Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/ne7eEQwpzfroJpr_tDmjrA-NG78.roa
File: ne7eEQwpzfroJpr_tDmjrA-NG78.roa (raw, json)
Hash identifier: lbJEA9Hic4wuplypfAGbrakTgDMXRx+ynQENrLa6ees=
Subject key identifier: 9D:EE:DE:11:0C:29:CD:FA:E8:26:9A:FF:B4:39:A3:AC:0F:8D:1B:BF
Certificate issuer: /CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff
Certificate serial: 018D0C3649CC0CADDD0D88F30F33C40B11F7
Authority key identifier: DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/ne7eEQwpzfroJpr_tDmjrA-NG78.roa
Signing time: Mon 15 Jan 2024 08:21:40 +0000
ROA not before: Mon 15 Jan 2024 08:21:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57630
IP address blocks: 80.88.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 May 2024 15:46:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0c:36:49:cc:0c:ad:dd:0d:88:f3:0f:33:c4:0b:11:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff
Validity
Not Before: Jan 15 08:21:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9deede110c29cdfae8269affb439a3ac0f8d1bbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:dc:0a:33:af:6c:da:2a:44:4c:db:77:ba:9c:
69:9d:6a:f9:5c:e8:59:40:36:55:f6:d1:01:31:04:
5e:20:43:3d:76:da:b0:cf:89:5f:fc:e6:1c:18:9f:
e6:a4:e5:54:54:ba:29:4c:3e:7a:bf:34:53:f8:e0:
ad:a0:d3:9b:90:14:8f:8d:9a:3f:70:ce:30:ab:eb:
94:2a:5f:8a:4b:4d:7d:39:70:62:5a:ac:61:c9:1a:
99:e1:c3:c0:4e:79:d3:a7:6b:28:90:93:33:e2:57:
48:03:52:70:be:90:ea:16:dd:ab:76:6a:b2:1e:ec:
15:9c:07:89:de:bd:f1:d4:2a:45:e9:62:fc:29:15:
5d:2c:20:72:8f:2d:c2:c5:db:25:93:8a:bf:33:66:
eb:98:66:c0:c1:0f:b1:d4:b5:b2:74:66:d6:65:ef:
84:0e:bc:59:b2:8a:ee:fc:98:39:f9:ec:f6:e5:9b:
e6:b7:04:15:6f:49:7b:7b:8d:55:3f:27:44:2f:c3:
f0:81:e6:16:4e:5f:38:fb:68:34:80:f9:ea:30:36:
61:28:e7:34:cb:39:bf:64:e7:1e:33:8e:0a:5a:ae:
9f:04:47:56:89:a7:80:9e:fc:47:19:cf:85:4c:27:
c8:81:82:ee:e0:22:70:a1:b4:65:53:1a:3f:5a:6b:
b0:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:EE:DE:11:0C:29:CD:FA:E8:26:9A:FF:B4:39:A3:AC:0F:8D:1B:BF
X509v3 Authority Key Identifier:
keyid:DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/ne7eEQwpzfroJpr_tDmjrA-NG78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.88.126.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:5b:fd:3a:48:4a:9f:84:c6:c6:0c:c9:9b:81:d7:e1:4c:3e:
c3:a9:3e:fd:e0:94:7b:9a:99:4a:e7:a4:f6:7e:31:5e:a7:fe:
ac:6c:2a:1e:55:cc:20:f4:17:18:67:43:5c:20:7d:42:23:42:
e1:8a:a4:6f:be:bb:31:ab:a0:17:55:e4:5e:79:cd:18:a8:bb:
f2:aa:b7:da:33:c1:e1:c9:8c:02:8b:ac:b8:f7:04:96:30:83:
38:dc:59:30:44:ef:6f:11:b5:53:1d:4c:3a:23:71:3a:0f:4a:
b8:73:a8:1a:3c:60:41:e2:49:6a:ef:fa:d0:27:9c:71:47:b9:
fb:60:8e:3e:3e:8b:10:ba:9e:fd:dd:ef:7f:20:e1:53:5b:b7:
aa:09:f6:cf:f9:13:84:85:ca:e2:60:7d:5c:92:2a:cb:6a:b7:
1d:8b:19:88:12:0d:8b:d8:83:23:3a:58:f3:2c:e7:27:83:28:
62:22:92:e7:65:f7:c8:9f:0f:5f:79:3d:66:55:71:b2:7a:f0:
fd:54:63:68:cb:f3:2c:70:e6:30:ff:b3:99:95:cb:13:27:3c:
5e:fe:2c:d8:39:29:d5:92:5c:4a:a4:3c:13:4f:89:d9:bb:be:
35:0e:9b:ef:3e:d7:7c:6b:75:e5:6d:85:d7:15:fa:f9:3f:5d:
76:7d:66:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 18:27:57 2024 by rpki-client on console-ams.rpki-client.org