Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/UnQP1MgOY_-ZQZUTCYBJ0OUy6U4.roa
File: UnQP1MgOY_-ZQZUTCYBJ0OUy6U4.roa (raw, json)
Hash identifier: RnianYhgapMOXMkofxyZj1xWdqtGB/oxFZF+K+5cAqo=
Subject key identifier: 52:74:0F:D4:C8:0E:63:FF:99:41:95:13:09:80:49:D0:E5:32:E9:4E
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 0186257F10B9197D105EBA183EAB9DCA08C0
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/UnQP1MgOY_-ZQZUTCYBJ0OUy6U4.roa
Signing time: Mon 06 Feb 2023 06:52:09 +0000
ROA not before: Mon 06 Feb 2023 06:52:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51431
IP address blocks: 89.235.78.0/23 maxlen: 24
213.195.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Nov 2023 12:43:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:25:7f:10:b9:19:7d:10:5e:ba:18:3e:ab:9d:ca:08:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Feb 6 06:52:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52740fd4c80e63ff99419513098049d0e532e94e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:da:f6:ae:79:38:8c:2d:31:2c:a6:7a:39:a9:
8d:7f:75:36:be:17:12:9a:27:02:d4:7f:a5:5d:49:
00:5b:21:a0:0d:e5:d0:81:5b:9e:c7:85:fb:d9:a3:
34:53:3f:ee:eb:a5:ca:4f:8f:fd:8d:a3:cc:b4:1e:
df:02:e9:ef:47:9c:f6:40:1b:f4:e4:a7:82:01:b5:
ff:87:da:de:0d:a1:6d:fc:ae:b7:e3:39:4f:95:53:
f2:76:6f:26:c7:99:bd:17:c6:d8:1c:24:91:f9:4f:
8d:28:ed:3d:40:49:7a:41:7f:1b:ab:d8:96:32:7b:
58:08:5d:80:20:62:c7:e9:99:09:84:e7:17:88:d7:
98:28:22:e3:01:0e:ca:9a:23:5d:28:2a:ed:4a:66:
be:49:57:47:c4:79:0e:b2:20:c6:d5:67:1f:fc:f3:
15:8f:54:e7:16:80:4e:67:b6:50:49:99:e1:a1:99:
87:61:5c:a7:fb:22:a2:4e:30:0f:e4:82:c9:8a:7f:
45:56:78:87:fe:d2:65:67:9a:67:c6:02:54:10:73:
2e:f7:c1:16:e9:47:11:73:cb:d5:3a:16:16:84:9c:
2d:55:18:49:b1:dc:b6:15:4d:f5:9e:fa:b4:07:de:
e8:8e:31:6d:88:1e:df:6d:da:83:30:73:0a:65:ff:
d5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:74:0F:D4:C8:0E:63:FF:99:41:95:13:09:80:49:D0:E5:32:E9:4E
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/UnQP1MgOY_-ZQZUTCYBJ0OUy6U4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.235.78.0/23
213.195.22.0/24
Signature Algorithm: sha256WithRSAEncryption
47:5c:f7:0d:bc:12:ba:00:3f:ec:23:16:c0:63:aa:f4:ad:82:
b3:b9:32:e9:eb:70:54:07:26:4f:83:43:5f:e9:08:60:40:f7:
a2:70:aa:3a:7c:4b:29:b4:9a:07:a6:8f:cd:a1:50:b8:e0:c3:
03:d8:8b:ed:69:29:31:6c:51:13:39:12:66:ed:d8:79:44:41:
98:e6:6a:9f:1a:c5:b8:4a:a6:26:b7:2c:8c:3b:60:14:bf:91:
db:51:e6:86:80:d7:d6:2e:89:dc:77:43:67:7c:2e:35:6b:fa:
81:a5:b0:87:72:50:75:b9:07:78:4e:1a:6a:e0:51:da:6e:eb:
d2:b0:2b:21:90:9c:2e:14:1f:df:d5:b1:3c:77:9e:a2:f2:fd:
c8:fc:24:ea:f1:4d:99:29:52:15:89:8e:06:dc:4f:c8:69:7e:
6d:8b:13:64:5c:90:66:84:54:c5:b3:30:93:7e:d9:a1:df:48:
45:3a:34:36:18:31:62:de:c1:8f:39:47:cb:67:a4:95:d3:63:
3a:76:42:68:0c:89:ce:e6:28:d0:6c:51:db:4b:c6:7a:fc:ca:
78:df:59:e6:29:33:27:77:83:b1:d9:16:ed:c4:79:66:2f:82:
fa:fa:f8:33:96:9c:ac:98:9e:ce:31:4f:d5:59:b6:55:30:ed:
8c:58:a8:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:02 2024 by rpki-client on console-fra.rpki-client.org