Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/s-xSNISxb1-u2oy-e47U4suZERA.roa
File: s-xSNISxb1-u2oy-e47U4suZERA.roa (raw, json)
Hash identifier: nTfN4As0P7dPSGvJ488NOGOy6jTHk4RI7/limmmpHR0=
Subject key identifier: B3:EC:52:34:84:B1:6F:5F:AE:DA:8C:BE:7B:8E:D4:E2:CB:99:11:10
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 018DF0EA5FC2B734A90B7A33895EE8B7039E
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/s-xSNISxb1-u2oy-e47U4suZERA.roa
Signing time: Wed 28 Feb 2024 18:11:48 +0000
ROA not before: Wed 28 Feb 2024 18:11:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59711
IP address blocks: 80.246.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 20:44:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f0:ea:5f:c2:b7:34:a9:0b:7a:33:89:5e:e8:b7:03:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Feb 28 18:11:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b3ec523484b16f5faeda8cbe7b8ed4e2cb991110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:50:3e:a2:5e:61:ff:c7:8e:d8:bb:26:e6:e2:
b8:86:e7:ab:47:d6:94:7c:53:56:15:df:73:4d:78:
03:61:64:b3:8e:e9:de:fb:62:a7:9d:a2:be:7c:e0:
0c:1b:3c:43:63:b7:ab:40:33:e4:d1:b5:80:45:63:
42:7a:86:3b:58:f6:2b:8a:cf:6b:93:f8:18:6b:2d:
08:9f:40:55:87:1e:37:c9:75:17:a2:d5:e3:dd:94:
ff:d3:b5:c2:ec:a3:9f:1a:a9:4f:39:c0:2f:5d:1a:
6c:d2:3d:4e:2b:9c:bd:3f:17:1b:f0:bc:99:aa:51:
e2:32:27:f2:e9:95:1a:e2:a1:f9:8f:55:f6:a7:c7:
c5:5c:ca:c1:8f:09:69:eb:e1:6a:2a:71:57:62:b9:
a0:b5:f8:2c:b4:3a:69:64:e4:3d:28:91:00:7b:e8:
71:b6:0b:0d:b0:34:2e:b5:50:39:8f:99:c0:08:8b:
02:7d:80:2c:a5:10:2e:6a:b8:e9:67:ce:44:4c:b1:
cd:d5:10:e6:5b:3c:c5:35:d7:e9:0c:42:0d:dc:c7:
8c:5c:26:eb:8f:e3:cb:63:3d:7b:31:9b:8b:77:ed:
26:41:e8:da:7a:d0:ae:4b:ec:dd:92:01:b3:73:61:
73:34:08:9e:8b:a7:ff:ff:50:a4:13:02:cc:b3:f9:
ea:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:EC:52:34:84:B1:6F:5F:AE:DA:8C:BE:7B:8E:D4:E2:CB:99:11:10
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/s-xSNISxb1-u2oy-e47U4suZERA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.246.226.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:32:4d:c0:26:49:03:88:dd:86:12:41:96:b3:af:48:f8:a3:
cf:c3:83:63:19:7a:1f:73:44:bc:28:5e:b7:62:2b:c6:fa:60:
99:b2:a7:cc:e2:63:0e:fd:b3:43:af:27:59:12:61:b3:c7:1a:
e4:16:be:02:fd:52:47:7e:a8:e7:0a:28:65:e9:1d:2f:9d:89:
59:87:72:0c:34:14:e9:08:f3:f2:42:f1:a4:c4:83:8b:dd:b9:
72:fe:95:46:60:69:2b:d8:2e:1d:a2:c1:e2:6c:3c:23:fe:69:
f1:5a:75:42:68:ff:04:34:02:af:46:73:94:ba:8b:ef:d7:40:
96:90:61:94:be:bc:b1:41:bd:72:9a:ea:76:48:0a:5b:84:8c:
0b:ae:cf:1e:35:a0:19:b1:20:d6:5e:ed:84:88:8b:f2:8e:98:
da:4a:fe:b6:77:bf:01:34:25:4e:3d:be:3c:72:47:5b:c3:aa:
17:8a:47:35:c9:08:b1:23:94:af:07:b7:6d:81:2f:5e:d0:9e:
cd:de:f1:c7:ee:ed:35:87:d9:05:bc:8d:58:e6:0e:3f:10:d6:
5a:e4:11:3e:11:c5:33:1a:ae:3e:69:22:d2:8a:3b:51:9f:ef:
09:3a:8f:88:78:fc:45:df:20:5d:ee:ed:5d:0e:02:e3:b8:64:
f1:c0:89:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 27 01:09:42 2024 by rpki-client on console-ams.rpki-client.org