Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/KEpuIQmcfW-cCUV5zBSKXHQ0VD0.roa
File: KEpuIQmcfW-cCUV5zBSKXHQ0VD0.roa (raw, json)
Hash identifier: nR6Pf9X72dI//E2PBwx5PNa8BPy3k+45n8iXEB/swZY=
Subject key identifier: 28:4A:6E:21:09:9C:7D:6F:9C:09:45:79:CC:14:8A:5C:74:34:54:3D
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 01914FCED1AD4F2E670FE6325E737ECB4066
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/KEpuIQmcfW-cCUV5zBSKXHQ0VD0.roa
Signing time: Wed 14 Aug 2024 07:33:59 +0000
ROA not before: Wed 14 Aug 2024 07:33:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6747
IP address blocks: 80.233.136.0/24 maxlen: 24
81.198.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Aug 2024 08:27:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4f:ce:d1:ad:4f:2e:67:0f:e6:32:5e:73:7e:cb:40:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Aug 14 07:33:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=284a6e21099c7d6f9c094579cc148a5c7434543d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:43:5a:49:1e:f8:1f:70:03:db:9e:42:66:4a:
51:19:cb:4d:c3:1f:35:8f:b9:15:8c:26:31:e5:e9:
26:3b:b3:ed:92:01:b1:29:16:5d:c3:f5:b2:8f:b5:
4e:e5:5a:f0:c8:c2:a7:f1:38:6b:80:18:0e:9c:f7:
82:3c:d3:69:62:70:2a:e6:5e:53:f2:1c:89:d2:d4:
62:5b:9d:ed:d0:93:55:9a:76:58:2e:60:48:10:30:
ca:68:39:4b:2f:7b:8b:d2:b8:ae:83:03:91:ab:42:
44:d7:bc:76:db:fa:84:2a:53:a4:fc:9b:ee:85:14:
52:f5:ee:c1:ba:d2:15:5a:46:80:19:16:50:07:39:
62:a6:c4:81:e0:80:1d:39:ac:cd:91:ec:f3:a3:b3:
87:bf:5a:c3:a5:69:15:a5:a7:e6:aa:04:61:8f:47:
8a:46:c9:00:a9:67:bb:ac:2e:94:3e:37:72:9d:9b:
b4:9a:13:8c:0b:ab:d1:a4:65:de:15:be:04:d9:28:
56:a6:e9:81:a4:6e:8b:15:6a:0d:64:a5:4e:ec:a8:
1b:4b:f2:e0:21:8f:61:a0:bf:8e:28:6c:8a:ef:6a:
3e:62:5c:a5:08:9f:0e:3b:e3:a1:24:5c:8c:17:2e:
05:c7:a7:bb:99:27:a3:36:81:1a:d2:59:d5:35:94:
df:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:4A:6E:21:09:9C:7D:6F:9C:09:45:79:CC:14:8A:5C:74:34:54:3D
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/KEpuIQmcfW-cCUV5zBSKXHQ0VD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.233.136.0/24
81.198.93.0/24
Signature Algorithm: sha256WithRSAEncryption
59:2c:7c:65:43:96:5b:0b:53:c6:9c:05:ee:84:bc:a9:5d:c8:
35:a1:5e:26:c8:d4:57:32:a6:b8:b2:61:3f:a2:91:4d:27:9e:
ab:30:7f:f0:3b:ae:77:d3:2d:fc:c9:a9:b6:d2:52:7b:e6:d4:
56:6b:d9:c8:9d:c2:6d:59:ca:f3:e0:db:af:0d:5f:8e:51:f3:
e3:fe:7d:1c:ac:28:69:a1:bd:e1:dc:4e:73:bb:8c:55:2f:9d:
28:42:85:d8:06:1d:01:4b:13:be:e6:f7:e5:a1:57:0d:7a:97:
13:f4:e3:04:50:62:ef:43:87:59:e4:ae:cd:3d:3c:ef:b3:bf:
31:4b:33:68:c4:7d:c1:cc:35:c8:4a:50:4f:79:40:05:bb:b0:
00:87:af:b8:1b:3d:0e:0e:e6:4b:1e:10:c8:75:29:c8:fe:14:
5d:c9:5b:55:4a:9e:1d:a4:cd:a9:c6:89:b3:1b:fc:9e:37:64:
a8:21:d5:11:48:14:9b:2d:ee:fd:00:73:18:32:bd:00:54:d0:
fe:1a:c4:ba:7c:b1:36:5f:c5:4d:8f:75:cd:db:eb:c1:18:51:
4e:1e:61:8b:e8:1a:ef:e9:db:3f:1c:6a:48:da:2b:24:13:94:
85:db:7a:15:a2:cd:2b:68:40:86:97:c2:58:99:3d:68:b2:f7:
ef:35:70:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 14 10:43:37 2024 by rpki-client on console-fra.rpki-client.org