Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/5Y2S5g75IDApSlqDOZNNlb4-UH4.roa
File: 5Y2S5g75IDApSlqDOZNNlb4-UH4.roa (raw, json)
Hash identifier: E8yS0U27TJihuBMKNG8WcSeNStuS0F9OVpaVzWLlixc=
Subject key identifier: E5:8D:92:E6:0E:F9:20:30:29:4A:5A:83:39:93:4D:95:BE:3E:50:7E
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 01886691B4441452045414EF22F8CA822E0D
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/5Y2S5g75IDApSlqDOZNNlb4-UH4.roa
Signing time: Mon 29 May 2023 08:13:24 +0000
ROA not before: Mon 29 May 2023 08:13:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205220
IP address blocks: 213.176.2.0/23 maxlen: 24
213.176.120.0/23 maxlen: 24
213.176.126.0/23 maxlen: 24
62.60.188.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:66:91:b4:44:14:52:04:54:14:ef:22:f8:ca:82:2e:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: May 29 08:13:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e58d92e60ef92030294a5a8339934d95be3e507e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:18:25:c6:f7:75:44:a0:6e:e2:07:6f:34:20:
00:4d:f3:cb:d4:b1:6d:ec:c3:5f:c2:8f:c4:e8:89:
6b:90:bb:ed:0c:51:c4:23:77:de:3f:b6:a6:56:d2:
1d:dc:4c:bb:9a:5c:ab:16:e8:0c:68:e6:07:7f:1b:
ed:d9:96:88:e3:08:21:b4:c2:f9:e2:df:b5:cb:5e:
03:b0:4a:b1:ae:4e:fa:e9:ea:f9:42:b7:70:48:2e:
bd:9a:c2:de:02:67:f9:c7:71:cb:3b:c9:32:f4:32:
b8:4d:94:b5:55:4b:43:42:dd:29:bf:ef:ac:57:05:
dc:ab:75:5d:b5:ff:40:95:ee:41:a1:c6:f4:e5:a4:
ed:f6:28:a3:1f:f5:e8:3a:4b:fe:9f:5a:3d:7f:b1:
de:54:b0:7c:f3:56:45:7c:d1:c5:5c:52:15:fb:96:
63:19:42:06:83:49:e4:53:73:6d:2e:da:08:4f:f9:
35:11:be:b7:29:80:b0:74:03:2b:ce:cd:c4:f6:ad:
69:14:1d:c7:58:33:e4:f8:3e:1d:ed:ce:2d:92:68:
57:9b:8f:b3:8f:00:af:a3:1e:26:41:a6:f9:d4:cb:
ed:5e:82:c7:7e:f8:54:f8:68:5f:4a:5c:bd:ab:86:
7b:00:22:41:d9:9e:21:41:ba:a1:14:e3:53:8e:ee:
1b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:8D:92:E6:0E:F9:20:30:29:4A:5A:83:39:93:4D:95:BE:3E:50:7E
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/5Y2S5g75IDApSlqDOZNNlb4-UH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.188.0/22
213.176.2.0/23
213.176.120.0/23
213.176.126.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:c1:e3:24:ac:f4:ed:d7:23:25:c0:cf:29:00:cf:a0:87:af:
b8:b5:8c:6d:f2:99:2b:db:5f:19:03:b2:6d:45:43:37:6e:bf:
11:6a:3b:cd:11:a7:14:e2:b7:e4:29:47:22:1c:80:e4:7b:6b:
ce:cf:68:f5:2d:e3:eb:3d:ea:cd:a2:8a:9d:d1:8b:eb:f7:9f:
1a:ec:de:4c:50:5f:01:f6:17:f5:99:3b:71:6d:78:a7:2e:f7:
8f:99:da:50:e3:a0:b9:e0:7e:76:50:d6:d0:b5:ba:a0:60:82:
f8:08:c3:ba:25:2e:0f:cd:3a:30:28:67:83:cd:e5:85:92:04:
ef:58:4a:8a:99:0f:ec:90:da:5f:1e:28:43:6c:66:12:95:a4:
8a:5b:8c:3a:dc:11:72:88:a9:91:79:6d:f0:78:60:83:06:bd:
60:2a:3d:e7:2e:7e:01:71:78:a6:ba:d6:db:25:20:b5:ba:4b:
84:10:28:ad:d9:ef:32:35:58:2a:1e:a2:8d:69:aa:0f:f8:2c:
e9:5e:8d:9c:72:7a:71:a9:1a:fc:c0:cf:f2:6e:99:dc:b6:ac:
88:20:a4:13:53:e6:80:c0:e7:be:f0:a0:3b:29:19:79:6f:12:
09:93:15:56:3a:21:1e:73:bd:26:29:b5:40:b2:03:17:15:e3:
21:f4:a6:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:23 2023 by rpki-client on console-ams.rpki-client.org