Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/dpAlO8eZOuN6cezvH_hAeprEmzw.roa
File: dpAlO8eZOuN6cezvH_hAeprEmzw.roa (raw, json)
Hash identifier: icJUPlfszQ8MD96j1LKXNodmvImMiMtfpOs4FquDAIU=
Subject key identifier: 76:90:25:3B:C7:99:3A:E3:7A:71:EC:EF:1F:F8:40:7A:9A:C4:9B:3C
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 01856F94C84EFC3952D747B4CB58FCEA28A5
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/dpAlO8eZOuN6cezvH_hAeprEmzw.roa
Signing time: Sun 01 Jan 2023 23:04:59 +0000
ROA not before: Sun 01 Jan 2023 23:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202391
IP address blocks: 217.146.219.0/24 maxlen: 24
217.146.223.0/24 maxlen: 24
185.82.166.0/23 maxlen: 23
79.132.204.0/24 maxlen: 24
79.132.200.0/22 maxlen: 22
79.132.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 08 Oct 2023 13:32:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:c8:4e:fc:39:52:d7:47:b4:cb:58:fc:ea:28:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Jan 1 23:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7690253bc7993ae37a71ecef1ff8407a9ac49b3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:82:ca:96:8c:05:5c:98:f7:53:83:08:80:4d:
69:b6:1a:83:bd:af:15:5a:aa:79:e3:ef:f5:30:c9:
2a:d9:e3:e8:e9:47:63:ab:13:99:e2:7f:bd:76:4c:
98:4c:c5:b1:a2:d0:2b:77:ba:f1:4b:10:9d:a6:0d:
d1:1a:e6:4b:72:db:f8:e9:5f:52:c8:25:36:b7:62:
3f:73:d0:ff:2f:30:a3:a8:e2:91:93:8e:1a:55:df:
9d:f8:8e:61:90:97:fb:c5:91:1f:61:3a:cf:d5:97:
e0:6e:c8:21:59:da:53:1a:30:2d:d3:7f:4f:e3:8f:
aa:83:a1:da:2d:21:24:f7:fc:f7:14:51:ed:cf:78:
62:ec:2f:1c:b9:ad:91:ad:42:58:32:f7:a0:c7:c5:
48:3a:3b:5b:9d:5d:8b:69:09:4c:b5:3e:c2:59:f7:
52:57:d2:6b:c0:46:56:82:4a:77:cf:a6:33:8a:7f:
ae:8a:06:10:83:3f:09:ba:fd:c4:06:1c:df:1f:37:
06:6f:a8:57:10:1a:76:f3:68:2e:c2:4c:b9:73:79:
67:52:d3:ab:a5:6a:c4:20:8e:90:38:39:fc:4c:99:
4a:7a:5c:0b:97:56:69:45:dd:6f:d9:d2:6a:2a:af:
91:10:47:34:08:6a:c0:61:5d:f2:eb:9a:50:90:15:
f8:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:90:25:3B:C7:99:3A:E3:7A:71:EC:EF:1F:F8:40:7A:9A:C4:9B:3C
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/dpAlO8eZOuN6cezvH_hAeprEmzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.200.0-79.132.204.255
79.132.209.0/24
185.82.166.0/23
217.146.219.0/24
217.146.223.0/24
Signature Algorithm: sha256WithRSAEncryption
67:f9:99:19:90:d3:b7:7b:25:41:c6:b4:f4:04:d9:b7:86:96:
e2:7e:8d:0c:7f:c0:d3:a3:1f:b2:22:83:0e:95:36:68:16:24:
05:c8:21:4e:56:21:a9:4b:ad:fc:5e:f1:4e:87:7c:3b:6b:23:
f3:aa:72:08:b9:51:b6:01:a1:bb:0b:1e:00:8a:79:33:80:0e:
71:ee:e6:63:c9:4b:66:c6:32:2c:f2:67:72:de:93:0a:79:0c:
fc:ee:05:14:c1:ed:59:80:b4:19:e0:2e:69:cc:7e:c3:31:b5:
26:c2:b2:e4:81:59:63:22:c3:11:b2:28:22:33:42:6c:6f:83:
fa:24:41:fc:60:43:a3:65:b8:18:b3:7d:28:5c:47:a2:f6:6d:
e9:ae:df:3a:9e:2d:55:a6:39:59:f3:89:b5:ce:f4:b1:f6:54:
ef:6e:6c:09:98:ae:55:2a:30:c7:11:30:c7:a2:75:ab:5d:70:
c0:d4:05:7b:63:e0:52:0d:59:c9:ae:6e:9e:a9:98:00:1c:61:
e8:be:2c:32:08:90:ca:e8:f3:55:9c:ba:f1:62:4f:a2:e2:1f:
05:84:8e:db:e1:3f:31:3f:c8:bf:fb:f8:96:d4:c1:c5:35:21:
1d:10:40:21:d3:c8:4e:87:76:a7:a5:36:a2:fc:03:75:f8:3b:
4e:93:48:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:06 2024 by rpki-client on console-ams.rpki-client.org