Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/d-IA5e3YH6wwSEh4Tqus1riP2qQ.roa
File: d-IA5e3YH6wwSEh4Tqus1riP2qQ.roa (raw, json)
Hash identifier: sO9KuLEZcMkN1kC5PyjZ415zFx05MHGnr2f90iBTMME=
Subject key identifier: 77:E2:00:E5:ED:D8:1F:AC:30:48:48:78:4E:AB:AC:D6:B8:8F:DA:A4
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 019140680624B5EB5EA1341FB1329CF30B93
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/d-IA5e3YH6wwSEh4Tqus1riP2qQ.roa
Signing time: Sun 11 Aug 2024 07:47:24 +0000
ROA not before: Sun 11 Aug 2024 07:47:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 80.246.230.0/24 maxlen: 24
80.246.232.0/21 maxlen: 24
Validation: Failed, certificate revoked on Sun 18 Aug 2024 22:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:40:68:06:24:b5:eb:5e:a1:34:1f:b1:32:9c:f3:0b:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Aug 11 07:47:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=77e200e5edd81fac304848784eabacd6b88fdaa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:0f:90:76:42:13:e1:69:03:db:ec:10:8f:9a:
3f:38:bd:b0:2e:c4:20:45:5b:8e:ee:6a:4f:a2:92:
65:8e:83:96:cb:6c:30:c8:67:73:ff:53:47:77:8e:
d4:0c:e8:a4:74:14:fb:f4:8b:fc:30:ac:43:e2:bb:
03:15:64:86:a2:92:36:1d:91:3b:55:a6:ea:2e:a6:
9b:85:a3:df:4f:b8:90:0c:e5:bb:16:8e:cc:5b:27:
5f:09:31:ae:ed:9f:be:32:e2:cc:f2:09:10:c7:d1:
22:4f:09:78:94:9c:0c:46:b6:be:5c:8f:1d:c7:24:
3b:82:07:ef:2d:27:6c:a1:c3:eb:9e:36:20:b8:20:
10:49:35:4c:d4:ff:60:d2:23:98:fb:92:6d:3f:df:
d3:bd:c8:5e:67:a1:b6:47:70:b5:2d:49:72:57:3a:
a9:90:eb:c0:16:e1:20:6c:24:76:cb:05:a0:c0:76:
8f:4a:94:42:c0:6a:4f:bc:7a:92:52:fe:bf:45:98:
68:c1:78:ff:39:ce:08:6f:9b:b9:2b:34:47:ab:b7:
19:ba:bc:59:12:84:13:89:2a:b4:c9:24:92:01:9d:
8f:49:11:d8:6a:ed:b7:9a:2f:0f:dc:99:69:7e:9c:
be:5d:cf:6a:5e:68:a3:83:7b:5f:1f:e7:e2:c3:82:
d1:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:E2:00:E5:ED:D8:1F:AC:30:48:48:78:4E:AB:AC:D6:B8:8F:DA:A4
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/d-IA5e3YH6wwSEh4Tqus1riP2qQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.246.230.0/24
80.246.232.0/21
Signature Algorithm: sha256WithRSAEncryption
62:86:5d:b1:8a:06:5e:84:b8:cd:be:9a:a7:fe:9d:d1:e0:d9:
0e:cc:f6:25:42:3c:a6:54:93:f9:98:e5:fb:f2:75:19:68:68:
4c:22:27:0f:1e:e5:29:16:18:f3:4f:b1:7a:26:47:c9:ae:6e:
0e:86:6c:88:a2:53:d7:49:c9:e9:45:98:a7:54:69:d7:75:62:
ff:fc:2f:6f:04:8a:35:4b:d9:21:4d:2c:2a:ce:7b:e2:41:e1:
3f:61:47:62:2d:b6:d8:c4:46:41:de:a9:d9:9d:6d:86:98:d1:
19:89:fd:33:99:55:ef:89:8e:d2:0f:68:22:ea:bc:5f:da:01:
b7:4e:bf:aa:69:4f:c1:53:06:6c:d9:ad:c3:cb:48:51:81:f4:
46:b6:be:8a:91:26:0c:87:30:e8:b4:8d:a9:6f:83:97:9c:85:
d8:a0:b8:0e:73:30:3a:5e:d8:8e:97:f9:70:dd:1e:7a:86:04:
b9:a9:ab:c7:1d:61:04:f2:e7:d2:90:5e:68:6e:fd:2b:19:83:
35:8a:11:5a:a4:ae:2c:af:dc:e8:e7:ac:c4:60:15:cd:8f:b2:
80:63:0b:da:6f:16:11:aa:8d:02:1b:e9:e9:a0:4d:f6:cd:7e:
21:57:dc:a7:46:32:61:c1:91:5b:c2:c5:de:fd:84:62:84:d6:
2a:28:37:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 18 23:39:35 2024 by rpki-client on console-ams.rpki-client.org