Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/581c5d-bc9b-40a6-a5a4-64540205ecf4/1/g5_yrGSqNknZtY7D5UpSlHa3LS8.roa
File: g5_yrGSqNknZtY7D5UpSlHa3LS8.roa (raw, json)
Hash identifier: Ary4rrvshq147rvBqEQQ0+cM9412Frao5A323YyfwKk=
Subject key identifier: 83:9F:F2:AC:64:AA:36:49:D9:B5:8E:C3:E5:4A:52:94:76:B7:2D:2F
Certificate issuer: /CN=75dcc776b2bf595bf4b3e60bba4245f0120a2176
Certificate serial: 0185719E67D561CEF5F51BAE6C3C3BF85260
Authority key identifier: 75:DC:C7:76:B2:BF:59:5B:F4:B3:E6:0B:BA:42:45:F0:12:0A:21:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddzHdrK_WVv0s-YLukJF8BIKIXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/581c5d-bc9b-40a6-a5a4-64540205ecf4/1/g5_yrGSqNknZtY7D5UpSlHa3LS8.roa
Signing time: Mon 02 Jan 2023 08:34:44 +0000
ROA not before: Mon 02 Jan 2023 08:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 193.151.94.0/24 maxlen: 24
195.8.103.0/24 maxlen: 24
91.240.19.0/24 maxlen: 24
91.240.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:67:d5:61:ce:f5:f5:1b:ae:6c:3c:3b:f8:52:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75dcc776b2bf595bf4b3e60bba4245f0120a2176
Validity
Not Before: Jan 2 08:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=839ff2ac64aa3649d9b58ec3e54a529476b72d2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:80:17:1e:4d:53:82:29:7f:69:3a:8f:4c:62:
1f:84:df:e8:93:60:e7:ff:ba:e7:4d:85:65:9a:9c:
26:cd:92:c8:65:96:1a:22:8f:b0:54:c0:b8:ab:f3:
39:bd:a5:59:c5:c7:f7:65:a9:f6:8d:4e:75:ee:12:
64:f0:6c:87:ca:00:ae:d1:c8:b6:1d:0f:eb:4b:4c:
9e:2f:3b:c1:20:a3:f5:5d:20:42:de:d7:1b:7a:99:
2e:c9:ae:50:35:81:4b:cb:07:9a:1f:76:9f:ca:73:
3a:1d:74:3a:6c:a7:70:21:72:61:c7:7a:6d:29:8c:
88:38:8c:c3:1a:7a:b0:b2:ae:ba:c2:c7:24:34:a8:
8f:12:3f:fb:94:ce:1e:11:bc:66:89:9f:0a:aa:79:
7b:21:a3:b5:e5:5e:cc:00:82:cf:3e:0d:2b:f9:83:
f5:1f:7f:8b:8b:56:c1:06:a2:a2:05:4d:da:93:06:
8f:db:be:11:4a:51:0e:38:1b:bc:59:8d:87:cd:7d:
1e:75:71:58:78:12:2f:e1:41:48:e8:92:2e:fe:85:
63:4e:07:78:57:97:69:0d:94:79:2e:39:56:6b:21:
a0:92:2a:4c:5c:6c:d2:94:6c:3c:6f:5a:50:8e:5a:
8c:dd:b3:94:68:c8:a9:55:4e:88:a1:12:6f:a5:b9:
12:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:9F:F2:AC:64:AA:36:49:D9:B5:8E:C3:E5:4A:52:94:76:B7:2D:2F
X509v3 Authority Key Identifier:
keyid:75:DC:C7:76:B2:BF:59:5B:F4:B3:E6:0B:BA:42:45:F0:12:0A:21:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddzHdrK_WVv0s-YLukJF8BIKIXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/581c5d-bc9b-40a6-a5a4-64540205ecf4/1/g5_yrGSqNknZtY7D5UpSlHa3LS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/581c5d-bc9b-40a6-a5a4-64540205ecf4/1/ddzHdrK_WVv0s-YLukJF8BIKIXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.18.0/23
193.151.94.0/24
195.8.103.0/24
Signature Algorithm: sha256WithRSAEncryption
01:6b:02:31:b7:7c:f2:71:42:57:74:ad:86:24:6b:dc:5a:81:
56:87:b6:b9:7a:74:ab:b1:f8:11:e2:a6:3b:60:42:14:ae:3f:
e0:2f:a2:d5:7d:f8:fa:d6:ad:41:3c:ad:5d:08:4d:a8:29:80:
18:a6:79:95:d6:4d:71:f7:55:9e:0d:0e:50:b1:74:94:53:46:
29:fd:91:29:3c:c5:18:e8:d1:bc:de:43:72:52:09:76:ef:63:
72:84:76:fd:89:13:ab:5f:b4:9c:fd:08:d5:6d:0b:af:1b:eb:
e1:cd:ff:9e:7b:2f:58:f0:10:8d:85:51:74:86:5c:a6:f8:81:
f6:89:05:e2:e8:9b:46:46:54:c5:ea:c8:1e:65:fd:9a:8c:e7:
52:59:fe:0d:97:a6:10:57:e8:03:a3:64:e0:d0:8a:66:76:91:
29:7a:d1:be:c7:b6:1e:25:9e:2a:0d:00:b8:fe:ae:59:16:d4:
3b:86:9a:b6:53:8f:9b:5a:a7:ac:c6:92:66:e1:c9:e8:7a:8f:
9a:57:ea:31:0f:5c:d5:0d:c8:73:69:ee:3c:fe:32:8e:6b:37:
28:f8:51:bd:d5:7c:67:18:a7:a0:8c:4a:c3:9b:1c:8d:24:62:
49:87:48:40:85:13:ed:7e:75:3d:57:3d:cb:b0:2f:35:f9:73:
52:3a:76:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:02 2024 by rpki-client on console-fra.rpki-client.org