Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/hYtE3TTtSBid0z51rdXi4N4zU7M.roa
File: hYtE3TTtSBid0z51rdXi4N4zU7M.roa (raw, json)
Hash identifier: rZbJkdrmRfHu1bK5GOGKdnjD4eCJxi4RL5oQ/jIIm1Y=
Subject key identifier: 85:8B:44:DD:34:ED:48:18:9D:D3:3E:75:AD:D5:E2:E0:DE:33:53:B3
Certificate issuer: /CN=57b80e60b5adf45aeba5c0c8abccc63997a0f1db
Certificate serial: 01856B935FD5396904EDAE6855EF8FF23BEB
Authority key identifier: 57:B8:0E:60:B5:AD:F4:5A:EB:A5:C0:C8:AB:CC:C6:39:97:A0:F1:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V7gOYLWt9FrrpcDIq8zGOZeg8ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/hYtE3TTtSBid0z51rdXi4N4zU7M.roa
Signing time: Sun 01 Jan 2023 04:24:58 +0000
ROA not before: Sun 01 Jan 2023 04:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34306
IP address blocks: 78.108.224.0/20 maxlen: 20
80.69.208.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:93:5f:d5:39:69:04:ed:ae:68:55:ef:8f:f2:3b:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57b80e60b5adf45aeba5c0c8abccc63997a0f1db
Validity
Not Before: Jan 1 04:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=858b44dd34ed48189dd33e75add5e2e0de3353b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:98:16:7e:69:3c:e5:d3:2e:30:a6:76:f0:fd:
6a:7f:da:7a:9b:1d:54:c4:a6:c0:c0:ce:99:5d:55:
63:7f:56:9c:c7:af:28:d3:e5:1d:ab:07:28:71:fd:
29:a9:13:07:c2:29:bc:cd:f6:e7:d5:98:21:58:36:
69:30:0c:14:c6:2d:fb:a0:c1:f8:50:be:2f:a4:30:
ef:71:6f:eb:b3:40:ec:0d:2f:b0:05:8c:11:6d:bd:
7d:fa:19:f2:40:03:19:f0:3b:67:7d:47:e4:15:83:
92:bf:de:80:f2:95:29:99:67:48:a4:8d:f8:c5:72:
ce:86:21:07:9d:fa:a1:b7:1d:f8:7b:0d:32:96:5f:
dc:84:bc:25:25:77:6d:65:9a:9c:db:07:03:93:6d:
70:09:43:7b:de:d3:e6:45:79:27:9d:bb:28:7e:2b:
56:bf:2c:22:67:df:a5:c4:6d:0c:54:7a:ba:80:c0:
2e:7c:f8:86:6d:41:04:a9:c9:93:f3:a6:d4:b3:34:
1f:9b:64:62:7b:67:cc:fc:ec:f7:35:61:c1:a5:ac:
3d:ef:50:f0:ee:1f:4f:46:7c:e6:e1:7c:8c:6d:96:
39:8d:1f:f2:a6:7d:e8:a3:45:e4:ed:47:7a:92:81:
87:1f:70:b4:93:23:d0:55:ae:4f:25:15:6c:9e:31:
75:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:8B:44:DD:34:ED:48:18:9D:D3:3E:75:AD:D5:E2:E0:DE:33:53:B3
X509v3 Authority Key Identifier:
keyid:57:B8:0E:60:B5:AD:F4:5A:EB:A5:C0:C8:AB:CC:C6:39:97:A0:F1:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V7gOYLWt9FrrpcDIq8zGOZeg8ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/hYtE3TTtSBid0z51rdXi4N4zU7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/V7gOYLWt9FrrpcDIq8zGOZeg8ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.108.224.0/20
80.69.208.0/20
Signature Algorithm: sha256WithRSAEncryption
02:0c:9f:45:92:cd:d2:5e:58:d6:fb:2c:e5:95:ab:6a:05:74:
3b:10:99:c9:8a:8c:61:a6:19:ef:a1:67:e4:8f:d8:e0:fc:c7:
73:54:3d:01:24:a9:9d:35:e7:ea:6a:9a:1b:b1:0a:c6:bf:d9:
65:24:92:10:b1:6f:8f:a6:45:75:c9:00:e6:57:b6:3c:f2:7f:
8f:8a:a8:d7:12:c7:71:e3:99:79:04:88:8f:0c:d9:8f:28:0d:
d8:55:bf:1c:cc:45:1d:e2:af:99:dd:90:8b:06:82:cc:10:88:
05:d3:8d:a4:b8:e0:c0:06:45:74:2f:a6:0c:b7:31:1f:30:9f:
5f:b8:05:4f:57:ad:ae:7e:0c:a3:5e:c3:16:ec:de:6c:e3:8a:
85:91:88:f4:58:c2:00:6d:ac:08:03:74:7f:ae:67:13:e8:7f:
83:16:df:6f:cf:40:ff:65:f8:56:8f:c6:e0:80:c3:60:f9:85:
bd:74:0a:90:fc:1b:65:96:c3:ce:02:47:63:59:e6:66:7a:d2:
fd:0b:37:4c:bf:ac:5f:91:cb:06:5b:6f:de:dd:45:59:8c:1a:
75:20:06:c5:31:3b:a4:d9:6b:8a:d3:2e:7b:5c:0d:bf:2b:3c:
da:8f:97:75:e4:9f:4a:3e:69:f6:77:73:ea:bc:20:88:e2:a5:
54:ed:29:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:36 2024 by rpki-client on console-fra.rpki-client.org