Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/v56MSl-QizKO34nqG27C3Hj8YkM.roa
File: v56MSl-QizKO34nqG27C3Hj8YkM.roa (raw, json)
Hash identifier: P5q2tTOXTlZOrgmHLLpaJXbo7yqApBVILsWfjOD/Sfk=
Subject key identifier: BF:9E:8C:4A:5F:90:8B:32:8E:DF:89:EA:1B:6E:C2:DC:78:FC:62:43
Certificate issuer: /CN=78b1dbe2faf2a6e7dfa574ce55190963015f1c53
Certificate serial: 01890B864AB2FC1777DEA9D34E36A3E430D4
Authority key identifier: 78:B1:DB:E2:FA:F2:A6:E7:DF:A5:74:CE:55:19:09:63:01:5F:1C:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eLHb4vrypuffpXTOVRkJYwFfHFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/v56MSl-QizKO34nqG27C3Hj8YkM.roa
Signing time: Fri 30 Jun 2023 08:58:17 +0000
ROA not before: Fri 30 Jun 2023 08:58:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25355
IP address blocks: 82.144.64.0/19 maxlen: 24
82.144.64.0/24 maxlen: 24
82.144.68.0/24 maxlen: 24
82.144.69.0/24 maxlen: 24
82.144.67.0/24 maxlen: 24
82.144.65.0/24 maxlen: 24
82.144.66.0/24 maxlen: 24
82.144.70.0/24 maxlen: 24
82.144.71.0/24 maxlen: 24
82.144.77.0/24 maxlen: 24
82.144.78.0/24 maxlen: 24
82.144.75.0/24 maxlen: 24
82.144.76.0/24 maxlen: 24
82.144.74.0/24 maxlen: 24
82.144.72.0/24 maxlen: 24
82.144.73.0/24 maxlen: 24
82.144.82.0/24 maxlen: 24
82.144.83.0/24 maxlen: 24
82.144.81.0/24 maxlen: 24
82.144.79.0/24 maxlen: 24
82.144.80.0/24 maxlen: 24
82.144.84.0/24 maxlen: 24
82.144.85.0/24 maxlen: 24
82.144.91.0/24 maxlen: 24
82.144.89.0/24 maxlen: 24
82.144.90.0/24 maxlen: 24
82.144.88.0/24 maxlen: 24
82.144.86.0/24 maxlen: 24
82.144.87.0/24 maxlen: 24
82.144.93.0/24 maxlen: 24
82.144.94.0/24 maxlen: 24
82.144.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 15 Oct 2023 23:13:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:0b:86:4a:b2:fc:17:77:de:a9:d3:4e:36:a3:e4:30:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78b1dbe2faf2a6e7dfa574ce55190963015f1c53
Validity
Not Before: Jun 30 08:58:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf9e8c4a5f908b328edf89ea1b6ec2dc78fc6243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:43:08:b3:d1:e8:c6:b8:4e:fa:69:38:1a:dd:
29:85:c8:d9:1a:b5:78:bb:47:9d:22:9f:48:4b:c7:
75:ec:bf:a5:7e:1f:9b:15:f9:74:65:15:88:0f:e6:
0b:45:f1:d9:d0:de:f0:f9:2c:f6:84:6c:93:20:38:
eb:b4:9e:98:3f:e7:c1:50:a0:38:0f:fb:07:f7:fe:
f3:ac:9d:2c:dc:d8:c9:f4:22:e8:64:2c:ca:b2:68:
e0:a8:ef:19:85:47:4c:30:7f:6d:1c:68:24:73:1c:
84:39:46:a5:db:f0:9a:3c:84:80:25:b1:e2:69:10:
b6:b5:a0:de:1d:04:ab:bc:cf:1c:b0:1a:08:cd:d7:
29:92:d1:38:61:45:95:21:8d:62:60:fd:e0:e8:56:
cd:46:3a:01:ed:64:69:32:34:fe:c9:6d:d6:f7:8e:
37:08:ad:fc:b8:d8:f0:88:77:7a:7a:53:eb:87:02:
ba:90:94:71:36:e1:be:5d:93:2e:98:5b:3a:1f:6e:
00:70:e3:59:88:cd:a4:a5:03:ce:62:47:8e:2e:7d:
ad:eb:cc:d9:b7:29:bf:ef:f1:ad:ee:18:bc:0a:06:
e1:a1:48:30:64:74:aa:a7:f1:7d:09:96:1e:68:f8:
c6:5d:e5:5e:6f:36:f0:16:09:d7:e1:b1:19:2a:39:
df:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:9E:8C:4A:5F:90:8B:32:8E:DF:89:EA:1B:6E:C2:DC:78:FC:62:43
X509v3 Authority Key Identifier:
keyid:78:B1:DB:E2:FA:F2:A6:E7:DF:A5:74:CE:55:19:09:63:01:5F:1C:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eLHb4vrypuffpXTOVRkJYwFfHFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/v56MSl-QizKO34nqG27C3Hj8YkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/eLHb4vrypuffpXTOVRkJYwFfHFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.144.64.0/19
Signature Algorithm: sha256WithRSAEncryption
70:7f:7c:30:4d:70:0e:16:e3:7d:2c:0a:92:16:f3:32:0c:fd:
e2:69:66:29:ef:ab:18:80:5e:11:1a:ab:27:a0:0c:32:58:b1:
a8:a9:b5:18:8a:06:d3:46:e6:c0:18:b8:07:bb:77:9f:19:1d:
43:92:55:bc:86:5a:8f:20:74:03:d8:54:51:ab:6e:77:00:5f:
88:f5:aa:67:92:f4:19:75:54:b6:25:92:4f:1d:ee:d6:ac:6b:
18:43:70:7f:f2:93:61:1b:eb:f3:43:ba:65:60:fa:fb:3d:63:
1a:a5:b9:f9:18:be:aa:48:1c:b2:cf:d7:15:b5:f1:00:ed:86:
ea:a6:28:23:d7:78:35:f7:82:4b:76:4c:2f:55:8e:b1:ef:00:
c2:b7:3a:96:6c:84:67:13:b5:28:67:bb:cd:2c:e8:c0:3e:1c:
6e:19:9e:ba:d1:e1:b3:54:b4:f4:86:c0:13:d5:7d:b7:f6:98:
9c:77:7d:5b:6d:d8:93:f6:22:51:b0:40:56:7d:54:8c:16:20:
a8:2a:4b:61:a6:33:95:7e:de:c4:f5:a3:f2:24:bd:4c:7a:ba:
37:fc:20:4a:81:d7:ba:14:82:48:c8:0c:7c:5a:11:a6:87:95:
37:14:eb:0d:88:5f:32:b4:e4:00:28:50:1c:17:e2:85:93:f7:
c2:64:49:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:15 2024 by rpki-client on console-fra.rpki-client.org