Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/9aMQX2AF7aF2zNWxpJgfb6Ob1ac.roa
File: 9aMQX2AF7aF2zNWxpJgfb6Ob1ac.roa (raw, json)
Hash identifier: 5SkOCGDctY1jrR8BPqFZa+t02z5HFWbgebxT0yUm/1s=
Subject key identifier: F5:A3:10:5F:60:05:ED:A1:76:CC:D5:B1:A4:98:1F:6F:A3:9B:D5:A7
Certificate issuer: /CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Certificate serial: 01856FCB932B7C389E53BB7772AAA993CC8C
Authority key identifier: EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/9aMQX2AF7aF2zNWxpJgfb6Ob1ac.roa
Signing time: Mon 02 Jan 2023 00:04:50 +0000
ROA not before: Mon 02 Jan 2023 00:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209172
IP address blocks: 80.95.20.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:93:2b:7c:38:9e:53:bb:77:72:aa:a9:93:cc:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Validity
Not Before: Jan 2 00:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5a3105f6005eda176ccd5b1a4981f6fa39bd5a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:11:9f:dc:d7:80:d8:06:3f:6b:ac:93:1e:e4:
4f:ea:94:19:4b:86:1f:1b:5c:54:36:86:74:b9:9d:
b2:10:54:19:9b:61:72:7c:2b:68:5d:55:44:53:b1:
06:e2:8b:49:21:43:5d:2c:54:e5:8e:68:63:49:6e:
8b:07:a9:f0:1c:d7:77:f9:f6:10:a3:40:b0:21:3e:
1c:1f:d1:db:a8:91:05:7d:19:4b:56:00:c2:55:86:
35:5d:4d:b2:38:48:32:78:88:5e:48:e2:b6:f5:f0:
d1:16:a1:d0:79:c5:12:06:5c:a8:b9:ac:f9:ea:96:
26:93:1e:48:c4:79:22:af:c7:aa:72:37:2c:e9:b3:
ac:0c:5e:19:b0:4a:c8:08:76:3e:15:e8:ed:0b:bc:
42:56:f9:e1:1d:ec:45:b6:6f:88:50:ce:90:b5:2c:
78:5b:68:5d:fe:16:3a:c7:f1:93:eb:04:88:32:de:
54:34:9e:dc:6c:57:e8:72:55:a1:9c:cd:3a:a0:15:
b1:43:64:36:e6:2b:3b:b1:f6:c5:19:5f:f5:18:92:
72:65:16:5c:3f:60:05:39:c4:45:1d:90:34:29:a4:
d8:6c:0f:42:83:f8:69:37:a9:e2:8f:45:7b:4e:c1:
ff:45:4c:88:dc:59:5e:e5:89:d3:aa:13:d0:49:ab:
08:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:A3:10:5F:60:05:ED:A1:76:CC:D5:B1:A4:98:1F:6F:A3:9B:D5:A7
X509v3 Authority Key Identifier:
keyid:EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/9aMQX2AF7aF2zNWxpJgfb6Ob1ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.95.20.0/24
Signature Algorithm: sha256WithRSAEncryption
37:4a:67:85:32:33:1b:0f:dc:cc:c9:84:4b:be:27:a8:f0:be:
79:01:b8:b0:b5:27:2f:de:09:97:a6:10:59:b9:8c:fc:49:c5:
56:a6:db:95:c2:86:e7:41:63:3f:02:8b:01:01:b5:11:48:55:
f3:4b:20:23:1e:39:7b:c4:09:c4:4e:ea:5d:2a:9d:d0:7c:c9:
a5:d7:80:a4:a8:cb:a4:61:c7:98:20:2a:da:d2:c7:a1:64:30:
91:4d:bb:41:cc:90:2c:d8:df:66:61:ae:e5:c1:3e:7a:6f:15:
07:f3:a4:82:1a:55:5b:0d:97:d4:c8:e5:53:ad:ba:00:16:c7:
43:71:0e:2c:f1:40:be:10:dc:e8:e4:f9:93:8f:69:d2:5d:49:
21:4c:f8:0f:59:8b:fe:7e:de:d6:65:28:40:9e:82:89:50:80:
f7:1a:66:98:f9:c6:b5:75:e7:da:13:05:23:d2:d3:48:ad:c7:
e1:8b:57:f5:69:02:b0:fa:4b:32:87:0f:61:94:64:46:7d:28:
64:28:25:1b:94:72:39:ad:7f:b1:7b:dc:0a:1a:1d:ca:24:6d:
f5:38:ac:a1:62:81:b3:28:92:ae:54:d5:1e:16:d9:8e:98:71:
4f:98:36:2d:55:98:57:8a:69:00:d9:bd:79:fd:e9:ff:15:0b:
e1:eb:c9:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:29 2024 by rpki-client on console-fra.rpki-client.org