Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/k19TV8hECUQVzi18A5Tf0heT7ZQ.roa
File: k19TV8hECUQVzi18A5Tf0heT7ZQ.roa (raw, json)
Hash identifier: LSHiONn+pLUVz0aAp+QfWwmGwtW4chBOetfi07ZpxCM=
Subject key identifier: 93:5F:53:57:C8:44:09:44:15:CE:2D:7C:03:94:DF:D2:17:93:ED:94
Certificate issuer: /CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Certificate serial: 0187B20CE242E74F7990BBC5B6D6C4C8F6CC
Authority key identifier: 9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/k19TV8hECUQVzi18A5Tf0heT7ZQ.roa
Signing time: Mon 24 Apr 2023 06:56:41 +0000
ROA not before: Mon 24 Apr 2023 06:56:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34984
IP address blocks: 5.182.244.0/24 maxlen: 24
93.157.189.0/24 maxlen: 24
93.157.191.0/24 maxlen: 24
185.233.245.0/24 maxlen: 24
89.200.216.0/24 maxlen: 24
89.200.218.0/24 maxlen: 24
89.200.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 May 2023 17:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b2:0c:e2:42:e7:4f:79:90:bb:c5:b6:d6:c4:c8:f6:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Validity
Not Before: Apr 24 06:56:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=935f5357c844094415ce2d7c0394dfd21793ed94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8b:c3:d0:38:9d:f5:a6:95:06:cb:41:6a:94:
a2:73:75:c8:76:99:62:f5:bb:0e:31:c3:39:fd:37:
c1:e7:3f:2e:91:4e:89:82:c2:f8:af:37:3a:86:5c:
5f:5f:d5:2f:2a:f7:c8:2a:70:bc:0c:0a:d1:43:30:
2b:ef:bd:b4:a0:79:1f:16:e0:8a:05:83:7f:ea:7d:
f4:ea:e8:25:9c:2b:9a:2f:51:b3:f7:11:f6:15:a2:
f7:74:76:08:33:3f:6f:50:2a:76:9e:b9:a3:78:a1:
43:0f:4f:23:f9:49:17:c4:e1:d3:42:04:86:b1:f5:
02:db:9d:4c:b9:5c:d6:12:e0:0c:15:9b:12:7e:4a:
37:39:2a:fe:87:43:20:4f:5c:d0:f5:f4:db:f1:17:
ac:b5:68:30:ec:fd:3f:0f:af:ad:50:09:47:dc:88:
7d:86:ed:8c:1e:88:45:9d:d4:5c:29:5f:6d:d9:96:
8d:f6:15:b9:ed:aa:eb:37:19:47:f6:14:a9:52:ae:
5f:87:37:1d:e1:79:fb:63:3a:14:7b:88:7f:2f:65:
ff:c2:e7:0c:39:6b:9d:f6:a6:7c:02:7c:8a:2e:b6:
6f:3e:15:7a:b3:8d:21:4c:b2:7b:83:b9:a2:51:4f:
d6:8b:a5:bf:c4:4e:c2:f4:15:eb:35:c8:3f:eb:d3:
b5:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:5F:53:57:C8:44:09:44:15:CE:2D:7C:03:94:DF:D2:17:93:ED:94
X509v3 Authority Key Identifier:
keyid:9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/k19TV8hECUQVzi18A5Tf0heT7ZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.244.0/24
89.200.216.0/24
89.200.218.0/23
93.157.189.0/24
93.157.191.0/24
185.233.245.0/24
Signature Algorithm: sha256WithRSAEncryption
25:41:e2:10:31:77:41:90:19:27:12:dc:d7:db:3d:e7:64:88:
84:30:2d:c4:e1:bf:ec:7a:e7:fb:5f:a0:ce:15:a1:e3:8d:66:
d7:22:7a:61:07:d3:ce:f8:5b:7d:10:ac:c7:8a:cd:3a:fd:c4:
21:5e:ec:28:69:40:8c:ba:67:6e:33:c0:13:6e:a6:12:c4:6b:
88:74:a2:7e:6c:dc:a0:a7:db:77:77:9a:a4:0e:d3:58:be:bb:
a6:25:6f:b4:99:26:9a:54:9c:3a:11:50:a2:6f:e2:aa:89:91:
d9:63:cf:1e:7b:d7:a9:3a:3e:38:92:a4:67:ce:87:d0:b1:41:
a6:7d:1d:51:63:0b:6d:fa:79:74:d9:10:df:49:8b:39:9c:9d:
a9:d2:36:12:75:54:70:be:68:5b:73:7b:82:a9:b1:1a:44:f0:
fe:f9:57:05:1f:9e:86:6d:ca:30:27:43:6f:2a:b1:7b:b3:e4:
2b:9a:a8:e2:d8:4b:7a:d0:08:d8:1a:41:e2:c2:4a:52:a8:1d:
ce:1b:ef:e5:7a:a4:f5:fc:e7:9a:0a:c2:2c:e5:8a:b1:3e:e2:
8b:1b:be:e9:87:78:4b:d7:01:09:b4:ce:39:ff:92:be:60:f1:
ef:6a:c5:2e:51:b5:53:da:8a:6a:71:08:c2:0c:b7:9c:ec:b1:
df:d4:e2:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:51 2024 by rpki-client on console-fra.rpki-client.org