Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/jUac1iu5aIQv7qyAFnBKf4E_NnA.roa
File: jUac1iu5aIQv7qyAFnBKf4E_NnA.roa (raw, json)
Hash identifier: oWnmuyPR6dmeLVUAoCJ6OnPbzCgHnrdNv+WgGifJJuA=
Subject key identifier: 8D:46:9C:D6:2B:B9:68:84:2F:EE:AC:80:16:70:4A:7F:81:3F:36:70
Certificate issuer: /CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Certificate serial: 0186A6CC40D700DB879876CA3EBA23E0B095
Authority key identifier: B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/jUac1iu5aIQv7qyAFnBKf4E_NnA.roa
Signing time: Fri 03 Mar 2023 09:27:29 +0000
ROA not before: Fri 03 Mar 2023 09:27:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9123
IP address blocks: 80.90.188.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Mar 2023 16:37:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a6:cc:40:d7:00:db:87:98:76:ca:3e:ba:23:e0:b0:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Validity
Not Before: Mar 3 09:27:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d469cd62bb968842feeac8016704a7f813f3670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:9e:b6:21:1c:9b:c6:cc:88:33:e2:d8:30:05:
43:fb:11:d7:3e:59:ba:69:22:e7:b2:9f:49:1c:89:
32:f5:f2:7e:dd:51:52:b5:e9:62:d9:2e:31:01:ce:
b4:0e:bf:b6:1a:58:c1:cf:c5:d8:93:53:6c:35:7e:
65:3b:48:32:a5:e5:5c:20:60:5b:1a:f6:55:f1:db:
18:36:16:f5:20:b0:61:78:01:6a:7a:98:c4:14:52:
76:64:28:79:17:84:f3:0a:b3:6d:78:a0:93:ac:0b:
a7:64:ca:79:2b:ed:82:c2:40:9c:33:c0:33:5e:a8:
51:c8:22:1f:25:5c:45:31:f5:99:0b:bf:8c:3b:22:
0b:87:15:02:b4:32:f2:51:16:b5:c0:d2:60:0c:ca:
ac:3b:c9:1d:84:05:12:06:69:96:3e:16:2d:1f:41:
f6:89:d5:93:7e:f7:b6:bf:39:67:72:bc:0f:f8:34:
46:75:56:58:bd:7c:82:90:95:1a:24:74:63:9d:c7:
c6:a5:ff:56:36:40:9e:9a:7e:b5:4b:07:61:e0:87:
4a:dd:a9:bf:71:2a:34:4d:1b:11:a3:0a:2e:d5:bb:
c8:69:ba:60:33:20:bf:36:f7:5c:06:1d:98:12:18:
8d:aa:1f:1f:64:ff:6c:91:37:99:ca:1a:4b:f4:83:
85:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:46:9C:D6:2B:B9:68:84:2F:EE:AC:80:16:70:4A:7F:81:3F:36:70
X509v3 Authority Key Identifier:
keyid:B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/jUac1iu5aIQv7qyAFnBKf4E_NnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/ueqJNvjlMGO0s73w87FbKuZn7xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.90.188.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:29:ba:89:d3:74:7f:bc:f0:4e:6e:a8:8e:0c:7d:8d:7f:86:
df:7c:1c:bf:ed:07:39:0d:fc:23:02:1d:32:c6:d9:cc:df:92:
9d:05:cd:ca:26:3b:91:7d:6d:21:bf:7e:71:b2:83:e8:6c:8e:
fc:cb:bc:fb:95:aa:e5:77:cc:9c:a7:01:a4:64:56:b9:db:ff:
14:c4:68:7c:95:f2:46:f4:a1:9f:6a:90:99:d6:5f:68:1d:0f:
e5:8a:02:b9:c1:68:6e:78:1c:1c:05:80:a8:7b:80:f0:f8:1e:
89:46:62:00:c3:ac:7e:56:96:4e:68:d5:f1:a3:1a:ed:bd:db:
bd:0b:e3:69:d4:3b:92:2e:ec:35:24:8b:79:46:95:3b:f9:84:
f2:fa:45:37:3e:9e:e7:ab:1a:2d:6d:dc:cb:18:a1:2d:ea:4a:
2f:1b:c4:b3:45:b6:5f:0a:c5:09:40:fb:79:b0:4a:58:90:f3:
d9:58:9c:96:84:70:79:13:1d:b0:7b:92:05:32:69:de:c6:42:
b0:72:e0:2e:7d:8b:86:d9:6f:02:b0:0b:8b:79:d9:cb:5b:d6:
20:5a:0c:51:e8:4b:88:de:6a:4e:a2:2d:68:1f:23:f8:09:24:
bc:f6:ba:d7:0b:3a:07:20:6f:91:e1:78:ad:4a:88:26:6c:70:
57:cb:e3:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:15 2024 by rpki-client on console-fra.rpki-client.org