Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/608fdb-a406-4b85-b14a-d2441e8f6c7a/1/L3jP3ZN4VeLCc0p4ez2O0SKJ6Kg.roa
File: L3jP3ZN4VeLCc0p4ez2O0SKJ6Kg.roa (raw, json)
Hash identifier: 2vIplfMoLzgTnxOBmOw7L9VC2hTEwjzhHpX5O+/a720=
Subject key identifier: 2F:78:CF:DD:93:78:55:E2:C2:73:4A:78:7B:3D:8E:D1:22:89:E8:A8
Certificate issuer: /CN=b4f82c8efde34bd99e44eaf0731b6c525b454a19
Certificate serial: 018CC500BCA5D85A6AE2FF830A3DB12A6CCD
Authority key identifier: B4:F8:2C:8E:FD:E3:4B:D9:9E:44:EA:F0:73:1B:6C:52:5B:45:4A:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPgsjv3jS9meROrwcxtsUltFShk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/608fdb-a406-4b85-b14a-d2441e8f6c7a/1/L3jP3ZN4VeLCc0p4ez2O0SKJ6Kg.roa
Signing time: Mon 01 Jan 2024 12:30:09 +0000
ROA not before: Mon 01 Jan 2024 12:30:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34500
IP address blocks: 80.73.16.0/20 maxlen: 20
80.73.16.0/21 maxlen: 21
80.73.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:bc:a5:d8:5a:6a:e2:ff:83:0a:3d:b1:2a:6c:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f82c8efde34bd99e44eaf0731b6c525b454a19
Validity
Not Before: Jan 1 12:30:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f78cfdd937855e2c2734a787b3d8ed12289e8a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:05:56:09:22:21:18:9a:03:a7:7c:52:7d:1e:
07:3a:19:1e:03:93:6f:47:bf:4f:c2:62:63:a0:76:
6b:fa:93:2b:1e:4b:e7:19:92:ec:b8:60:8f:fd:ef:
32:05:94:7e:31:6e:46:88:b9:24:05:00:61:70:6b:
fd:d4:05:05:39:b0:5a:87:e5:10:f6:fc:7d:51:a0:
77:16:b7:cf:d8:bf:f8:cd:cc:ba:ea:6b:89:9c:a5:
75:1b:7d:f2:d8:68:8c:04:62:9e:33:4b:c3:f4:10:
06:98:09:38:5d:aa:13:c1:30:dd:b5:5c:f9:c9:89:
0f:a7:06:5c:c1:e6:7b:b9:fb:24:2c:8c:6f:07:24:
2f:d1:99:e4:58:d1:4b:55:c7:12:7e:05:78:55:62:
5f:dc:7c:13:2e:1a:96:68:39:54:78:84:02:60:00:
c0:af:b3:0c:c4:7e:9d:4b:c4:3b:b3:47:ad:e6:c1:
df:c5:bb:9b:bf:7d:0f:a2:ba:a6:86:86:79:d3:3c:
81:fe:fd:92:57:43:a7:16:62:ca:85:0b:d3:06:7e:
bd:ac:3e:99:f6:ae:19:5e:03:53:3f:98:ca:7a:1c:
ac:87:d1:69:43:45:de:41:e5:17:83:bc:09:3f:1e:
9c:0e:4d:67:81:ec:5a:95:86:dd:01:a4:2b:ae:ce:
f6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:78:CF:DD:93:78:55:E2:C2:73:4A:78:7B:3D:8E:D1:22:89:E8:A8
X509v3 Authority Key Identifier:
keyid:B4:F8:2C:8E:FD:E3:4B:D9:9E:44:EA:F0:73:1B:6C:52:5B:45:4A:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPgsjv3jS9meROrwcxtsUltFShk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/608fdb-a406-4b85-b14a-d2441e8f6c7a/1/L3jP3ZN4VeLCc0p4ez2O0SKJ6Kg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/608fdb-a406-4b85-b14a-d2441e8f6c7a/1/tPgsjv3jS9meROrwcxtsUltFShk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.16.0/20
Signature Algorithm: sha256WithRSAEncryption
49:7f:89:df:80:ef:3b:38:ab:f3:74:8d:30:81:9a:3b:13:c9:
b6:8d:b2:72:f0:fc:c3:54:d2:df:24:d2:12:24:b2:17:4b:a0:
0c:3b:24:f9:88:bb:80:70:ba:d4:8e:54:3a:54:bd:ad:fb:8f:
56:5d:f2:c0:72:7b:82:ad:46:46:b2:4d:e3:52:cd:86:75:a4:
92:09:07:25:b8:82:90:50:95:9c:f0:49:0b:d2:33:83:56:5c:
ac:00:ff:44:2f:e9:61:e5:81:ad:80:e6:bd:42:67:25:6c:ba:
24:09:e2:93:3f:0d:a6:f9:0f:2a:c3:a6:86:40:9c:f0:fe:cd:
d7:9b:4e:d9:4d:73:a2:b4:e4:b0:0c:8b:bd:a5:87:92:66:f0:
c5:26:f1:ee:9e:ab:a3:c1:54:9d:ec:76:b7:0a:07:64:b5:03:
10:d5:4d:cc:85:55:56:c0:b6:5d:d7:05:b2:9e:5f:df:79:0a:
b6:3c:9f:fe:d9:1e:80:d5:b2:53:fe:25:4a:05:87:59:8b:3f:
64:d8:bf:08:b7:90:88:6e:fa:ef:28:c4:d3:00:79:69:ca:71:
b3:d3:98:75:d6:c3:65:b1:1c:39:9b:2f:96:a9:bd:d2:8c:43:
29:08:90:6c:5b:10:ac:ec:93:3d:9f:2e:5e:bc:c3:b4:81:4c:
71:87:9a:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:28 2025 by rpki-client