Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/50e780-eca7-458e-b6aa-9dbc35672329/1/5YBiITf3HeoipiD2LesTk-XNfow.roa
File: 5YBiITf3HeoipiD2LesTk-XNfow.roa (raw, json)
Hash identifier: fSHi7AYumlndRF6kTawm12PA7G/A6P/fbsROHQNbi4g=
Subject key identifier: E5:80:62:21:37:F7:1D:EA:22:A6:20:F6:2D:EB:13:93:E5:CD:7E:8C
Certificate issuer: /CN=ca329ced8efb41f3b4a2078d94bbb0a3aab4fb02
Certificate serial: 0185701519B87378EF52EDA9BF8D189A4823
Authority key identifier: CA:32:9C:ED:8E:FB:41:F3:B4:A2:07:8D:94:BB:B0:A3:AA:B4:FB:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjKc7Y77QfO0ogeNlLuwo6q0-wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/50e780-eca7-458e-b6aa-9dbc35672329/1/5YBiITf3HeoipiD2LesTk-XNfow.roa
Signing time: Mon 02 Jan 2023 01:25:09 +0000
ROA not before: Mon 02 Jan 2023 01:25:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211055
IP address blocks: 185.233.130.0/24 maxlen: 24
2a11:3400::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:19:b8:73:78:ef:52:ed:a9:bf:8d:18:9a:48:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca329ced8efb41f3b4a2078d94bbb0a3aab4fb02
Validity
Not Before: Jan 2 01:25:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e580622137f71dea22a620f62deb1393e5cd7e8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:87:fa:89:8d:ad:75:06:97:04:2b:25:fa:ba:
26:9c:94:7c:ed:1d:a1:0a:95:a0:7e:d8:93:ff:20:
e5:0b:30:5d:5d:18:c0:bd:58:a5:9f:e9:ba:34:b8:
b2:22:74:6c:11:49:8b:ed:8f:c9:85:f5:bb:51:4d:
52:1a:55:73:f0:c4:80:d1:49:57:0c:88:06:ec:9e:
e7:a0:e8:1f:e5:2d:0c:6b:f2:a7:a1:80:4c:11:f1:
92:c6:5b:c8:52:38:bf:45:d5:73:9e:bd:79:98:7e:
bc:ea:75:1b:19:ae:99:f8:0d:e6:de:0d:4f:82:86:
bd:fe:50:8c:22:dd:2f:a3:c2:7d:b3:e8:b4:0a:05:
c3:6f:9b:d4:17:ce:d1:65:68:af:33:1d:5b:7c:46:
27:c6:53:a8:22:7d:43:7d:7d:c0:6c:5d:26:32:c2:
fa:d7:3b:70:98:b9:66:d8:dd:52:6a:c7:27:4a:39:
86:5f:0c:64:e8:17:1a:2d:39:01:48:f9:fe:53:1d:
6c:c1:6c:ab:ef:18:36:14:5f:6a:1f:f5:a8:67:07:
f3:23:0a:fe:d0:de:93:1c:43:18:76:ac:77:3f:cd:
45:35:27:48:9d:e6:36:24:48:f2:dc:0b:ef:83:3b:
6e:7e:59:c3:a4:d1:ea:1c:e5:db:45:75:9c:7c:00:
5d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:80:62:21:37:F7:1D:EA:22:A6:20:F6:2D:EB:13:93:E5:CD:7E:8C
X509v3 Authority Key Identifier:
keyid:CA:32:9C:ED:8E:FB:41:F3:B4:A2:07:8D:94:BB:B0:A3:AA:B4:FB:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjKc7Y77QfO0ogeNlLuwo6q0-wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/50e780-eca7-458e-b6aa-9dbc35672329/1/5YBiITf3HeoipiD2LesTk-XNfow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/50e780-eca7-458e-b6aa-9dbc35672329/1/yjKc7Y77QfO0ogeNlLuwo6q0-wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.130.0/24
IPv6:
2a11:3400::/29
Signature Algorithm: sha256WithRSAEncryption
2f:0b:b9:e3:5e:83:a6:1e:0f:a8:54:cb:be:10:26:47:a7:a1:
0a:76:71:55:fd:ad:18:b9:5a:2b:29:d0:c3:a1:a3:00:7f:84:
5d:b7:a6:82:bb:9e:60:ce:8a:58:d9:9d:7b:db:dc:4f:61:01:
e6:6c:28:75:82:09:60:63:89:2d:dc:e5:29:a3:1e:c9:f6:c2:
d3:a8:91:90:db:c2:0f:06:09:19:47:af:10:75:17:ea:84:9a:
cf:27:d8:fe:24:b0:b9:dc:0b:7a:c0:4e:86:ad:34:f4:1f:14:
56:d7:91:58:d2:e8:fb:15:1f:52:f8:1e:be:6e:06:9b:e7:08:
43:94:a8:e6:bc:57:25:f6:a2:75:99:c3:91:28:16:4e:22:8a:
6f:4c:7b:f9:33:4a:18:ca:32:bd:ea:d4:f2:f1:7a:e0:7f:d6:
45:24:35:29:ba:e0:62:af:e3:51:96:5d:9a:22:95:ab:a9:7c:
79:62:82:c8:eb:63:9c:8d:9c:6f:7d:a9:7c:ac:85:0b:28:7c:
e9:27:90:1b:eb:6e:f9:23:b1:34:c0:86:f3:c8:60:61:ab:f4:
e6:22:06:ff:d0:9b:ec:e0:ed:67:59:09:54:ca:65:98:05:15:
ef:ff:18:17:67:40:b4:0c:2f:d1:85:f9:8c:89:89:d3:32:c3:
e1:0c:ed:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:55 2024 by rpki-client on console-ams.rpki-client.org