b3:93:00:af:4a:72:
de:f3:db:2e:5f:81:c5:06:1e:da:58:35:80:d3:c9:
a8:b9:df:46:66:d7:e5:28:f9:3d:65:61:3c:53:11:
66:9c:97:a3:9f:64:7b:46:8b:54:f2:76:55:bc:d1:
26:81:5e:e8:ed:2b:fc:09:24:6a:73:0a:b9:42:9b:
dc:f6:3f:0a:6b:05:29:80:e5:b6:80:2e:2e:23:de:
9d:09:6d:1c:f2:ec:aa:86:b6:c9:f7:83:a0:3c:57:
9e:33:52:ff:ce:69:aa:ba:4f:b1:5b:e8:f3:f6:28:
f1:45:e1:fc:1f:3f:1e:08:c3:aa:cc:fe:d0:66:a1:
17:10:88:dd:73:29:7e:dd:0e:33:61:db:8a:44:8f:
f8:49:63:59:4f:be:6a:b2:55:26:da:35:33:ba:9a:
63:95:1e:d0:a7:19:dd:53:3d:1c:53:24:66:67:05:
cc:63:f0:c0:ca:88:fd:63:c5:1b:e4:63:e0:b7:22:
29:32:f9:ef:4c:fb:11:81:b3:11:97:1b:ad:cf:26:
97:46:f3:db:52:68:cc:1b:0a:0c:80:42:2c:c2:04:
aa:6e:24:90:b5:ba:a0:a0:7c:6f:db:9f:d0:e6:5e:
fd:5f:50:0a:88:ab:a6:f9:b2:c9:0b:55:12:53:b9:
6c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:E7:1F:46:F8:E3:DC:22:BA:8D:14:BE:34:93:C9:7B:96:A1:A0:3E
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/kecfRvjj3CK6jRS-NJPJe5ahoD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.83.80.0-80.83.89.255
Signature Algorithm: sha256WithRSAEncryption
87:f4:30:cf:cf:86:ef:6f:f0:8a:3d:f0:ce:44:ec:3d:17:c6:
5d:e1:6b:f6:07:18:61:3a:b7:50:3e:ba:8d:29:9c:ee:eb:a0:
9a:37:ec:98:5c:32:5f:40:41:14:20:a4:2e:af:05:eb:60:8d:
f8:dd:8f:94:e1:5f:8b:49:e2:c2:15:b7:d0:19:bd:ab:40:34:
5e:70:0d:72:10:5a:1e:bb:a8:2c:90:42:a3:b5:f6:32:71:a7:
d5:2c:a5:d9:b5:73:4d:96:a7:b5:4b:a0:79:b4:01:b8:4b:b5:
2c:eb:06:d3:10:e3:18:4f:02:96:5a:c5:09:c7:f2:06:07:55:
8f:99:87:7f:a8:ca:83:2e:53:9d:b6:46:99:00:d3:8e:09:2a:
d6:73:7b:5e:6a:75:4c:8e:40:bb:ed:2a:6e:33:29:a1:42:92:
e1:08:9f:4a:5a:3e:2c:cc:89:f9:e7:15:6d:3d:11:af:f9:41:
fb:55:d5:29:a7:4a:0e:b7:19:66:73:b5:de:c9:6e:94:c5:71:
dd:fe:15:45:9a:a6:5b:be:6a:c8:0c:0b:55:85:59:b2:e4:7c:
2d:ca:58:34:41:e5:9b:7d:85:7e:f8:9c:e8:84:69:25:f2:cb:
7c:90:e1:0b:96:b5:0f:b4:33:7a:aa:07:fb:c0:ec:37:b2:c5:
18:4d:7b:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:26 2024 by rpki-client on console-fra.rpki-client.org