Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/csxNnpCecnWu_Wpmcn4WiDu0x2k.roa
File: csxNnpCecnWu_Wpmcn4WiDu0x2k.roa (raw, json)
Hash identifier: 0uHD+3L88n6ZTQ0u91NV5DiBa4wo1nk3jNDh7367WRQ=
Subject key identifier: 72:CC:4D:9E:90:9E:72:75:AE:FD:6A:66:72:7E:16:88:3B:B4:C7:69
Certificate issuer: /CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff
Certificate serial: 01856CE62C22437472CEA0B1BFCDCDFE8E51
Authority key identifier: BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/csxNnpCecnWu_Wpmcn4WiDu0x2k.roa
Signing time: Sun 01 Jan 2023 10:35:01 +0000
ROA not before: Sun 01 Jan 2023 10:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35569
IP address blocks: 80.93.56.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:2c:22:43:74:72:ce:a0:b1:bf:cd:cd:fe:8e:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff
Validity
Not Before: Jan 1 10:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72cc4d9e909e7275aefd6a66727e16883bb4c769
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:17:b1:42:77:ba:55:ee:2b:94:30:30:e8:54:
08:85:26:dd:dd:59:ff:68:2e:69:54:a5:34:3f:31:
95:93:50:65:75:54:b3:b8:17:0c:ba:b0:62:f0:2e:
d1:f0:29:25:bd:bc:ea:f7:ce:65:84:65:97:20:b1:
04:f0:6a:be:3e:8d:38:5f:95:41:f4:f6:45:d0:23:
b7:f8:e6:47:4c:81:67:8d:b9:08:8e:56:16:28:07:
a9:56:c3:18:78:13:3b:af:cf:d2:65:32:ee:0b:f5:
41:25:3c:1f:0f:b2:dd:68:3f:50:68:26:e4:f9:69:
2b:97:76:1e:1c:a2:66:f8:92:25:b2:17:33:97:8a:
88:28:f8:ac:6c:62:a8:f4:33:bc:02:d3:da:91:c5:
42:d9:44:f5:81:1f:94:eb:cc:8e:fc:19:06:19:45:
4d:c9:1d:8a:00:c6:cc:06:09:e2:87:35:20:55:f4:
0e:04:7d:dc:cf:2e:25:21:65:20:fd:20:65:18:36:
5c:96:08:64:91:f8:31:1d:ce:84:5e:d6:75:da:fd:
b8:99:eb:1c:11:cb:7e:d6:dc:25:bf:88:71:97:9c:
c5:21:34:05:09:42:80:56:2d:a0:71:05:e7:7e:8c:
ff:38:d6:39:0f:17:b4:21:a7:a7:b0:40:b8:e9:2c:
47:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:CC:4D:9E:90:9E:72:75:AE:FD:6A:66:72:7E:16:88:3B:B4:C7:69
X509v3 Authority Key Identifier:
keyid:BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/csxNnpCecnWu_Wpmcn4WiDu0x2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.93.56.0/21
Signature Algorithm: sha256WithRSAEncryption
58:d3:42:b8:b8:4a:10:14:5a:02:45:ec:88:48:46:c3:88:03:
6a:50:6b:31:ac:ea:8c:32:28:96:69:4b:41:d5:e6:03:8d:40:
53:9e:f5:b4:ad:16:03:20:9e:8c:ec:50:10:d3:5f:3f:65:0c:
79:e6:99:a7:55:f3:37:2c:2f:be:95:6e:a2:ab:9f:ba:8b:85:
17:e1:b7:97:89:85:b5:d5:9b:aa:a3:22:8f:e5:b7:46:e7:39:
dd:e8:23:f1:5f:31:15:bf:3f:c0:83:63:ee:67:92:48:31:9a:
31:97:20:72:74:b1:c0:16:92:b1:9c:05:d0:f2:2c:21:7c:80:
05:53:4d:d7:63:91:a1:11:62:8d:91:77:2d:38:7d:40:aa:17:
5a:c9:59:fd:05:29:d1:e1:75:77:6e:5b:03:f8:df:45:b9:3b:
38:1c:a6:3d:32:db:33:f1:b5:0c:56:90:2c:94:5f:df:e5:c9:
7b:e9:a7:fa:b6:e0:cf:31:65:d1:f8:b6:c3:e1:4d:73:97:1a:
1e:49:e6:78:2c:b2:45:8f:d5:93:07:07:ec:71:0d:67:23:1e:
78:12:23:31:1c:ec:1f:6e:5e:3a:92:42:e5:3a:3b:10:99:72:
a8:3e:14:ae:81:f0:98:ce:2c:3b:a9:01:29:9a:49:8f:9c:5a:
59:97:60:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:15 2024 by rpki-client on console-fra.rpki-client.org