Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/byZ5XYEJPA8LOD0vvmyAiicc4R4.roa
File: byZ5XYEJPA8LOD0vvmyAiicc4R4.roa (raw, json)
Hash identifier: M7k80URXS7k+vsYk2sLtxTocGnTMquW5JT7NvrH4iQA=
Subject key identifier: 6F:26:79:5D:81:09:3C:0F:0B:38:3D:2F:BE:6C:80:8A:27:1C:E1:1E
Certificate issuer: /CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Certificate serial: 01856FA6F758A5D6D4A84F7F0B317A2B1CDE
Authority key identifier: 9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/byZ5XYEJPA8LOD0vvmyAiicc4R4.roa
Signing time: Sun 01 Jan 2023 23:24:51 +0000
ROA not before: Sun 01 Jan 2023 23:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34984
IP address blocks: 5.182.244.0/24 maxlen: 24
93.157.189.0/24 maxlen: 24
185.233.246.0/24 maxlen: 24
93.157.191.0/24 maxlen: 24
185.233.245.0/24 maxlen: 24
89.200.216.0/24 maxlen: 24
89.200.218.0/24 maxlen: 24
89.200.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Apr 2023 06:56:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:f7:58:a5:d6:d4:a8:4f:7f:0b:31:7a:2b:1c:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Validity
Not Before: Jan 1 23:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f26795d81093c0f0b383d2fbe6c808a271ce11e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:bf:f6:04:14:e0:34:78:aa:d0:18:42:02:28:
9d:0a:e0:33:6e:06:cc:a6:90:ed:60:d7:4c:a1:d6:
45:2e:2c:0a:9a:71:5a:63:4f:82:12:1e:11:e4:20:
3c:73:7e:56:00:6b:8d:e9:5f:f3:ac:70:b3:de:de:
c8:f5:45:82:20:ff:df:aa:2a:be:20:38:81:6e:4b:
12:83:47:08:1b:d1:68:45:bd:33:ae:1e:3e:1e:a6:
e3:7a:6a:20:cc:14:63:4d:26:81:ad:be:30:b8:4f:
d8:f7:c5:2a:d3:c1:12:bd:ec:70:cf:9f:b4:8c:23:
e7:d6:ea:a3:86:ee:2f:77:92:1d:41:d7:a5:33:d6:
b9:1e:9d:a4:4a:41:e2:44:e4:e7:1c:cf:dc:2a:d9:
23:39:7b:0a:33:20:8c:24:8a:8e:dc:de:24:ee:84:
29:3c:1d:4c:f3:6f:e3:cc:93:87:03:bc:2c:1b:e2:
28:24:4f:5c:57:bb:e5:73:e7:f1:2a:41:06:ba:d6:
68:3d:01:8c:b3:dc:0c:b2:68:05:18:a6:e7:6d:eb:
bc:3d:4c:c7:b1:f6:7e:a5:db:22:15:de:5b:72:b0:
59:19:e2:44:f2:fb:a6:4c:57:af:c7:fd:5d:01:60:
a9:46:ea:21:ba:9d:1d:9f:aa:84:f5:58:dd:d4:7e:
d5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:26:79:5D:81:09:3C:0F:0B:38:3D:2F:BE:6C:80:8A:27:1C:E1:1E
X509v3 Authority Key Identifier:
keyid:9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/byZ5XYEJPA8LOD0vvmyAiicc4R4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.244.0/24
89.200.216.0/24
89.200.218.0/23
93.157.189.0/24
93.157.191.0/24
185.233.245.0-185.233.246.255
Signature Algorithm: sha256WithRSAEncryption
7e:8e:bd:b0:61:fb:53:72:6c:a1:d7:bc:28:90:d0:47:6a:92:
4f:df:00:2d:29:20:7b:66:ec:f1:37:34:ba:28:56:f2:70:ae:
e3:0b:71:d7:ea:e4:f7:be:ba:0c:8a:cf:29:4c:b9:73:24:79:
2f:40:0f:e6:fe:b9:3b:cd:53:6a:63:cc:fb:f1:c4:1e:45:3d:
33:f3:31:03:09:0b:57:16:ef:e0:cf:3c:f3:61:7d:07:80:e7:
77:5d:80:72:12:28:7b:10:86:22:38:78:28:2e:13:9e:f2:b8:
50:29:3c:88:63:b6:b2:0e:af:25:82:56:4b:c4:89:77:54:80:
6a:3e:a4:33:26:11:1d:3a:0a:24:82:c3:93:78:9a:4e:2c:bc:
ac:5d:32:c7:29:6d:47:15:b8:f6:32:4f:5f:11:4e:01:a2:d0:
4c:33:1b:9f:a9:fd:75:9d:f3:eb:f7:3e:30:f9:79:12:a6:db:
3a:65:2e:bf:1e:09:e9:99:3b:99:16:35:0d:31:58:e7:6d:5c:
7d:9f:d9:7f:d0:f6:b7:76:81:c0:0c:f5:23:ff:27:70:7b:31:
ab:40:53:be:6b:94:3b:2e:ae:6f:8b:23:38:76:d9:bc:d5:fa:
51:96:80:2a:f4:7c:ec:03:dd:48:35:76:61:33:f2:96:9a:65:
fe:6e:4b:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:43 2024 by rpki-client on console-ams.rpki-client.org