Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/56o4j2Zgpw_KO60_UxFBTz1NqN0.roa
File: 56o4j2Zgpw_KO60_UxFBTz1NqN0.roa (raw, json)
Hash identifier: s+ZLRYvqWwy3o2j991bHc+0QWem07Id4TzIH2zJ4gIg=
Subject key identifier: E7:AA:38:8F:66:60:A7:0F:CA:3B:AD:3F:53:11:41:4F:3D:4D:A8:DD
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 01856D0AD3C3FB706E1619C6F3BED6562451
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/56o4j2Zgpw_KO60_UxFBTz1NqN0.roa
Signing time: Sun 01 Jan 2023 11:15:04 +0000
ROA not before: Sun 01 Jan 2023 11:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39847
IP address blocks: 89.185.160.0/19 maxlen: 19
178.18.176.0/20 maxlen: 20
185.150.120.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:d3:c3:fb:70:6e:16:19:c6:f3:be:d6:56:24:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jan 1 11:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7aa388f6660a70fca3bad3f5311414f3d4da8dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:de:13:29:94:19:b6:ac:f4:58:51:fa:6c:9b:
b2:13:a4:1f:71:64:f1:c6:0d:80:42:68:aa:21:94:
af:6c:f3:11:28:44:8e:82:9d:bb:dd:ee:40:5d:91:
24:24:62:50:ca:68:98:f5:1d:64:85:b4:14:4c:9e:
ed:20:73:68:82:3f:ad:73:2e:90:36:ba:fc:15:97:
74:d3:c2:8f:71:02:51:6c:d8:8d:9d:c5:49:8a:d8:
69:ec:d5:6a:27:4f:4e:65:d2:ad:1c:dd:f0:d4:4e:
46:4d:07:5b:84:bd:9d:12:d4:e2:32:35:56:33:2c:
3e:42:bf:c2:1c:df:b1:ba:1f:a3:19:c5:c9:75:f2:
ba:0a:f8:b2:4a:73:67:83:60:05:1f:6c:35:81:c9:
fc:61:6f:65:dd:01:9c:58:8a:0f:70:13:d6:08:62:
82:8b:6c:f5:fb:c5:37:c0:ea:e6:08:07:ac:2a:a8:
2f:72:1b:39:5e:4e:30:b2:28:6c:8c:dd:cb:f3:92:
fb:d1:d0:ba:c5:ab:4e:bc:c2:83:8c:fc:aa:12:d1:
5e:41:d1:55:24:67:08:c3:a0:6c:f6:c2:83:5e:04:
97:81:4a:b3:6f:e6:a1:6e:de:0b:4e:ab:53:93:98:
38:1e:1e:01:b7:9e:f2:fc:3c:e0:e2:db:39:72:55:
d2:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:AA:38:8F:66:60:A7:0F:CA:3B:AD:3F:53:11:41:4F:3D:4D:A8:DD
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/56o4j2Zgpw_KO60_UxFBTz1NqN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.160.0/19
178.18.176.0/20
185.150.120.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:69:85:95:b8:60:ab:7e:e7:74:b9:9c:ec:fd:48:ba:27:88:
17:29:c7:8c:00:04:cc:9a:57:6c:6c:6a:4f:9e:ce:14:2d:32:
38:7f:dc:1c:15:90:d2:06:51:a3:11:63:c7:2a:26:75:97:d0:
01:4f:a5:d6:32:97:c7:84:05:08:03:07:fd:2c:5f:da:d5:d4:
a9:43:a0:36:0e:54:db:cc:c2:e9:80:07:d5:95:2d:63:d4:8a:
fc:21:3e:e4:bd:30:68:4c:e8:37:b9:f3:6f:33:d5:dc:78:a0:
b1:f4:90:35:09:66:96:37:fa:8a:22:58:c1:cf:96:03:07:5a:
f1:e4:a9:16:be:3a:d0:04:e5:03:e1:35:6d:b9:4d:fc:1f:75:
4f:71:27:eb:2d:a1:80:7b:91:05:88:8e:64:45:c5:e8:eb:a8:
90:dc:d9:ac:a0:02:c6:65:09:f8:1e:49:e7:97:81:20:d0:b6:
3b:64:62:56:5b:53:9e:a5:ac:57:3c:c8:b1:cc:6b:e0:6a:35:
6a:0d:21:0d:49:26:49:a2:43:70:78:dc:77:62:57:99:cd:de:
81:f7:4d:b9:69:d2:a9:e9:a3:2c:50:49:44:7c:61:c7:04:51:
3b:51:58:b0:04:eb:30:d9:e9:5f:bd:8e:ab:bd:35:60:2f:cc:
25:9d:6f:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org