Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/47aa2f-6b6f-4ef5-9b99-bc9ecc2adb43/1/S59Zja0P0KDSq3ePGgzjqsLdd74.roa
File: S59Zja0P0KDSq3ePGgzjqsLdd74.roa (raw, json)
Hash identifier: C0d9tvyfHg2ZukTFujhbtLsG0QWAy7846n1Q6p28fvE=
Subject key identifier: 4B:9F:59:8D:AD:0F:D0:A0:D2:AB:77:8F:1A:0C:E3:AA:C2:DD:77:BE
Certificate issuer: /CN=4413bdf4dc7435faf51ba934d65570f71c21731a
Certificate serial: 0187E83F8E769AE905BE88A6AEB0CA99A909
Authority key identifier: 44:13:BD:F4:DC:74:35:FA:F5:1B:A9:34:D6:55:70:F7:1C:21:73:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RBO99Nx0Nfr1G6k01lVw9xwhcxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/47aa2f-6b6f-4ef5-9b99-bc9ecc2adb43/1/S59Zja0P0KDSq3ePGgzjqsLdd74.roa
Signing time: Thu 04 May 2023 19:31:31 +0000
ROA not before: Thu 04 May 2023 19:31:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43648
IP address blocks: 185.78.16.0/22 maxlen: 24
2a05:6680::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e8:3f:8e:76:9a:e9:05:be:88:a6:ae:b0:ca:99:a9:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4413bdf4dc7435faf51ba934d65570f71c21731a
Validity
Not Before: May 4 19:31:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b9f598dad0fd0a0d2ab778f1a0ce3aac2dd77be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6b:57:ce:6f:1f:16:d9:12:a4:03:c1:c0:38:
3c:56:aa:f4:66:13:94:07:85:b2:68:6f:37:6b:f5:
d9:97:83:bc:a6:4a:a1:fe:e6:85:7e:40:9c:78:c7:
24:a7:80:28:32:f1:12:02:75:fb:fa:1d:f8:62:e1:
71:cd:40:cd:53:d8:f8:75:a9:d7:85:25:f8:a5:39:
fe:fe:7b:b9:90:5f:83:66:34:c9:c7:9a:54:98:13:
73:9b:a6:18:b5:1b:74:3c:1c:b7:1a:24:f4:3c:75:
6c:46:35:df:77:d7:36:3b:a4:c2:40:d3:ae:d5:07:
a9:a8:bd:05:81:e8:17:2c:60:5f:bb:0c:2a:9f:88:
5d:1a:cb:9c:dc:5e:0b:88:c3:d2:fe:13:6b:8e:d5:
17:ed:a2:7d:b6:fc:b9:58:dd:a3:d6:dd:cb:e4:4c:
0f:ec:99:03:8d:1e:47:30:f3:b8:b6:54:49:5d:0b:
7a:72:11:14:53:a7:c4:b6:1c:f5:81:1f:fd:0e:1c:
2c:e5:92:b7:2c:a5:33:ef:fd:ab:2b:0f:ed:f8:72:
67:9d:8a:ba:3d:e2:51:84:c6:7a:85:05:86:f1:14:
12:d0:1a:f7:81:d7:f7:e5:c1:a9:07:e1:b4:89:7d:
37:8b:59:51:1b:f2:24:cf:64:92:04:29:32:ee:32:
c2:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:9F:59:8D:AD:0F:D0:A0:D2:AB:77:8F:1A:0C:E3:AA:C2:DD:77:BE
X509v3 Authority Key Identifier:
keyid:44:13:BD:F4:DC:74:35:FA:F5:1B:A9:34:D6:55:70:F7:1C:21:73:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RBO99Nx0Nfr1G6k01lVw9xwhcxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/47aa2f-6b6f-4ef5-9b99-bc9ecc2adb43/1/S59Zja0P0KDSq3ePGgzjqsLdd74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/47aa2f-6b6f-4ef5-9b99-bc9ecc2adb43/1/RBO99Nx0Nfr1G6k01lVw9xwhcxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.78.16.0/22
IPv6:
2a05:6680::/29
Signature Algorithm: sha256WithRSAEncryption
09:88:24:47:45:08:7a:65:50:2c:8e:62:d5:7c:62:ba:85:09:
80:65:69:20:01:3b:95:9d:31:d7:42:6f:16:07:2f:14:53:7a:
68:f8:52:7a:63:b7:29:e9:93:bd:f5:86:27:7d:c4:b3:a7:41:
0d:35:be:b0:9b:ab:75:e8:11:87:5a:02:1d:85:79:dd:bb:1f:
c3:b5:5b:4b:a7:95:f7:ef:1f:3b:77:46:94:a0:ef:1a:8b:ae:
6e:8f:36:c0:3d:0e:1e:a3:2e:64:c2:b6:a0:97:d8:1b:45:8e:
d3:a0:5f:f1:8f:b2:e9:65:9a:38:77:2e:2e:be:2d:c9:53:09:
cd:02:eb:4e:72:e9:73:71:d3:97:12:dd:93:e1:5e:6b:48:09:
e4:d4:2a:9d:eb:a5:f5:90:7e:44:b4:d5:a6:63:8b:84:c6:b7:
7d:b5:c1:8f:01:a0:87:ee:2f:f4:c6:81:39:18:9b:c5:ab:26:
ae:6d:fd:5f:7b:28:6a:d2:7b:44:ca:ec:06:fc:e9:60:86:fb:
fb:d3:e4:4a:49:2b:22:ab:ba:82:99:e3:b3:b3:b5:02:27:b3:
21:e2:bd:e4:e1:23:21:e5:a5:1b:c1:d9:e8:96:94:63:01:e6:
b7:f5:51:61:d5:40:9f:1c:78:08:48:38:2a:9c:db:c0:1d:95:
73:ce:10:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:02 2024 by rpki-client on console-ams.rpki-client.org