Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/8MQNBkDMU7whUbi-y7C-kvVjtiI.roa
File: 8MQNBkDMU7whUbi-y7C-kvVjtiI.roa (raw, json)
Hash identifier: qCW5a2sOUUPBa/bdfFuZw/9vmiSjyBapWeNIP05ccuw=
Subject key identifier: F0:C4:0D:06:40:CC:53:BC:21:51:B8:BE:CB:B0:BE:92:F5:63:B6:22
Certificate issuer: /CN=05f3e160172ecc75c8cab1bae271be3ebf407a80
Certificate serial: 018A1CAC2BF2858039CD1B5554E7D4A8B053
Authority key identifier: 05:F3:E1:60:17:2E:CC:75:C8:CA:B1:BA:E2:71:BE:3E:BF:40:7A:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfPhYBcuzHXIyrG64nG-Pr9AeoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/8MQNBkDMU7whUbi-y7C-kvVjtiI.roa
Signing time: Tue 22 Aug 2023 09:56:00 +0000
ROA not before: Tue 22 Aug 2023 09:56:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 10753
IP address blocks: 80.253.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1c:ac:2b:f2:85:80:39:cd:1b:55:54:e7:d4:a8:b0:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f3e160172ecc75c8cab1bae271be3ebf407a80
Validity
Not Before: Aug 22 09:56:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0c40d0640cc53bc2151b8becbb0be92f563b622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:41:6d:93:3c:04:a0:5c:b4:2a:cb:04:79:50:
fb:70:3b:fb:3c:3a:7f:e9:3d:c3:ef:7c:f4:11:94:
cb:2c:92:43:07:12:32:50:05:89:ea:88:b8:df:a7:
5c:cf:7d:f6:9e:f2:a2:8c:65:c2:6e:8b:76:d6:48:
6f:d0:c0:5c:6b:6a:72:d1:15:a2:b9:d8:64:4d:86:
f5:8d:1b:f1:39:c1:b3:bb:ab:8e:36:29:65:bb:cf:
2a:af:d6:08:3c:f5:cd:8c:7b:5d:7f:c6:84:90:37:
26:df:08:50:be:ec:5c:c1:13:11:0f:4c:21:de:6d:
26:f7:60:c5:05:73:3e:30:6d:72:00:f1:c3:60:5f:
59:1f:ef:67:60:be:5c:12:ae:fd:77:1d:ba:35:30:
ce:41:7e:f7:76:5c:1a:ef:69:ef:45:fe:3f:a8:3a:
57:e7:f8:fc:ad:d5:0f:37:93:e2:1d:84:a8:81:57:
bf:14:5b:cf:f0:22:16:d0:40:63:de:c4:36:92:70:
b3:e4:a2:ee:4c:f2:fc:f6:12:18:ff:af:a9:97:a7:
36:cf:ba:e9:8b:04:bc:8f:86:66:8a:11:4a:ea:2e:
3f:a7:5e:b8:fd:53:5f:32:f0:8f:5d:9f:f0:5a:ca:
1d:71:d4:bd:f7:33:ea:45:fd:27:d5:83:5c:44:27:
07:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:C4:0D:06:40:CC:53:BC:21:51:B8:BE:CB:B0:BE:92:F5:63:B6:22
X509v3 Authority Key Identifier:
keyid:05:F3:E1:60:17:2E:CC:75:C8:CA:B1:BA:E2:71:BE:3E:BF:40:7A:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfPhYBcuzHXIyrG64nG-Pr9AeoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/8MQNBkDMU7whUbi-y7C-kvVjtiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/BfPhYBcuzHXIyrG64nG-Pr9AeoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.253.115.0/24
Signature Algorithm: sha256WithRSAEncryption
76:e6:8e:b7:96:d7:d3:4b:32:a5:da:f0:1e:ec:f4:cc:02:0a:
9d:2c:db:dd:a6:3c:7d:77:3b:22:ce:e7:ee:a6:5e:dd:d3:49:
7a:94:60:e7:68:8c:7b:b8:fe:93:23:22:3a:30:d6:ad:d7:04:
bc:48:21:c4:10:fd:51:e0:fb:76:cb:59:4b:c0:fe:3f:ad:33:
36:a1:21:dd:90:70:5a:e3:a0:10:90:b8:5e:21:cd:08:1b:c9:
db:93:43:99:96:86:6e:8e:00:ca:f8:6c:26:01:8c:56:f4:a4:
55:10:d7:5f:cb:3c:9e:e3:3d:82:40:a5:0d:b7:84:2f:c4:b5:
13:c8:8a:b0:0d:40:f9:26:00:ca:79:cd:45:62:ec:b6:13:25:
f3:fe:27:cd:ae:6a:a2:49:da:ed:30:9d:22:eb:c3:d4:40:cc:
3c:b9:09:6d:3f:61:08:12:02:2b:42:67:50:e3:7a:28:78:cb:
89:b4:ea:e2:bb:55:96:30:24:08:14:4b:88:8d:d0:25:32:eb:
cb:d1:af:17:bd:4b:b8:51:ea:b5:1e:43:de:30:68:27:6c:a4:
55:19:77:f2:e9:38:34:f4:49:bf:96:44:3b:87:0e:01:f4:20:
7c:49:21:4e:ea:04:e6:69:ca:8a:4b:d5:b8:f6:82:e7:79:18:
c7:8a:36:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:00 2024 by rpki-client on console-ams.rpki-client.org