Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/66Y49TE7eTrqyrUWSJLMDbYPTSs.roa
File: 66Y49TE7eTrqyrUWSJLMDbYPTSs.roa (raw, json)
Hash identifier: dARL/ErvwSEjROQ+MwAo0UX9O2zR1D0QqWvPezh70/Q=
Subject key identifier: EB:A6:38:F5:31:3B:79:3A:EA:CA:B5:16:48:92:CC:0D:B6:0F:4D:2B
Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Certificate serial: 01857139B38459A3293DC6ED902C923A2974
Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/66Y49TE7eTrqyrUWSJLMDbYPTSs.roa
Signing time: Mon 02 Jan 2023 06:44:44 +0000
ROA not before: Mon 02 Jan 2023 06:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211028
IP address blocks: 185.78.232.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Nov 2023 10:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:b3:84:59:a3:29:3d:c6:ed:90:2c:92:3a:29:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Validity
Not Before: Jan 2 06:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eba638f5313b793aeacab5164892cc0db60f4d2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:61:17:8a:dc:40:ac:05:ef:88:d8:a8:d1:83:
d6:77:eb:61:3e:75:b1:b3:ad:95:71:41:d2:24:cb:
94:d6:14:28:2a:91:70:9b:92:38:0f:c7:dc:d1:ec:
88:b2:a5:74:85:ef:28:c7:8f:bc:6b:de:21:8d:66:
29:12:3c:ab:7a:25:71:7f:f5:62:45:92:9a:aa:5e:
dd:35:b9:11:29:5a:2b:ad:4c:99:fa:a3:3d:24:9c:
d7:f9:5a:94:b4:fd:df:41:7f:f3:51:a1:ff:aa:a6:
a5:a2:cd:47:0e:0f:22:e3:00:18:dc:d1:d1:d6:2c:
ee:59:0c:53:20:a6:1a:50:e8:b9:94:6b:e1:34:17:
b5:98:b0:34:13:08:40:2a:34:47:d2:05:bd:66:24:
26:1c:35:90:6f:39:37:8d:ef:06:e5:0b:7d:0a:8a:
f6:14:6f:9e:23:d6:cc:f9:c9:eb:c6:4e:3d:f5:ee:
51:40:52:01:08:e8:be:3d:1f:b6:f6:a3:0b:4c:97:
0a:23:0b:fa:4e:3a:3f:c9:82:89:a0:0f:f4:9a:05:
78:fe:e0:12:1d:16:0e:d4:16:1b:8a:37:76:09:7c:
83:3e:a3:3c:2c:ea:f6:d2:6d:55:95:7c:cb:c5:dd:
72:ba:f8:7f:b6:64:25:c2:11:12:8e:ca:f3:ee:79:
e4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:A6:38:F5:31:3B:79:3A:EA:CA:B5:16:48:92:CC:0D:B6:0F:4D:2B
X509v3 Authority Key Identifier:
keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/66Y49TE7eTrqyrUWSJLMDbYPTSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.78.232.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:37:8b:e4:38:16:c2:92:bc:cb:f5:c2:2a:37:3c:f9:5e:71:
4f:d7:bd:e1:81:34:86:cd:49:4a:01:8f:5b:d8:ed:4a:4d:6d:
f1:75:22:a2:ab:da:88:1d:09:64:32:a8:0b:1a:05:5b:d2:ea:
fd:e3:46:55:f7:ac:57:30:67:e7:db:e8:ec:b3:51:84:40:27:
a8:ef:8b:6b:3d:94:13:05:e3:55:93:e3:8c:cf:07:87:f1:e5:
50:50:49:f8:86:b9:ea:24:4e:2d:ad:27:f1:b4:44:29:cc:f8:
65:6a:a1:7f:6e:43:12:1b:03:7f:ee:96:0f:51:d3:1a:c8:3d:
a2:a5:48:96:5e:21:2c:32:83:17:5a:64:13:30:18:3b:19:d5:
56:72:3d:54:e4:73:a1:a8:06:d4:7b:7d:5f:a9:ea:6a:b2:f1:
8d:05:9d:95:e5:ec:d1:45:0b:5a:43:09:81:57:f1:21:21:48:
67:2f:95:4e:c0:58:a5:64:2f:37:42:07:38:99:ac:88:62:76:
8c:43:de:0b:68:a3:2b:0c:c3:d9:52:b2:af:a5:7b:b9:93:69:
f1:95:aa:51:32:f9:31:f1:32:c4:c1:55:2e:65:86:56:c0:79:
4f:c7:6a:58:2f:48:ac:22:d1:b9:65:be:35:bd:bb:0f:fa:8c:
4c:69:87:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:25 2024 by rpki-client on console-ams.rpki-client.org