Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/aKRT0RSMS9c7yj5hkyAniaofEwM.roa
File: aKRT0RSMS9c7yj5hkyAniaofEwM.roa (raw, json)
Hash identifier: InvS/qTYr9MCqmuvVDI06jtucOE9IHbl//NAXLcIksI=
Subject key identifier: 68:A4:53:D1:14:8C:4B:D7:3B:CA:3E:61:93:20:27:89:AA:1F:13:03
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 01883070BB1112B5291EA121647B7CC31045
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/aKRT0RSMS9c7yj5hkyAniaofEwM.roa
Signing time: Thu 18 May 2023 19:57:54 +0000
ROA not before: Thu 18 May 2023 19:57:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 80.246.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 May 2023 12:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:30:70:bb:11:12:b5:29:1e:a1:21:64:7b:7c:c3:10:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: May 18 19:57:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68a453d1148c4bd73bca3e6193202789aa1f1303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:52:1b:39:ae:cf:33:78:3c:83:d0:ad:75:34:
b7:b9:0a:e1:90:8d:eb:75:54:99:69:2c:5e:c4:7f:
8f:2b:2e:d4:e5:a5:4d:e3:4c:ad:b7:c1:cc:49:2f:
97:d7:8c:60:5d:49:f6:95:3c:a8:32:4d:27:a2:6b:
75:fb:fc:eb:d2:fb:f4:27:b8:b5:54:e0:d4:8e:eb:
72:84:b3:e1:2d:21:be:83:13:5d:f7:19:02:cf:81:
74:d4:ce:d1:7f:c0:ec:5d:84:95:c8:72:54:cd:90:
c6:2d:6c:93:07:cf:70:12:91:b6:4c:8f:06:f3:14:
e4:2a:7e:ec:9f:cf:27:f1:fb:20:8f:ff:fd:d0:e5:
08:23:f0:e2:7a:5b:cc:5e:64:47:bc:a9:13:87:1a:
2b:d0:78:84:74:c7:6e:34:99:44:4f:98:3e:1e:7e:
fa:d1:7a:3d:98:b8:be:2b:a1:7d:a5:9b:24:a2:06:
91:6e:61:09:ed:71:61:c3:b8:4b:13:a7:9e:52:38:
1b:33:1f:aa:22:92:71:9a:7e:df:84:4d:fc:4d:1d:
53:56:0b:0d:33:7c:35:51:72:67:26:16:a3:3c:01:
73:88:fe:83:45:84:3d:a8:e1:77:45:6c:3d:8d:1d:
27:1f:7b:0e:f0:24:55:57:11:44:4f:a9:ca:b7:b3:
00:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:A4:53:D1:14:8C:4B:D7:3B:CA:3E:61:93:20:27:89:AA:1F:13:03
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/aKRT0RSMS9c7yj5hkyAniaofEwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.246.232.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:9b:a7:4e:f0:85:8e:98:90:d5:d2:15:0e:c7:57:a9:ee:6a:
53:d7:3e:f7:43:8c:5c:90:a8:85:39:81:fe:42:0e:e7:e8:ad:
4a:4a:cf:6e:41:b7:3a:ed:c8:ed:0d:58:a7:0c:c3:21:9f:e7:
37:6b:e5:5c:91:d5:4d:95:1a:2a:f1:6a:b8:36:21:c3:1a:f0:
87:07:53:cf:d3:78:4d:8f:8f:94:86:0d:d9:38:8b:a2:b9:7d:
b1:65:43:0b:60:93:55:b9:1b:1a:42:40:ed:e9:05:75:03:11:
a8:e0:b7:ec:c5:c1:49:8c:29:b5:ea:eb:99:46:18:b9:0b:5b:
20:9d:e4:3c:21:83:9e:29:83:9a:47:93:cc:fe:8c:61:42:67:
b3:b8:a4:2d:0d:c1:bf:64:d8:7f:03:cc:10:31:c8:66:bb:23:
48:8c:d9:ae:1e:ce:17:50:59:72:66:89:e3:8d:b8:e2:8b:a1:
6d:12:cf:cb:59:3e:86:e5:f3:5b:d2:ed:eb:10:04:3f:e1:44:
32:b2:ee:5a:86:94:ce:49:32:24:6b:83:a5:2f:ac:5d:cf:dc:
86:1c:bc:55:72:df:db:74:6f:e6:45:73:60:44:ff:b4:0c:98:
8c:41:8d:ef:f7:5c:08:fd:78:b4:58:6c:58:e6:8f:80:42:66:
0c:55:86:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:31 2024 by rpki-client on console-ams.rpki-client.org