Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/6WtYUCcyTug9DpXQFwa-YOiUpc8.roa
File: 6WtYUCcyTug9DpXQFwa-YOiUpc8.roa (raw, json)
Hash identifier: b7j6jNMhI3V7H5GZYSQDdky2xS98EsK+pWFLebqL2Ko=
Subject key identifier: E9:6B:58:50:27:32:4E:E8:3D:0E:95:D0:17:06:BE:60:E8:94:A5:CF
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 018BF1E81988112F2608640AF5119FFAD13F
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/6WtYUCcyTug9DpXQFwa-YOiUpc8.roa
Signing time: Tue 21 Nov 2023 12:43:21 +0000
ROA not before: Tue 21 Nov 2023 12:43:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51431
IP address blocks: 89.235.78.0/23 maxlen: 24
188.75.78.0/24 maxlen: 24
213.195.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Dec 2023 09:46:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f1:e8:19:88:11:2f:26:08:64:0a:f5:11:9f:fa:d1:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Nov 21 12:43:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e96b585027324ee83d0e95d01706be60e894a5cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a4:18:1e:39:bb:cb:19:30:48:9d:39:11:05:
72:f7:04:8b:c0:92:3a:19:b0:ce:e7:07:d4:63:7f:
47:04:0d:5f:15:38:70:16:d9:f7:05:a2:67:da:38:
82:6b:45:fe:c7:ee:cb:1f:d6:8f:ff:34:e1:1c:fe:
03:4f:c1:95:48:26:56:bf:b2:b5:09:3c:77:b7:5d:
7d:3a:08:85:02:96:cf:8a:59:78:5e:f1:0b:a7:ef:
45:10:52:a1:82:ce:8d:37:5b:b2:34:10:a9:72:3a:
b9:17:85:d8:8d:cf:95:ac:9b:2c:46:9a:3f:2d:8a:
60:46:da:f2:1d:75:2e:12:d9:ae:84:23:00:9e:ce:
d7:e4:fb:c6:d2:12:38:06:ce:58:c0:e0:2a:d8:c5:
30:80:ab:8b:34:fb:50:1f:75:96:b6:4e:74:4e:9a:
b7:e6:78:74:42:85:43:ce:43:42:db:b8:ee:cc:48:
4b:55:6a:6f:e4:7d:ba:49:c6:1c:3d:bd:c6:72:4d:
39:fb:c4:7b:ce:4d:98:5c:fc:30:3f:e9:27:ae:26:
19:99:bc:f8:82:71:c8:76:db:ec:e4:63:7c:3b:16:
21:9d:3a:3f:d8:c9:74:92:13:7d:84:df:fc:31:06:
19:df:b1:0a:b7:ff:a0:fb:ec:4a:2d:ed:bc:50:8c:
ff:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:6B:58:50:27:32:4E:E8:3D:0E:95:D0:17:06:BE:60:E8:94:A5:CF
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/6WtYUCcyTug9DpXQFwa-YOiUpc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.235.78.0/23
188.75.78.0/24
213.195.22.0/24
Signature Algorithm: sha256WithRSAEncryption
29:52:26:7a:65:59:8a:4c:ab:1a:11:01:76:a0:38:bb:04:81:
9a:85:6b:fe:3c:98:ee:21:ad:4f:7a:d6:24:01:6a:60:ce:be:
09:32:ae:e1:0d:59:bb:25:e5:35:bf:b9:12:b0:d1:35:79:e9:
f5:f8:ea:c1:6c:0d:d0:52:6a:ab:aa:de:fb:81:17:1f:3a:39:
08:1e:82:65:8d:57:eb:9e:04:b9:29:2c:eb:1c:36:fa:a8:13:
2a:55:31:b1:40:0d:d8:79:ff:6e:91:39:00:30:db:e8:6a:32:
51:8c:10:2b:f5:f9:3a:13:ec:09:d4:df:09:cb:fd:f0:f9:f9:
ee:07:b3:fd:fa:d5:65:f9:50:79:a6:af:48:71:e9:c5:d5:29:
99:23:85:58:14:27:ed:de:56:97:eb:27:f5:10:6b:46:01:55:
6a:9a:c3:b2:b2:4c:5b:14:42:21:c7:45:66:6e:1c:ac:ae:80:
23:6a:e8:db:f7:09:fc:dd:0d:aa:f6:d6:70:66:ee:14:d4:60:
87:81:ce:2c:c5:6b:11:d1:76:53:fc:96:a6:c3:db:b5:47:1e:
0f:26:18:97:b2:c7:3c:52:d5:cf:97:17:80:70:39:33:28:dc:
87:ac:d7:35:ee:3b:43:fb:a8:bd:bf:12:8c:bc:80:6b:e3:60:
39:ae:85:97
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYvx6BmIES8mCGQK9RGf+tE/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViNjk4YzRiNjEyYWZlZTJjYmIxY2RkNTA5ZTRmMDI0NmZi
YjgwZTEwHhcNMjMxMTIxMTI0MzIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOTZiNTg1MDI3MzI0ZWU4M2QwZTk1ZDAxNzA2YmU2MGU4OTRhNWNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoaQYHjm7yxkwSJ05EQVy9wSLwJI6
GbDO5wfUY39HBA1fFThwFtn3BaJn2jiCa0X+x+7LH9aP/zThHP4DT8GVSCZWv7K1
CTx3t119OgiFApbPill4XvELp+9FEFKhgs6NN1uyNBCpcjq5F4XYjc+VrJssRpo/
LYpgRtryHXUuEtmuhCMAns7X5PvG0hI4Bs5YwOAq2MUwgKuLNPtQH3WWtk50Tpq3
5nh0QoVDzkNC27juzEhLVWpv5H26ScYcPb3Gck05+8R7zk2YXPwwP+knriYZmbz4
gnHIdtvs5GN8OxYhnTo/2Ml0khN9hN/8MQYZ37EKt/+g++xKLe28UIz//wIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFOlrWFAnMk7oPQ6V0BcGvmDolKXPMB8GA1UdIwQY
MBaAFFtpjEthKv7iy7HN1Qnk8CRvu4DhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVzJtTVMyRXFfdUxMc2MzVkNlVHdKRy03Z09FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9jMTZmNTUtYjQ0ZC00MGMzLTlkYWMt
Y2MyZmFmZTNhOGI0LzEvNld0WVVDY3lUdWc5RHBYUUZ3YS1ZT2lVcGM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9jMTZmNTUtYjQ0ZC00MGMzLTlkYWMtY2MyZmFmZTNhOGI0
LzEvVzJtTVMyRXFfdUxMc2MzVkNlVHdKRy03Z09FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBWetOAwQA
vEtOAwQA1cMWMA0GCSqGSIb3DQEBCwUAA4IBAQApUiZ6ZVmKTKsaEQF2oDi7BIGa
hWv+PJjuIa1PetYkAWpgzr4JMq7hDVm7JeU1v7kSsNE1een1+OrBbA3QUmqrqt77
gRcfOjkIHoJljVfrngS5KSzrHDb6qBMqVTGxQA3Yef9ukTkAMNvoajJRjBAr9fk6
E+wJ1N8Jy/3w+fnuB7P9+tVl+VB5pq9IcenF1SmZI4VYFCft3laX6yf1EGtGAVVq
msOyskxbFEIhx0VmbhysroAjaujb9wn83Q2q9tZwZu4U1GCHgc4sxWsR0XZT/Jam
w9u1Rx4PJhiXssc8UtXPlxeAcDkzKNyHrNc17jtD+6i9vxKMvIBr42A5roWX
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:01 2024 by rpki-client on console-fra.rpki-client.org