Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/DqfiIXd7MxE7tT_N2m4ouN865hc.roa
File: DqfiIXd7MxE7tT_N2m4ouN865hc.roa (raw, json)
Hash identifier: BDN/JDHBQaAUcF+IA5zse3q5F+pPIZUPeS8RpPDJgEE=
Subject key identifier: 0E:A7:E2:21:77:7B:33:11:3B:B5:3F:CD:DA:6E:28:B8:DF:3A:E6:17
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 018CB0D244DD6312DD3B1FD17844EC35D4F2
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/DqfiIXd7MxE7tT_N2m4ouN865hc.roa
Signing time: Thu 28 Dec 2023 14:26:59 +0000
ROA not before: Thu 28 Dec 2023 14:26:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35108
IP address blocks: 80.233.156.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b0:d2:44:dd:63:12:dd:3b:1f:d1:78:44:ec:35:d4:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Dec 28 14:26:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ea7e221777b33113bb53fcdda6e28b8df3ae617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ca:a3:f5:61:e4:3b:1e:1b:63:e7:59:ce:ba:
a3:f9:b6:3e:f7:3a:64:74:33:f1:c0:c2:aa:e0:e1:
98:04:c1:7f:1c:b6:34:92:d6:ce:b2:aa:5e:41:31:
ff:a4:60:07:67:4c:aa:c5:be:f8:ba:05:ff:ce:38:
5b:44:be:e7:01:07:3f:5d:57:c3:2c:97:6b:5e:01:
61:de:04:ac:09:51:2d:ec:19:d7:ff:c0:8a:c6:e8:
ea:12:9b:bb:bd:41:07:6c:85:f2:c3:d9:e9:52:f7:
cd:13:d8:fc:f7:2b:aa:83:81:eb:d4:50:0f:d2:17:
5e:5f:3c:6d:e0:b1:59:eb:fb:34:50:3d:24:f5:e7:
6a:06:38:35:4d:04:cc:23:87:8b:dc:00:2d:59:84:
11:31:94:67:d6:99:cd:14:1e:f4:c8:19:37:34:ad:
3d:3d:54:45:eb:f8:2b:e5:e8:75:4e:3c:55:c0:91:
e2:e3:38:84:bf:6f:18:7a:42:c6:fb:05:ec:ca:0a:
5c:a8:77:97:44:d0:5d:c8:6f:a0:06:91:8c:72:58:
db:71:0a:06:10:5b:a0:75:f8:64:b2:ca:78:e3:de:
b4:ce:ae:13:24:15:a0:10:82:62:4f:37:35:e7:1d:
72:28:f1:2e:ec:d0:9b:98:4a:c0:f9:e4:e7:44:13:
f7:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:A7:E2:21:77:7B:33:11:3B:B5:3F:CD:DA:6E:28:B8:DF:3A:E6:17
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/DqfiIXd7MxE7tT_N2m4ouN865hc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.233.156.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:99:fd:1c:a2:da:80:b5:01:5a:8f:40:74:93:d9:fb:da:b6:
0a:fb:42:09:49:88:44:83:3a:7c:d0:55:57:0c:fc:3e:21:f2:
37:92:f7:58:2a:59:0c:35:5d:4a:9c:df:6f:f3:24:29:f3:31:
39:8a:6d:28:2f:84:79:1a:3b:a4:0f:31:19:f7:46:a7:e7:4b:
f7:42:a1:a6:89:67:7a:1a:ae:b0:c1:6c:90:b2:0c:10:d9:13:
76:4a:5a:e0:59:df:20:32:15:fb:d8:41:af:50:56:ce:47:94:
d4:d5:48:0a:84:c1:d8:e7:79:d1:35:fe:e6:36:f7:e1:3b:58:
be:a0:24:82:7a:c5:81:11:91:e7:1f:d8:20:9e:43:28:fc:a8:
b2:e6:af:6c:1f:14:e7:55:26:97:cd:07:89:39:ef:1d:68:b0:
5a:4a:a6:23:46:11:b3:ef:66:41:de:3b:45:1d:20:28:6a:b6:
3b:d7:27:bf:df:b3:f6:26:ba:8e:54:2f:5f:8d:e4:d6:2b:21:
e7:5c:b3:8d:7a:f2:02:26:d8:1b:fb:c7:96:bb:16:67:20:c7:
e7:e9:e0:6e:1e:b0:56:ab:99:fb:7d:00:30:b1:1e:18:fa:5c:
eb:d3:2f:ce:55:21:79:26:82:12:47:45:b9:42:2e:82:09:b5:
b1:b3:20:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:52:24 2024 by rpki-client on console-fra.rpki-client.org