Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/5zR8Sf_-55Ysl0eYJXm-s2LJ_ms.roa
File: 5zR8Sf_-55Ysl0eYJXm-s2LJ_ms.roa (raw, json)
Hash identifier: FEqwbsjRjmDRRKdtv11ViKYCT1xR01HAixe16ZOhv3A=
Subject key identifier: E7:34:7C:49:FF:FE:E7:96:2C:97:47:98:25:79:BE:B3:62:C9:FE:6B
Certificate issuer: /CN=40e3953c5cb452f159f8e1505fc702e883657e72
Certificate serial: 018570675E49CF686A1E93D5D3C630984A2F
Authority key identifier: 40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/5zR8Sf_-55Ysl0eYJXm-s2LJ_ms.roa
Signing time: Mon 02 Jan 2023 02:55:00 +0000
ROA not before: Mon 02 Jan 2023 02:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25804
IP address blocks: 178.79.218.0/23 maxlen: 23
46.228.144.0/24 maxlen: 24
178.79.198.0/23 maxlen: 23
46.183.88.0/24 maxlen: 24
2a02:3d0:8::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:5e:49:cf:68:6a:1e:93:d5:d3:c6:30:98:4a:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40e3953c5cb452f159f8e1505fc702e883657e72
Validity
Not Before: Jan 2 02:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7347c49fffee7962c9747982579beb362c9fe6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:78:aa:f2:07:4b:5b:15:9a:e7:1b:98:61:2c:
c3:9c:9c:50:b8:92:bb:f7:fe:78:76:70:ae:eb:5b:
f1:2a:e4:f3:27:cb:cd:d1:16:de:93:4b:12:64:56:
d2:f9:82:4a:85:4b:a3:9c:fc:59:4f:9a:7a:22:41:
e0:6b:31:14:47:1d:76:c7:aa:a1:33:14:19:ce:3c:
ac:a4:2f:29:bd:00:74:69:7e:00:64:54:9a:66:54:
28:46:2e:07:b1:22:41:14:0d:82:4d:92:87:e7:61:
6f:1a:41:5e:68:33:28:34:eb:57:db:15:4f:a0:40:
e5:64:24:86:93:36:3c:3e:fc:f8:1b:a4:d2:f4:34:
19:27:00:87:f5:3b:ff:ad:6d:41:92:93:bb:53:b7:
60:f8:34:27:2e:10:96:86:20:8f:fd:04:55:54:84:
3a:15:a7:f6:50:b7:e2:13:11:87:fc:d6:26:a7:96:
e7:2a:5d:76:d9:70:ec:3b:82:f4:74:31:a9:89:15:
cc:c2:02:5d:9a:32:6d:2d:87:1b:c4:b3:7a:fb:dc:
89:66:73:f8:15:61:3c:29:bc:55:a5:59:60:7c:e5:
dc:e5:0f:02:80:e9:cf:90:19:69:30:19:7f:1f:87:
2d:37:a9:d1:d3:5d:cf:67:f0:84:49:f8:47:e8:72:
e2:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:34:7C:49:FF:FE:E7:96:2C:97:47:98:25:79:BE:B3:62:C9:FE:6B
X509v3 Authority Key Identifier:
keyid:40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/5zR8Sf_-55Ysl0eYJXm-s2LJ_ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.88.0/24
46.228.144.0/24
178.79.198.0/23
178.79.218.0/23
IPv6:
2a02:3d0:8::/48
Signature Algorithm: sha256WithRSAEncryption
6d:5c:19:00:c9:1d:29:c6:bd:84:93:ba:d4:65:71:25:17:27:
c0:c6:ff:20:63:be:5c:96:6e:c8:43:93:99:41:9c:99:86:80:
dd:ec:ee:43:24:9e:07:b6:e4:a6:3b:68:31:9a:29:b6:e9:cd:
86:2d:95:6b:38:ed:65:06:93:3c:3a:74:66:e8:89:1d:d4:61:
0d:8d:09:3d:21:bd:18:21:57:a5:69:74:af:0f:5c:8c:93:f0:
f7:a5:45:9d:4e:aa:ef:d5:6e:ed:7f:24:18:df:2e:96:2f:fe:
a1:9a:7a:62:b3:b7:d1:4e:b9:42:a6:93:ff:09:f4:9e:a3:5c:
48:a8:76:d0:0e:a5:e1:32:60:43:9c:21:22:c3:25:12:f2:f8:
58:4a:6f:18:23:d0:04:2f:aa:e3:0b:37:24:eb:cf:c1:fe:2a:
a0:63:0e:db:a3:ea:dc:cd:19:9c:7e:8a:a0:1a:a2:60:a9:46:
b4:a0:75:e9:b4:58:be:02:2a:f7:34:47:d8:47:26:64:de:fa:
c6:2d:b0:4f:41:1d:b3:90:db:d2:3e:a6:13:1b:78:70:ae:a9:
40:a1:12:36:4a:83:ed:6a:03:e1:80:09:4f:b0:c9:e9:5d:c1:
e6:8b:96:7d:79:a8:90:32:b8:9a:63:31:f0:b7:42:52:06:b3:
47:d8:c5:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:18 2024 by rpki-client on console-fra.rpki-client.org