Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/698e4e-0a39-416b-affe-61819c480cbe/1/3mR9wMuly_2rVNGy1aeDM4beoD8.roa
File: 3mR9wMuly_2rVNGy1aeDM4beoD8.roa (raw, json)
Hash identifier: gfoIJ/ivveqH55AmvmutiNdOCS+IbjH6cQW2KvXV5fk=
Subject key identifier: DE:64:7D:C0:CB:A5:CB:FD:AB:54:D1:B2:D5:A7:83:33:86:DE:A0:3F
Certificate issuer: /CN=808c3a6c5cbff0739e438d05744405b16197b15b
Certificate serial: 01856F14D49D8C945093601E98DBC110BC76
Authority key identifier: 80:8C:3A:6C:5C:BF:F0:73:9E:43:8D:05:74:44:05:B1:61:97:B1:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gIw6bFy_8HOeQ40FdEQFsWGXsVs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/698e4e-0a39-416b-affe-61819c480cbe/1/3mR9wMuly_2rVNGy1aeDM4beoD8.roa
Signing time: Sun 01 Jan 2023 20:45:14 +0000
ROA not before: Sun 01 Jan 2023 20:45:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213226
IP address blocks: 79.110.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:d4:9d:8c:94:50:93:60:1e:98:db:c1:10:bc:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=808c3a6c5cbff0739e438d05744405b16197b15b
Validity
Not Before: Jan 1 20:45:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de647dc0cba5cbfdab54d1b2d5a7833386dea03f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e8:23:da:25:d0:e5:e5:99:43:f6:56:9b:3b:
a7:fc:5d:f1:99:ba:4a:83:a0:83:f8:17:6e:b9:5b:
af:78:ea:02:94:e8:4f:ab:e1:34:12:54:91:30:2e:
d1:b9:89:61:4c:50:43:84:50:34:b6:72:55:24:c6:
11:54:b7:81:2f:91:b0:57:20:9a:ba:47:12:92:87:
ec:7d:dd:93:47:9c:7e:b3:cb:24:5b:7e:95:dc:ec:
99:ef:6a:0c:69:c8:56:b1:1e:95:94:a1:c0:95:ec:
b4:24:df:09:a8:8e:43:a4:eb:33:52:6e:58:99:59:
ca:f5:1a:35:8c:ae:aa:a2:f1:2f:43:a1:b4:ac:db:
59:4c:5d:3b:5a:59:5c:d4:b0:a8:44:bb:9c:46:b1:
52:c7:33:de:92:31:e8:49:13:8a:84:fe:93:86:aa:
e5:70:e2:33:14:d5:df:36:a0:4c:8c:a0:1b:33:fd:
d7:9b:3c:2f:51:32:15:2d:9a:4c:56:11:b5:ed:9f:
d3:ba:98:10:16:ef:bf:0d:e0:83:c3:1b:43:61:7f:
86:89:93:d5:c1:16:a4:8d:1d:5d:46:86:c5:7d:6d:
42:a3:1a:7e:e9:d2:46:a7:36:f2:d6:d6:d9:81:af:
f7:31:e5:a3:98:07:59:5e:46:a9:0a:3f:87:c3:22:
d5:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:64:7D:C0:CB:A5:CB:FD:AB:54:D1:B2:D5:A7:83:33:86:DE:A0:3F
X509v3 Authority Key Identifier:
keyid:80:8C:3A:6C:5C:BF:F0:73:9E:43:8D:05:74:44:05:B1:61:97:B1:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gIw6bFy_8HOeQ40FdEQFsWGXsVs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/698e4e-0a39-416b-affe-61819c480cbe/1/3mR9wMuly_2rVNGy1aeDM4beoD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/698e4e-0a39-416b-affe-61819c480cbe/1/gIw6bFy_8HOeQ40FdEQFsWGXsVs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.137.0/24
Signature Algorithm: sha256WithRSAEncryption
08:0a:8a:4b:c3:f5:18:f7:96:f3:53:3a:a4:51:f7:93:47:27:
4a:0e:a4:e7:b5:5e:c3:93:29:c3:ef:0d:b6:9b:78:d8:17:99:
58:10:09:e4:bf:39:c9:c2:56:f4:85:ad:51:2d:fa:65:c1:15:
85:9d:2e:5b:29:40:98:18:66:11:50:77:c9:f4:91:97:ba:6b:
0c:25:d2:5f:4e:9e:ee:45:a5:92:2f:44:3f:49:03:42:11:e2:
b5:43:a8:74:d3:9c:74:9c:fc:7c:54:cf:07:21:83:85:63:2c:
ab:a9:e3:34:9e:8f:c4:0b:5f:28:65:63:dc:47:e9:3f:85:bf:
67:da:36:b6:db:8f:55:c2:0f:ad:95:e8:40:6b:2e:62:30:12:
12:ee:ae:72:31:ca:46:a9:e5:6f:c5:3b:71:97:d2:a3:69:7e:
f5:7a:94:2a:5d:e2:bf:72:96:49:02:e8:de:7f:a6:12:f7:71:
c0:e7:cd:5a:bb:30:1a:da:1b:39:ef:2f:99:9e:cc:d5:9e:89:
c7:38:ec:db:b1:a2:19:25:e1:24:0b:5b:d2:72:22:db:3c:87:
d7:ee:07:4c:02:0d:ec:b0:5e:8e:3f:97:b7:d2:82:f2:de:c8:
59:ef:92:56:32:99:98:3c:b4:06:a4:e6:a2:a1:c5:ca:4b:0b:
bb:d9:2b:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:58 2024 by rpki-client on console-ams.rpki-client.org