Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/twzbQ8efzpmyxYUFq8_PSH9njZ8.roa
File: twzbQ8efzpmyxYUFq8_PSH9njZ8.roa (raw, json)
Hash identifier: waUbjSA9yHxr9MNic32w+aN+M4q2wBt1msYASPOkRFY=
Subject key identifier: B7:0C:DB:43:C7:9F:CE:99:B2:C5:85:05:AB:CF:CF:48:7F:67:8D:9F
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0185708CD7DA841842986FA25959F45DD4B5
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/twzbQ8efzpmyxYUFq8_PSH9njZ8.roa
Signing time: Mon 02 Jan 2023 03:35:56 +0000
ROA not before: Mon 02 Jan 2023 03:35:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16301
IP address blocks: 78.81.192.0/18 maxlen: 18
78.81.0.0/17 maxlen: 17
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:d7:da:84:18:42:98:6f:a2:59:59:f4:5d:d4:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 03:35:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b70cdb43c79fce99b2c58505abcfcf487f678d9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ef:3a:c1:7c:ee:43:af:b0:90:cb:8e:ba:bc:
9a:70:56:41:a8:a5:16:5e:e0:eb:e8:5b:5a:9d:9b:
21:40:4d:52:92:62:e2:42:4f:89:70:5a:23:ef:0b:
b0:14:0d:8a:e8:be:b8:59:e1:d4:60:4c:00:cb:be:
1a:f7:07:f0:f3:86:31:35:8b:71:f3:9f:a7:c1:f5:
25:c7:f4:bb:14:f1:4e:0b:38:86:07:10:dd:9a:b6:
2c:4f:04:10:61:64:f2:78:c2:47:7f:7f:30:49:ac:
67:91:d5:01:5f:65:3e:c5:bc:b1:3f:9f:1e:cb:38:
ce:42:02:d3:7c:4c:58:bf:dc:2b:a8:b1:e3:64:7a:
25:66:ed:88:79:f4:29:6f:e7:f3:1e:08:b0:4c:e0:
2d:dc:f5:d0:72:c5:c0:50:ed:a1:51:89:ee:a8:f0:
bb:5f:a0:f0:8d:a4:0c:fe:68:6b:e9:bf:7b:e3:0e:
3d:b9:26:1b:a6:e8:ec:8f:3f:f8:12:6c:c1:2e:fe:
18:89:18:e5:7e:87:c2:0b:b4:17:aa:17:53:2d:c1:
12:b5:1b:92:c7:d8:7f:ed:0c:83:46:65:04:a3:17:
6c:4d:f1:39:73:69:43:62:5c:37:8a:24:a8:cd:71:
93:3d:25:47:9f:89:de:56:15:83:d3:70:cc:fb:7b:
62:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:0C:DB:43:C7:9F:CE:99:B2:C5:85:05:AB:CF:CF:48:7F:67:8D:9F
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/twzbQ8efzpmyxYUFq8_PSH9njZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.81.0.0/17
78.81.192.0/18
Signature Algorithm: sha256WithRSAEncryption
72:9b:2a:8a:00:4d:43:c8:68:ec:d5:67:dc:f5:74:30:f5:df:
ba:b5:f3:ad:e0:9b:52:cd:82:da:9d:a1:c3:ee:a9:de:7e:c5:
4d:2b:83:c9:b8:99:aa:bb:de:4a:b1:25:29:e4:36:a8:22:43:
c9:27:d3:55:5d:c9:2f:e3:97:57:5d:ee:03:ea:0c:2a:62:75:
55:43:c2:4c:4f:b2:84:e2:bd:8e:47:8a:0c:92:cc:d9:92:e2:
6e:c4:90:c6:cd:03:2e:73:aa:5f:37:ad:53:83:92:71:19:26:
4b:18:e1:71:d4:3f:b0:18:72:48:7f:63:22:68:18:86:36:65:
60:bf:db:62:fe:28:95:95:33:1e:50:2f:df:da:82:34:08:ba:
f1:51:a6:b4:5c:e0:c2:de:ae:9f:67:85:eb:4a:c6:8e:f6:c0:
2b:67:4a:bc:a4:79:8c:f9:79:c8:6b:dd:e6:7c:91:c2:ca:34:
16:98:9e:16:43:6a:0c:46:ff:0b:cc:a5:c4:de:e8:eb:4f:ea:
35:55:53:7b:2e:6b:0f:0a:ea:e0:60:6a:4e:83:16:c0:d5:0d:
c9:9a:f4:1a:63:64:99:08:6a:f4:05:f4:1d:3c:97:09:89:70:
93:8f:b2:ec:bb:13:5e:fc:49:2e:08:ef:df:6e:7e:d6:2d:42:
5e:21:aa:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:26 2024 by rpki-client on console-ams.rpki-client.org