Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c566c7-3cac-45a9-82a1-04b09057522f/1/qKnXfdfueuBD9nc8RSB7I6HjDtM.roa
File: qKnXfdfueuBD9nc8RSB7I6HjDtM.roa (raw, json)
Hash identifier: xzchM5kpGB0bf2fodccwmhx2gh5QntDxAjVYE1FCg0U=
Subject key identifier: A8:A9:D7:7D:D7:EE:7A:E0:43:F6:77:3C:45:20:7B:23:A1:E3:0E:D3
Certificate issuer: /CN=a0af3d8551fbdd3b62f4ffdfd59cad4161e4471e
Certificate serial: 018CC56E26A6E3ECC60D52B82C2205AE3F4B
Authority key identifier: A0:AF:3D:85:51:FB:DD:3B:62:F4:FF:DF:D5:9C:AD:41:61:E4:47:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oK89hVH73Tti9P_f1ZytQWHkRx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c566c7-3cac-45a9-82a1-04b09057522f/1/qKnXfdfueuBD9nc8RSB7I6HjDtM.roa
Signing time: Mon 01 Jan 2024 14:29:39 +0000
ROA not before: Mon 01 Jan 2024 14:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203252
IP address blocks: 185.80.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 03 Feb 2024 09:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:26:a6:e3:ec:c6:0d:52:b8:2c:22:05:ae:3f:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0af3d8551fbdd3b62f4ffdfd59cad4161e4471e
Validity
Not Before: Jan 1 14:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a8a9d77dd7ee7ae043f6773c45207b23a1e30ed3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f6:29:21:24:6f:15:c4:de:5a:fb:10:e3:ae:
1f:f1:36:87:97:52:5d:6c:43:09:5f:31:ab:e5:be:
18:04:b5:4b:18:1b:e7:a8:cc:32:02:ca:33:70:d4:
aa:e6:bb:af:c5:f1:31:c7:05:07:bb:5d:df:40:76:
a7:12:58:e3:e3:28:24:0f:3a:aa:90:bf:bc:8c:5e:
26:04:0b:f8:f0:e6:b6:99:5d:b8:da:3c:79:81:04:
61:cd:a1:5e:20:e5:ad:e8:2a:f0:26:33:18:e8:db:
55:9b:c9:6f:33:09:a8:e0:9d:2e:c8:21:52:75:f9:
31:7f:96:57:1f:13:6f:fc:de:64:25:31:7c:ff:a6:
b7:ba:56:be:0b:53:24:1f:fb:b5:73:35:4b:61:66:
c6:d6:b3:bd:70:3f:02:ad:ff:67:af:b2:8b:cb:13:
5c:ac:27:97:12:8c:af:e0:d0:31:29:b7:43:fd:ed:
b9:cc:8a:ee:e9:df:56:c0:1d:0e:6f:f8:db:ec:50:
b3:4e:49:09:11:7b:28:e3:28:59:47:ca:9f:36:6f:
47:d1:a5:e1:f9:41:8a:cc:c4:50:0e:a7:ef:eb:28:
6d:67:af:cf:57:71:d6:72:71:3c:e7:9d:a0:54:87:
19:3c:50:a1:42:7d:ed:17:33:cb:89:56:5f:22:04:
4f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:A9:D7:7D:D7:EE:7A:E0:43:F6:77:3C:45:20:7B:23:A1:E3:0E:D3
X509v3 Authority Key Identifier:
keyid:A0:AF:3D:85:51:FB:DD:3B:62:F4:FF:DF:D5:9C:AD:41:61:E4:47:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oK89hVH73Tti9P_f1ZytQWHkRx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c566c7-3cac-45a9-82a1-04b09057522f/1/qKnXfdfueuBD9nc8RSB7I6HjDtM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c566c7-3cac-45a9-82a1-04b09057522f/1/oK89hVH73Tti9P_f1ZytQWHkRx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.91.0/24
Signature Algorithm: sha256WithRSAEncryption
78:aa:bf:ee:0d:21:74:de:51:16:de:73:54:08:3f:8f:15:a7:
a1:a7:0c:e6:1d:14:8c:cc:d9:32:81:b2:60:79:56:81:12:12:
66:80:9a:b8:16:05:8e:21:63:30:d6:80:0e:3d:3c:9c:f0:82:
5a:0d:e7:b4:45:b4:cc:e5:ee:4a:a7:27:69:25:ea:ce:dd:d3:
17:6e:06:99:b2:b3:63:31:e8:e0:47:a0:cb:3d:0e:64:2a:db:
33:a7:05:84:32:8e:a5:ec:bd:56:c9:6b:57:4b:8f:aa:dc:49:
32:1d:d1:fe:5c:2e:31:89:87:d3:89:04:1c:30:db:7f:f8:04:
ae:43:12:28:7e:d3:54:89:6d:2d:bd:fc:c6:00:3c:ba:65:cf:
16:f4:82:fb:ec:41:1d:8f:6e:16:e4:75:df:70:2f:11:f8:a7:
30:96:fe:da:47:43:6f:b7:52:fe:1a:ea:76:4a:24:27:84:a9:
ec:3a:09:0b:d7:91:73:b4:5c:4a:d9:c0:59:d1:3d:6b:ca:b9:
14:36:26:bf:a8:25:a2:54:f6:5f:21:18:e6:f9:f3:4d:6c:ff:
c8:6b:f7:dd:24:b9:94:65:06:e5:0f:0e:f5:55:9b:9b:3e:b9:
8c:26:04:fc:77:52:c7:94:c4:88:ab:44:88:ae:13:ba:98:47:
b0:58:14:70
-----BEGIN CERTIFICATE-----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Generated at Sat Feb 3 11:48:37 2024 by rpki-client on console-ams.rpki-client.org