Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/UuZp3VGZmOakdXw-oOPsbD0GGFw.roa
File: UuZp3VGZmOakdXw-oOPsbD0GGFw.roa (raw, json)
Hash identifier: bhqG9Yc58N6BJvAH0ONXJ1byjqKkoPTbVSlKuQxS0DQ=
Subject key identifier: 52:E6:69:DD:51:99:98:E6:A4:75:7C:3E:A0:E3:EC:6C:3D:06:18:5C
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01856F5DCBD4DD57A2A874D437FBBE99A045
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/UuZp3VGZmOakdXw-oOPsbD0GGFw.roa
Signing time: Sun 01 Jan 2023 22:04:56 +0000
ROA not before: Sun 01 Jan 2023 22:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49135
IP address blocks: 80.123.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:cb:d4:dd:57:a2:a8:74:d4:37:fb:be:99:a0:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jan 1 22:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52e669dd519998e6a4757c3ea0e3ec6c3d06185c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:0b:a4:af:2c:dd:e9:85:f9:7e:3b:43:25:ae:
d7:a4:22:9c:77:1e:c3:1d:85:4a:22:15:8b:44:73:
ff:19:44:da:f6:ab:cc:b7:37:5a:cd:68:55:ab:3c:
ea:9b:3c:5b:15:97:f0:27:aa:26:aa:70:0e:0b:01:
03:e3:e0:70:08:ec:80:0f:3d:34:9d:69:0d:e9:7a:
8c:46:33:60:1a:b4:a0:f1:3d:d6:b0:1e:02:6b:4c:
ed:f6:f3:de:3a:b0:c4:5c:09:79:c6:1c:1d:f9:26:
30:da:e2:9c:b8:87:e0:ef:d2:88:38:17:8a:4d:ca:
f8:d7:d3:64:68:7a:96:8a:f0:22:d5:81:f9:c3:ea:
8b:f4:e7:d9:41:f4:ad:0b:02:4b:66:7d:fa:57:4c:
c7:b8:32:7b:52:7e:63:33:37:0f:3b:1c:b9:22:b4:
2a:8d:df:69:7a:d8:cc:bc:59:bb:e9:62:d9:98:a0:
7d:2e:58:a0:bc:cd:c5:09:cb:a8:70:bd:9e:02:cc:
31:5c:98:96:58:53:59:d4:e9:63:b5:16:ed:68:59:
54:12:a8:b9:c6:4b:4f:b1:e6:29:72:eb:24:8b:49:
6d:55:ea:31:14:9d:f8:14:90:fc:14:84:17:5f:ca:
f0:62:12:40:b3:7a:cf:dc:1d:a1:27:70:94:92:58:
b5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:E6:69:DD:51:99:98:E6:A4:75:7C:3E:A0:E3:EC:6C:3D:06:18:5C
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/UuZp3VGZmOakdXw-oOPsbD0GGFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.123.153.0/24
Signature Algorithm: sha256WithRSAEncryption
59:73:49:42:ca:f2:76:be:a6:26:63:39:b4:45:8a:96:2c:05:
c6:8a:6a:b4:e6:5e:84:43:9c:bc:bb:fd:bc:64:a4:e3:28:e5:
c7:0d:19:10:13:15:bc:10:71:7d:5a:0e:ca:ba:93:a0:be:69:
e0:99:3a:7c:57:42:fa:4b:2f:f7:cc:b1:ee:a5:8e:d3:e0:4e:
9d:1e:f4:6b:89:b1:5c:3c:29:f1:44:88:0d:ec:00:59:4d:57:
0e:cc:2e:11:2d:c3:0e:d6:06:5c:5c:a2:9c:84:db:2b:28:f0:
c2:23:21:c8:6f:99:0e:8a:9f:e6:19:99:66:2a:50:19:84:fd:
22:2a:cd:af:d8:3d:c9:01:c6:2d:9e:6c:f3:8d:db:65:7d:1d:
62:68:f3:6d:ce:77:8e:61:5b:bb:d3:87:56:99:9c:0c:98:8f:
89:31:74:8f:d4:f2:8c:07:b1:5d:34:41:91:f5:92:6d:33:70:
56:f5:ea:4c:40:c5:5f:0a:c7:e7:fb:8b:07:6e:2e:2b:4b:74:
66:5f:2d:03:f2:8a:52:a2:05:3c:43:b2:ba:66:eb:cf:1b:07:
5e:78:32:34:11:f8:3e:a8:67:1e:51:48:27:c3:1a:59:98:cf:
02:a4:8e:15:00:bf:71:99:e7:f7:99:27:f5:f4:46:93:12:05:
ae:4f:93:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:38 2024 by rpki-client on console-fra.rpki-client.org