Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/ROlI2_Rfa4LOWJmFJcE1-e7PNxE.roa
File: ROlI2_Rfa4LOWJmFJcE1-e7PNxE.roa (raw, json)
Hash identifier: 2OU7ycYrtuG0tFl7yqHicc4CxgKnpO/va56QM/fE5ew=
Subject key identifier: 44:E9:48:DB:F4:5F:6B:82:CE:58:99:85:25:C1:35:F9:EE:CF:37:11
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 018E66D1A4CD4EB7FA32F36F247FD36C540A
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/ROlI2_Rfa4LOWJmFJcE1-e7PNxE.roa
Signing time: Fri 22 Mar 2024 15:39:58 +0000
ROA not before: Fri 22 Mar 2024 15:39:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 80.246.227.0/24 maxlen: 24
80.246.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 24 Mar 2024 19:24:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:66:d1:a4:cd:4e:b7:fa:32:f3:6f:24:7f:d3:6c:54:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Mar 22 15:39:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44e948dbf45f6b82ce58998525c135f9eecf3711
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:8e:41:20:94:00:14:06:7d:8e:23:5a:d8:df:
58:13:bb:2e:f3:66:42:54:53:c3:5b:16:31:8f:37:
d5:52:84:a2:38:95:b3:17:55:4d:59:27:71:5f:32:
21:0f:28:f2:44:e7:e5:74:65:92:97:01:65:f9:8f:
02:af:d6:a3:ec:e4:ab:14:4c:0b:85:17:7c:f2:b5:
e5:39:72:56:77:44:e5:fa:ab:59:ec:62:fd:66:d3:
f8:25:48:dd:ff:ad:fc:a9:66:22:15:df:af:d8:d1:
ab:c4:1f:7e:91:8f:77:ab:b9:fc:73:44:5d:11:db:
ce:d5:39:03:53:aa:a7:5d:1d:35:d6:33:06:72:3f:
c5:8c:0a:a5:35:1a:ce:56:a3:78:66:26:ad:f4:5b:
78:21:13:57:e5:0a:0c:5b:17:bc:82:df:c8:26:88:
5f:e7:94:1a:78:c6:9f:5a:cb:ff:b1:d5:65:ec:74:
8a:a4:14:87:db:c4:9c:a6:73:27:de:ac:3f:eb:74:
2e:2c:ec:11:b7:18:6c:78:e3:0c:4e:fe:8a:a6:4a:
e3:c8:a8:25:fa:8a:41:bc:00:d7:3b:bb:b5:be:13:
ed:cb:59:2a:95:5c:41:9e:07:d9:5b:78:dc:3d:37:
4a:7b:3e:75:95:d6:2f:22:4f:5a:e0:41:5c:ec:f5:
c7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:E9:48:DB:F4:5F:6B:82:CE:58:99:85:25:C1:35:F9:EE:CF:37:11
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/ROlI2_Rfa4LOWJmFJcE1-e7PNxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.246.227.0/24
80.246.230.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:c0:a1:32:1d:06:53:64:21:af:72:84:0f:3e:c5:a8:cf:4d:
1e:0b:78:d7:29:1b:be:b3:0b:d2:74:2d:0d:69:d7:db:fd:83:
4d:46:48:11:06:68:4a:a8:74:6f:4c:a5:33:44:fe:f9:16:76:
62:5c:11:cc:92:84:2a:a2:a9:58:a3:4e:0f:82:31:a2:f7:45:
d0:e7:1c:f0:3d:fc:dd:54:65:71:0d:6f:c6:dc:35:93:07:1a:
60:e1:9a:1d:ff:55:3f:aa:6a:2a:08:33:e2:95:72:37:8d:cd:
c4:ec:c0:c6:c0:b4:91:60:b5:59:eb:d2:6e:c0:c0:db:c6:3b:
da:c6:63:f7:d7:e9:3d:03:cd:67:d2:5c:c1:5f:55:3e:fc:f3:
58:ae:bd:ed:14:30:b2:a8:78:91:a3:ab:22:e7:08:9d:f7:4f:
cb:94:49:b1:de:f8:99:0d:8e:74:19:41:d7:3f:cf:f4:7d:4a:
4c:bc:f4:84:a8:0e:8c:cc:68:bb:3a:ec:8d:64:ff:70:9a:df:
8f:f6:2a:1f:f8:e0:53:dd:69:9e:9b:37:67:ba:ef:3d:eb:e1:
da:ac:98:7e:76:63:54:01:58:10:58:29:cc:1c:c0:96:bc:76:
9f:fc:3d:82:1e:aa:33:73:e9:08:08:e3:6d:28:fa:5d:ca:50:
4d:f1:83:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:52 2024 by rpki-client on console-fra.rpki-client.org