Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/pyXfm0yAM6KsyHiVHoOm-20_W3A.roa
File: pyXfm0yAM6KsyHiVHoOm-20_W3A.roa (raw, json)
Hash identifier: bM8XMT/Xw4uc5Ab+iaLrGcL/Y0gEh0ZSodDEsjex9w8=
Subject key identifier: A7:25:DF:9B:4C:80:33:A2:AC:C8:78:95:1E:83:A6:FB:6D:3F:5B:70
Certificate issuer: /CN=52a5c90ca928313bc70d2683bb0f64d632b273a1
Certificate serial: 0185C7E8C72E67A05CEBA20A35590C19669A
Authority key identifier: 52:A5:C9:0C:A9:28:31:3B:C7:0D:26:83:BB:0F:64:D6:32:B2:73:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqXJDKkoMTvHDSaDuw9k1jKyc6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/pyXfm0yAM6KsyHiVHoOm-20_W3A.roa
Signing time: Thu 19 Jan 2023 02:43:19 +0000
ROA not before: Thu 19 Jan 2023 02:43:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 80.73.120.0/21 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Feb 2023 05:04:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c7:e8:c7:2e:67:a0:5c:eb:a2:0a:35:59:0c:19:66:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a5c90ca928313bc70d2683bb0f64d632b273a1
Validity
Not Before: Jan 19 02:43:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a725df9b4c8033a2acc878951e83a6fb6d3f5b70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:05:b7:d1:17:a1:da:9d:0f:28:58:d9:65:b5:
40:7c:e5:cd:d7:ba:dd:fd:30:33:b9:4f:da:39:30:
e1:bd:d7:29:86:f0:72:7c:3e:cf:9b:98:7f:4a:9b:
48:18:92:e5:2a:e1:4b:d4:62:63:8d:57:df:9b:78:
3f:26:2a:54:89:0d:e4:21:d7:e7:d4:fd:21:b4:1a:
13:9f:fd:8c:4f:b0:e0:68:22:4d:20:08:b5:d1:17:
94:86:c2:de:c7:f1:87:b1:32:70:29:4e:f9:07:58:
1f:04:ad:83:08:de:fe:ae:ab:54:ae:32:2e:04:65:
12:03:de:53:c4:18:51:b4:c3:7d:58:12:a5:dd:e6:
2c:35:bd:9c:c7:16:65:ad:1f:25:92:87:94:c1:d1:
43:22:0f:d6:cb:59:78:75:db:c1:cb:58:53:e0:b4:
a3:e1:c8:d9:e4:77:c9:18:99:aa:5d:9a:18:c6:c4:
c1:8e:44:b0:f3:42:21:f9:67:6c:0f:be:6e:95:e4:
07:56:8e:28:c9:6a:d1:e8:d4:69:f4:5e:4b:2a:cb:
1e:49:2b:4b:62:1e:19:89:e0:3b:1d:15:2e:ae:2c:
86:48:02:99:e7:e6:f8:57:f7:27:e7:f9:e9:7c:de:
7b:0e:89:3c:2d:67:ce:80:ce:57:dd:aa:e3:4a:0e:
16:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:25:DF:9B:4C:80:33:A2:AC:C8:78:95:1E:83:A6:FB:6D:3F:5B:70
X509v3 Authority Key Identifier:
keyid:52:A5:C9:0C:A9:28:31:3B:C7:0D:26:83:BB:0F:64:D6:32:B2:73:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqXJDKkoMTvHDSaDuw9k1jKyc6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/pyXfm0yAM6KsyHiVHoOm-20_W3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/UqXJDKkoMTvHDSaDuw9k1jKyc6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.120.0/21
Signature Algorithm: sha256WithRSAEncryption
91:ab:74:75:06:13:51:bb:d0:15:87:5d:21:0f:05:53:ba:e7:
99:a7:0e:1a:9d:7d:81:b5:3b:5b:6c:c6:2b:d5:29:e4:35:f0:
24:74:65:e9:e3:53:d5:26:18:e4:30:c9:d5:db:26:24:11:d3:
ad:87:c9:cc:bc:e5:d4:de:ba:01:3e:0e:52:3d:90:d8:d2:6e:
e1:38:96:f3:0a:8b:8f:a5:46:13:36:4e:98:34:b4:c9:b1:57:
c7:b8:db:16:e3:5d:4a:a7:a8:15:06:39:36:6b:e1:cf:8c:26:
28:79:3f:6a:1f:dd:9c:8d:1c:52:90:54:e4:2a:20:0c:8e:52:
84:3e:72:87:ca:30:ab:6b:8d:a0:ee:45:22:6e:3a:fb:9b:7c:
93:0c:65:2e:22:01:97:d6:61:78:35:f3:72:99:2f:ae:42:be:
d2:03:41:5a:76:46:80:35:c5:36:3a:2e:1a:0d:ba:bb:5b:bc:
78:70:dd:cf:a8:80:ce:31:fe:80:a1:ad:a9:3f:8a:a1:9a:72:
f4:2a:c3:8a:26:b5:47:b8:0e:f7:7f:6a:5f:cc:06:2f:d8:a8:
e2:e8:e6:58:83:bf:80:1b:f3:fc:cf:04:ce:23:59:de:9a:da:
ec:c8:db:04:b7:a8:76:79:c6:69:c8:56:18:66:26:97:52:90:
4d:20:b9:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:59 2024 by rpki-client on console-ams.rpki-client.org