Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/1f74e4-dc68-4b2e-8eb1-7b8d7ee9f411/1/tBKD7a0M8lPKFN85NqReuQpgRug.roa
File: tBKD7a0M8lPKFN85NqReuQpgRug.roa (raw, json)
Hash identifier: Fr3jCrcqB+dcMi2Qdkcqwr7oWDnZjkYC2ea8EYCC1Z8=
Subject key identifier: B4:12:83:ED:AD:0C:F2:53:CA:14:DF:39:36:A4:5E:B9:0A:60:46:E8
Certificate issuer: /CN=80e6205c2a210f57fb71f27f3c4baaeb53dd5e33
Certificate serial: 01856B37C65088473A27F37A8F17AE7BF7B4
Authority key identifier: 80:E6:20:5C:2A:21:0F:57:FB:71:F2:7F:3C:4B:AA:EB:53:DD:5E:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gOYgXCohD1f7cfJ_PEuq61PdXjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/1f74e4-dc68-4b2e-8eb1-7b8d7ee9f411/1/tBKD7a0M8lPKFN85NqReuQpgRug.roa
Signing time: Sun 01 Jan 2023 02:44:55 +0000
ROA not before: Sun 01 Jan 2023 02:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8685
IP address blocks: 91.208.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:37:c6:50:88:47:3a:27:f3:7a:8f:17:ae:7b:f7:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80e6205c2a210f57fb71f27f3c4baaeb53dd5e33
Validity
Not Before: Jan 1 02:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b41283edad0cf253ca14df3936a45eb90a6046e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c6:a8:d8:52:c6:9c:9f:95:e1:0c:34:aa:16:
65:f8:ba:6c:d6:70:fc:3a:ba:ea:ec:af:5f:70:01:
7a:54:97:d2:ac:7d:61:fd:ad:49:41:2b:ef:32:42:
25:3a:9d:c7:8f:02:5a:3f:2f:13:70:d1:ad:3e:c5:
7d:98:29:93:84:9c:e0:ce:a9:71:b8:a3:aa:54:f7:
16:49:b5:06:40:30:a9:ed:9c:23:be:1a:1a:c0:7b:
62:e9:6f:19:ce:7d:70:7b:ce:70:50:85:d2:88:59:
0d:82:d4:d9:8a:c2:65:b3:38:86:a1:b5:76:57:d1:
b7:e1:36:81:2d:93:53:8e:1b:46:37:d2:38:4b:38:
ae:f4:ea:2a:9e:8f:60:32:f1:c0:0e:81:5d:53:3e:
ce:e5:39:bf:3b:34:85:6b:4f:4a:9d:98:d9:dc:96:
51:66:c1:49:c5:68:41:12:80:03:15:03:8f:ae:90:
8e:3a:ca:51:34:a7:99:dd:19:ad:27:88:7f:91:53:
a4:e8:b3:b7:96:5b:5a:17:9f:d8:51:ba:c8:76:01:
94:1d:06:cd:c9:8d:39:33:cc:41:ed:4a:cd:c5:e2:
6e:99:74:cd:f7:e4:6d:89:ad:bf:01:41:41:42:b1:
41:a5:31:14:7f:fe:90:cf:9e:45:d0:ff:82:60:d9:
98:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:12:83:ED:AD:0C:F2:53:CA:14:DF:39:36:A4:5E:B9:0A:60:46:E8
X509v3 Authority Key Identifier:
keyid:80:E6:20:5C:2A:21:0F:57:FB:71:F2:7F:3C:4B:AA:EB:53:DD:5E:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gOYgXCohD1f7cfJ_PEuq61PdXjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1f74e4-dc68-4b2e-8eb1-7b8d7ee9f411/1/tBKD7a0M8lPKFN85NqReuQpgRug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1f74e4-dc68-4b2e-8eb1-7b8d7ee9f411/1/gOYgXCohD1f7cfJ_PEuq61PdXjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.70.0/24
Signature Algorithm: sha256WithRSAEncryption
80:3a:78:0c:47:51:71:d5:30:c7:32:ea:5f:69:35:11:5b:e7:
c2:84:bb:ac:f8:dc:5f:a8:cd:2a:33:23:d5:0f:6e:aa:2a:5a:
3c:19:2b:1c:eb:f8:94:60:da:bc:ba:5e:4a:fe:e3:e4:a7:cc:
b6:73:78:11:9e:a6:89:71:81:b5:0b:3d:89:76:5f:a7:79:e9:
17:a3:f2:c3:dc:75:2f:7c:3a:de:fe:6d:6e:46:ed:93:e8:10:
e4:19:50:4c:80:38:62:6e:c5:de:3b:17:20:dc:c9:d5:ea:ae:
08:39:a8:d4:cd:cb:02:7c:18:db:c3:ef:5d:dc:02:fa:0e:cd:
0e:5e:fd:79:fc:44:e2:a3:d7:29:53:2d:0f:30:cc:d7:0c:09:
f1:c1:44:c2:af:03:18:e8:6e:29:57:c5:50:3a:bd:14:63:d7:
13:13:33:bd:30:a9:28:d6:09:e8:13:10:df:af:f8:aa:d2:23:
46:62:0d:dd:13:7a:8e:61:f5:79:b9:31:f6:96:50:69:92:b2:
15:5f:47:c6:e5:7f:17:7a:7c:de:d3:26:43:ad:71:2a:97:03:
aa:4b:b3:be:fb:b7:9e:d7:cb:0f:cd:a1:29:20:49:a1:e1:db:
71:42:d9:ed:05:2b:ca:13:2a:26:91:7a:cf:3f:54:6e:65:86:
8c:f8:8e:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:13 2024 by rpki-client on console-fra.rpki-client.org