Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/ovfn6EaHLBGdJWXmO1AlB0tr0-Y.roa
File: ovfn6EaHLBGdJWXmO1AlB0tr0-Y.roa (raw, json)
Hash identifier: XBhlqAOpvmycF7rLxQBr5PmZgiXDLU4BDpSO/YE4LvE=
Subject key identifier: A2:F7:E7:E8:46:87:2C:11:9D:25:65:E6:3B:50:25:07:4B:6B:D3:E6
Certificate issuer: /CN=a2900e4655ab349a4632b140719dc97230431725
Certificate serial: 0185724C67A04B4B0F298DFFF5C6DC26292C
Authority key identifier: A2:90:0E:46:55:AB:34:9A:46:32:B1:40:71:9D:C9:72:30:43:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/opAORlWrNJpGMrFAcZ3JcjBDFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/ovfn6EaHLBGdJWXmO1AlB0tr0-Y.roa
Signing time: Mon 02 Jan 2023 11:44:47 +0000
ROA not before: Mon 02 Jan 2023 11:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51369
IP address blocks: 80.77.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:4c:67:a0:4b:4b:0f:29:8d:ff:f5:c6:dc:26:29:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2900e4655ab349a4632b140719dc97230431725
Validity
Not Before: Jan 2 11:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2f7e7e846872c119d2565e63b5025074b6bd3e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:41:55:02:0c:b2:e6:8e:be:2a:2d:1f:65:7b:
85:86:94:20:eb:43:71:8e:41:1e:4e:69:e5:33:f4:
a0:fa:63:36:1b:ce:d5:bd:18:d4:15:2f:06:f5:ba:
63:b2:47:06:20:f1:47:6f:87:04:40:bd:c9:2c:3f:
7c:2e:d8:63:9b:67:88:c7:9b:e5:1f:00:51:19:db:
38:3c:bb:0a:bf:5c:41:93:78:00:7e:07:c3:ef:43:
e2:29:74:fd:ff:93:f0:98:f2:f7:01:2a:40:58:e2:
e2:1f:0a:4b:95:55:84:76:8d:0f:db:f9:1e:34:c9:
9d:3f:da:0a:b2:4f:89:5f:c3:09:f4:fc:f6:d1:7d:
60:d5:8f:e0:9b:57:a3:51:55:33:d7:3a:41:67:a2:
86:ad:2f:f2:0b:e0:5e:6b:79:3a:b5:af:50:ee:3b:
e2:88:e8:a2:07:9c:98:d8:2f:13:60:9c:31:20:63:
57:f9:43:18:e4:53:e4:6e:53:59:bc:f0:17:0b:71:
9e:cd:0d:93:e8:c1:31:ea:2e:99:5a:51:5e:1e:b6:
7c:98:17:14:54:ed:15:29:1e:42:10:7d:ec:2d:3d:
76:ba:2e:ac:70:50:5a:ca:b2:6c:f2:0a:71:ee:54:
b8:99:c7:b2:e2:be:07:79:84:a9:b2:e2:6e:b8:1f:
b0:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:F7:E7:E8:46:87:2C:11:9D:25:65:E6:3B:50:25:07:4B:6B:D3:E6
X509v3 Authority Key Identifier:
keyid:A2:90:0E:46:55:AB:34:9A:46:32:B1:40:71:9D:C9:72:30:43:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/opAORlWrNJpGMrFAcZ3JcjBDFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/ovfn6EaHLBGdJWXmO1AlB0tr0-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/opAORlWrNJpGMrFAcZ3JcjBDFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.77.161.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:ee:f8:b0:aa:8b:65:ed:f5:8e:1f:85:bc:50:fb:9d:5c:ed:
f1:ae:81:ce:38:ea:09:da:e8:e5:05:67:68:16:d1:9a:45:8b:
23:c1:a0:31:cf:16:65:de:12:62:15:20:6d:4d:47:38:90:5e:
c4:30:38:df:a4:0b:3c:ee:65:06:4c:59:2b:24:4a:b8:4e:75:
e5:3a:f7:1c:df:98:27:de:1b:93:b5:80:a3:52:60:39:97:4b:
8a:a2:8b:d7:2f:c3:2f:ee:c9:46:a8:d0:ae:67:a4:b0:38:07:
1f:85:20:00:7b:b4:93:5e:a3:a0:94:34:2e:88:6c:ec:d8:7a:
9e:d5:b7:5a:0c:d0:9f:96:05:d1:96:74:e0:e7:59:1c:ad:b0:
80:4b:8e:10:46:b6:18:0a:8e:a0:e6:ba:c4:2f:c8:a0:7b:99:
52:27:3d:6b:df:b1:33:7b:de:a9:8b:b0:ed:6e:ee:69:8c:d6:
ae:d5:82:74:52:f8:d8:35:29:ce:26:22:fc:2b:a9:59:f6:58:
da:bb:8b:13:f0:49:2b:72:5b:21:e6:4d:79:74:6c:cb:39:b4:
66:19:2b:08:15:ee:4d:cb:95:f0:8f:c7:df:9d:4f:29:ce:0e:
e6:b0:0f:56:5d:14:f1:0a:00:2c:61:2b:1c:1d:41:24:18:7d:
00:96:4d:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:57 2024 by rpki-client on console-fra.rpki-client.org