Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/kO5OIahEVEkiVZNaRsq1TYLvUa4.roa
File: kO5OIahEVEkiVZNaRsq1TYLvUa4.roa (raw, json)
Hash identifier: PIbulYeQ9mepqOZA+3L3WpxeZi07xNWJvDT2by+Bzyg=
Subject key identifier: 90:EE:4E:21:A8:44:54:49:22:55:93:5A:46:CA:B5:4D:82:EF:51:AE
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 01856C813A4E9E4D0F29BDF690736C7844DC
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/kO5OIahEVEkiVZNaRsq1TYLvUa4.roa
Signing time: Sun 01 Jan 2023 08:44:46 +0000
ROA not before: Sun 01 Jan 2023 08:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 80.246.226.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:81:3a:4e:9e:4d:0f:29:bd:f6:90:73:6c:78:44:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Jan 1 08:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90ee4e21a84454492255935a46cab54d82ef51ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a6:ad:0e:f1:75:1f:ca:24:f3:ea:ef:5c:2d:
ab:44:56:80:ba:50:ff:33:c2:8f:35:c6:53:96:0a:
fc:48:5a:5f:e3:b0:70:e2:46:d9:1d:f4:d0:dc:aa:
ee:98:53:16:7f:4e:1c:24:4c:13:4b:eb:dd:84:2c:
b8:0d:15:06:a1:40:97:7e:52:68:0d:3d:a4:54:a7:
ec:c4:3f:be:87:42:8d:b7:95:cd:a6:6f:71:03:5c:
c4:e0:11:9f:53:39:9f:09:71:81:85:5f:b2:f4:dc:
10:7f:89:16:a9:1e:77:b6:df:3b:2e:33:2d:45:ee:
04:bb:e1:1b:9a:0e:cb:c2:58:bc:26:b1:3d:70:9f:
c7:59:6e:02:6b:17:74:98:c9:71:41:22:8e:2c:24:
14:80:cf:2c:5c:a7:f2:09:1f:25:1c:02:0d:03:f3:
38:33:93:8e:2f:d2:11:f8:f9:40:0e:0e:5d:63:94:
2f:2c:4f:23:6c:c1:ae:6f:5d:3f:8c:71:ec:af:a6:
2c:44:03:fb:6b:f1:66:4a:a9:41:a1:7f:62:9c:0b:
35:13:e1:a8:d7:b6:57:5b:39:93:ba:52:85:93:d6:
13:e4:4a:ea:c4:cf:96:ba:2c:27:7b:d4:85:6f:8b:
47:a8:47:4c:e1:e0:e4:08:e4:6e:a9:94:b2:71:c7:
08:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:EE:4E:21:A8:44:54:49:22:55:93:5A:46:CA:B5:4D:82:EF:51:AE
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/kO5OIahEVEkiVZNaRsq1TYLvUa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.246.226.0/23
Signature Algorithm: sha256WithRSAEncryption
93:ef:22:22:1e:1d:9d:90:2b:7d:5e:3d:2a:fb:96:3e:fb:89:
ee:d6:68:83:d1:81:cd:b9:f9:45:ff:52:78:97:ca:3b:22:bb:
72:b1:1e:22:0f:5c:de:aa:b3:fc:35:5a:35:96:e2:e4:a1:45:
d9:e0:db:b9:b4:b9:42:ce:ab:b2:45:fc:7e:db:12:e4:e7:60:
f5:e0:41:d0:cf:5e:90:2d:fb:29:9b:c3:e9:17:b7:f4:ba:7d:
41:b7:3d:79:97:2c:6d:c9:21:4f:5a:a8:ea:53:11:a3:b8:90:
9e:96:5a:31:84:aa:27:d5:64:b1:dd:f3:cd:2d:b9:be:f0:95:
98:56:1c:bc:04:a0:47:b4:13:4e:80:d6:fd:4a:dc:ce:11:05:
58:d3:a7:a1:36:69:da:1f:ff:00:8f:06:af:37:ad:ea:6b:94:
c5:6f:25:83:b5:41:81:e9:9f:b2:67:b8:29:8e:a1:65:19:1b:
ad:65:ee:49:11:1c:72:d6:a4:fe:de:36:48:fb:79:87:60:dc:
36:ea:59:71:d0:3a:5b:63:bc:0e:5f:20:61:ed:46:f8:dc:36:
2b:8a:48:c3:b0:8f:2c:3f:3b:ce:fb:68:ae:1a:14:77:4a:97:
de:4c:b1:20:35:98:d7:ea:83:31:b8:27:7d:39:59:56:9f:b9:
bc:88:ed:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:17 2024 by rpki-client on console-fra.rpki-client.org