Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/CA44hbXyNWyE_1PvDhMrLNhqpYI.roa
File: CA44hbXyNWyE_1PvDhMrLNhqpYI.roa (raw, json)
Hash identifier: o3HeFIAb+uzqE6Os0RDhdFM1kyhxS8drAHY/oHTr1ug=
Subject key identifier: 08:0E:38:85:B5:F2:35:6C:84:FF:53:EF:0E:13:2B:2C:D8:6A:A5:82
Certificate issuer: /CN=56c8a1713c7476e00ed2b77fd98fd89330365d87
Certificate serial: 01856FE70E83C1C594F76B24D53AAA9CF57E
Authority key identifier: 56:C8:A1:71:3C:74:76:E0:0E:D2:B7:7F:D9:8F:D8:93:30:36:5D:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VsihcTx0duAO0rd_2Y_YkzA2XYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/CA44hbXyNWyE_1PvDhMrLNhqpYI.roa
Signing time: Mon 02 Jan 2023 00:34:51 +0000
ROA not before: Mon 02 Jan 2023 00:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41870
IP address blocks: 88.80.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:0e:83:c1:c5:94:f7:6b:24:d5:3a:aa:9c:f5:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56c8a1713c7476e00ed2b77fd98fd89330365d87
Validity
Not Before: Jan 2 00:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=080e3885b5f2356c84ff53ef0e132b2cd86aa582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e0:b6:4a:4c:2f:75:d3:24:a7:00:2d:8d:01:
9a:2d:9e:12:f7:da:e4:9e:12:eb:59:12:fd:18:b7:
ac:74:62:f7:29:16:b1:f1:ef:00:51:26:94:a2:bd:
df:78:8a:31:67:7b:e3:7d:32:58:47:ad:a3:0d:4c:
e2:6b:56:00:12:e3:4e:59:f6:26:55:d7:88:c9:6d:
fa:36:0e:48:80:9e:36:3b:18:64:56:05:ca:fb:ac:
18:30:f8:bf:3c:94:6c:e7:0c:3b:dd:1c:08:b0:fd:
65:35:b3:e5:e2:e7:cd:90:e3:a1:d5:ca:d4:c4:e7:
84:66:04:81:a7:e5:c9:f3:54:67:60:02:9d:9a:24:
b7:76:d1:9b:2a:6b:31:07:2b:6e:87:0c:50:9a:36:
4a:b0:6a:70:5a:e0:ec:e5:3b:72:fc:7b:7c:4d:27:
09:b5:c3:0a:3d:9b:49:42:c6:f3:40:ce:7d:be:e2:
eb:83:6c:b2:e0:26:10:34:17:45:3b:b4:a9:0b:89:
d4:d3:4b:17:92:e7:5d:11:d5:cd:c2:2f:4a:a5:9e:
e5:40:aa:cd:9c:39:b6:56:7a:c2:4f:6e:a9:27:eb:
94:ab:ea:8b:7e:cc:c6:eb:d7:16:63:6c:11:22:6e:
f0:23:a0:22:f0:69:c4:56:e7:07:88:fa:12:73:83:
58:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:0E:38:85:B5:F2:35:6C:84:FF:53:EF:0E:13:2B:2C:D8:6A:A5:82
X509v3 Authority Key Identifier:
keyid:56:C8:A1:71:3C:74:76:E0:0E:D2:B7:7F:D9:8F:D8:93:30:36:5D:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VsihcTx0duAO0rd_2Y_YkzA2XYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/CA44hbXyNWyE_1PvDhMrLNhqpYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/VsihcTx0duAO0rd_2Y_YkzA2XYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.80.150.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:a7:e7:eb:88:35:b4:05:7d:a0:22:67:0f:b0:2f:06:b8:f8:
c4:cf:71:77:05:77:c1:50:e3:2b:57:54:da:54:d9:9d:55:cd:
94:2e:05:63:a4:f9:83:12:bc:75:95:24:94:9c:30:88:fa:94:
b1:b1:91:9b:92:04:21:cd:4a:1a:fa:e2:8f:94:2a:1e:99:79:
64:dd:c7:62:d7:95:87:8b:7a:76:91:74:00:9c:f4:1d:85:2d:
a1:0b:d6:56:b7:2f:dc:dd:0c:6f:0d:60:61:b9:c4:4f:7c:4f:
55:4f:b3:84:ba:2b:44:64:c3:da:cb:66:ab:f8:7e:1f:25:1a:
8b:34:2e:b3:aa:9c:ee:55:db:38:eb:4a:ec:45:80:2c:6c:2e:
19:cd:60:04:ba:39:b1:ff:b9:9a:c4:ba:07:1f:a3:1f:ba:7e:
f7:a0:df:59:8c:3a:b9:d6:b3:b9:05:bd:38:61:20:e7:55:76:
8c:40:f0:d6:ab:a7:15:64:d1:98:4e:53:4d:84:dd:73:a1:a9:
e3:55:2e:b2:58:a3:dc:e3:94:0c:12:4f:f7:c1:51:30:a7:98:
7f:f2:7b:41:c0:7c:7c:6a:bd:fe:d4:b8:1e:5c:23:84:fb:39:
16:63:de:cb:aa:9d:ba:b0:60:34:0e:b2:4e:34:fd:d8:87:c3:
a0:a8:54:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:56 2024 by rpki-client on console-ams.rpki-client.org