Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/90gKzsOI6-btEHeyMaWKVZNDNOE.roa
File: 90gKzsOI6-btEHeyMaWKVZNDNOE.roa (raw, json)
Hash identifier: rj6mW+MSRbwlX+WkiEKJi5ZKEWsiH4VTO+TRNq14asc=
Subject key identifier: F7:48:0A:CE:C3:88:EB:E6:ED:10:77:B2:31:A5:8A:55:93:43:34:E1
Certificate issuer: /CN=78b1dbe2faf2a6e7dfa574ce55190963015f1c53
Certificate serial: 01856B9C6BA475027267CF6BA49353BAF707
Authority key identifier: 78:B1:DB:E2:FA:F2:A6:E7:DF:A5:74:CE:55:19:09:63:01:5F:1C:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eLHb4vrypuffpXTOVRkJYwFfHFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/90gKzsOI6-btEHeyMaWKVZNDNOE.roa
Signing time: Sun 01 Jan 2023 04:34:51 +0000
ROA not before: Sun 01 Jan 2023 04:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25355
IP address blocks: 82.144.64.0/19 maxlen: 24
82.144.64.0/24 maxlen: 24
82.144.68.0/24 maxlen: 24
82.144.69.0/24 maxlen: 24
82.144.67.0/24 maxlen: 24
82.144.65.0/24 maxlen: 24
82.144.66.0/24 maxlen: 24
82.144.70.0/24 maxlen: 24
82.144.71.0/24 maxlen: 24
82.144.77.0/24 maxlen: 24
82.144.78.0/24 maxlen: 24
82.144.75.0/24 maxlen: 24
82.144.76.0/24 maxlen: 24
82.144.74.0/24 maxlen: 24
82.144.72.0/24 maxlen: 24
82.144.73.0/24 maxlen: 24
82.144.82.0/24 maxlen: 24
82.144.83.0/24 maxlen: 24
82.144.81.0/24 maxlen: 24
82.144.79.0/24 maxlen: 24
82.144.80.0/24 maxlen: 24
82.144.84.0/24 maxlen: 24
82.144.85.0/24 maxlen: 24
82.144.91.0/24 maxlen: 24
82.144.89.0/24 maxlen: 24
82.144.90.0/24 maxlen: 24
82.144.88.0/24 maxlen: 24
82.144.86.0/24 maxlen: 24
82.144.87.0/24 maxlen: 24
82.144.95.0/24 maxlen: 24
82.144.93.0/24 maxlen: 24
82.144.94.0/24 maxlen: 24
82.144.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Jun 2023 08:58:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:9c:6b:a4:75:02:72:67:cf:6b:a4:93:53:ba:f7:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78b1dbe2faf2a6e7dfa574ce55190963015f1c53
Validity
Not Before: Jan 1 04:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7480acec388ebe6ed1077b231a58a55934334e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:08:a3:0f:40:06:db:9f:d2:27:a9:0c:18:53:
53:8d:2d:57:a7:33:ae:49:0a:25:63:07:c9:c0:60:
14:70:4c:e5:9c:10:2d:08:a0:af:46:08:e7:ae:e2:
af:af:03:ff:44:87:d4:cd:c1:27:9a:56:ff:b3:74:
f3:1d:91:20:38:b9:d1:e6:e8:2c:6e:3f:77:71:56:
d1:6a:52:4c:e4:68:3c:c9:59:1e:56:1f:2a:58:2b:
cd:41:88:18:eb:ec:d1:91:21:d1:3d:2b:65:c7:38:
06:85:4b:20:d6:79:6b:a3:80:e2:b0:c2:b9:42:38:
a6:84:80:bb:39:7e:82:25:72:c7:27:63:c8:28:32:
eb:c7:d2:24:5c:f2:ca:37:c7:b9:78:ec:d3:27:52:
4b:02:26:8e:f9:3a:30:7b:ab:30:ac:23:a9:82:a9:
cd:ef:1a:6d:5b:40:50:3e:dd:d0:ae:77:78:06:e3:
17:c6:51:b1:32:78:30:35:78:91:ad:23:6e:29:12:
21:f9:2e:b4:3a:28:ff:ce:1d:b9:d5:45:c8:48:4b:
a4:36:8a:d8:d6:d2:c6:37:0d:4c:46:bb:78:92:da:
d9:4e:23:c3:78:bd:cf:86:1a:4f:8a:d0:04:19:6c:
b0:39:3c:4d:aa:66:7c:d3:43:7e:e1:27:d8:ec:33:
c7:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:48:0A:CE:C3:88:EB:E6:ED:10:77:B2:31:A5:8A:55:93:43:34:E1
X509v3 Authority Key Identifier:
keyid:78:B1:DB:E2:FA:F2:A6:E7:DF:A5:74:CE:55:19:09:63:01:5F:1C:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eLHb4vrypuffpXTOVRkJYwFfHFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/90gKzsOI6-btEHeyMaWKVZNDNOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/eLHb4vrypuffpXTOVRkJYwFfHFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.144.64.0/19
Signature Algorithm: sha256WithRSAEncryption
a9:1a:fb:4c:27:91:53:f0:8b:f8:74:7b:77:ea:6a:c2:dc:17:
64:1f:1d:d0:f8:e1:54:35:f4:00:3b:5e:39:5d:f0:7a:d0:25:
12:fb:36:fc:a8:88:4a:65:3d:21:39:a7:73:72:56:dc:10:8f:
2c:c6:41:ae:09:a3:33:cd:9c:9c:20:74:03:ae:d2:f5:ca:d5:
9a:71:ff:c9:c1:de:7e:77:8a:83:fa:e4:ea:fb:11:19:72:5e:
20:f5:0a:6e:84:b3:a0:8f:67:b2:43:c4:0a:bb:e5:fa:1a:74:
99:19:24:12:6e:49:60:e9:9f:79:ea:fe:18:4e:48:25:0c:c1:
78:88:be:e6:a1:4d:df:c0:8b:04:00:25:99:00:2e:f0:21:1f:
05:48:a7:32:e8:cd:2d:76:d5:03:da:2b:d8:c6:f8:b8:ea:fa:
e0:d6:dc:74:13:e3:99:7d:ae:d6:6f:cd:4a:a9:eb:8f:be:38:
ee:1b:72:c3:c1:94:60:85:81:52:7d:dd:5c:86:76:e6:47:31:
ec:01:f7:f8:3f:62:12:1d:0b:00:b2:63:0e:6b:b4:36:da:b8:
94:22:81:b9:6d:f4:71:75:75:d9:3f:f4:20:96:8d:cc:0d:65:
7d:4d:c7:52:50:83:a5:72:6d:55:55:6d:e1:24:b9:03:2d:f6:
75:91:87:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:15 2024 by rpki-client on console-fra.rpki-client.org