Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/vk0CRYuQyIYj8gY2mu19IdmEXVw.roa
File: vk0CRYuQyIYj8gY2mu19IdmEXVw.roa (raw, json)
Hash identifier: yJTewCapHkY4lBuMR7yy+Kh9jEAM5JwvJJIf4nTSlhs=
Subject key identifier: BE:4D:02:45:8B:90:C8:86:23:F2:06:36:9A:ED:7D:21:D9:84:5D:5C
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 018C5D6B5D462CD5FC8AD4FBAF77B4472A2A
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/vk0CRYuQyIYj8gY2mu19IdmEXVw.roa
Signing time: Tue 12 Dec 2023 09:46:06 +0000
ROA not before: Tue 12 Dec 2023 09:46:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51431
IP address blocks: 89.235.78.0/23 maxlen: 24
188.75.78.0/23 maxlen: 24
213.195.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5d:6b:5d:46:2c:d5:fc:8a:d4:fb:af:77:b4:47:2a:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Dec 12 09:46:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be4d02458b90c88623f206369aed7d21d9845d5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:ad:8e:bb:b2:98:49:40:b7:5a:39:2d:27:a2:
36:4b:73:34:a4:67:91:90:49:f1:2f:1d:06:2d:7f:
ae:b5:0e:db:c3:44:4d:b2:1a:e5:fb:af:c0:b5:46:
30:d3:3e:2a:26:d8:d4:11:3e:70:58:50:54:27:37:
8f:a9:df:99:4c:ea:d9:78:ff:2d:1c:7a:0e:b8:87:
aa:9a:21:b5:15:16:d0:f1:1b:97:fa:e3:72:7f:80:
23:37:00:2e:8c:e0:cf:47:06:0c:77:b6:70:04:d4:
b1:17:bb:e8:96:e5:ea:fb:bf:40:10:ec:b8:a9:cc:
3f:88:73:a4:33:ef:a0:97:64:c3:21:73:cd:49:f5:
b8:57:07:dd:f7:71:d6:42:be:7a:eb:ee:83:2d:15:
03:b1:28:61:fa:be:a3:28:4b:5b:5a:e4:60:49:1a:
87:c5:f3:e3:e6:5b:84:ad:92:b8:f4:4f:42:8b:cf:
cb:44:8f:0d:80:54:3a:33:34:f5:45:63:c1:17:bd:
04:cc:2c:90:48:b7:09:f8:03:aa:14:4b:4e:b5:5a:
b7:12:5f:d8:84:7e:73:5d:cd:d2:4c:c3:ba:b1:a2:
f9:43:d2:7a:0b:e9:9f:ec:b4:4e:29:65:9c:2a:a7:
d9:3d:c1:3e:e9:67:e0:7a:e8:02:12:67:72:bf:f9:
6a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:4D:02:45:8B:90:C8:86:23:F2:06:36:9A:ED:7D:21:D9:84:5D:5C
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/vk0CRYuQyIYj8gY2mu19IdmEXVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.235.78.0/23
188.75.78.0/23
213.195.22.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:69:77:8c:eb:16:cc:79:c6:ce:17:8f:c5:1e:13:ad:7f:13:
eb:20:99:05:1d:77:fd:4a:1a:a5:c2:42:0d:eb:10:78:31:c8:
1c:e9:c0:7e:a1:8d:0b:d4:72:ca:1f:94:e6:36:7e:3a:d4:c3:
e0:99:4f:82:f1:cf:ce:db:39:43:d6:13:99:78:50:cd:26:08:
e3:21:4c:cb:72:54:7a:2b:d7:a0:26:2b:28:f7:b6:1d:c7:36:
8a:d0:17:19:f3:c2:eb:76:c9:92:21:99:bb:6b:1b:dc:eb:ea:
ff:88:4d:a7:ec:25:3f:c7:90:54:1b:d4:67:51:5c:4e:dc:12:
a4:c0:b1:5b:23:d8:ad:fe:c6:c4:a1:0f:60:36:46:a2:ac:5f:
15:18:8e:9d:77:36:0a:84:31:d3:4d:2d:f0:c3:c9:7d:a8:16:
b9:18:04:00:2f:4d:c5:d5:69:ed:ba:dd:23:90:d5:9d:f8:30:
21:29:52:d8:98:8b:da:42:4b:18:a3:ad:f3:0a:08:f2:f2:87:
72:f5:34:56:7c:bf:7a:9e:69:7e:77:69:76:c7:3e:30:5a:19:
40:2d:31:70:59:bb:42:07:e0:34:ee:2b:14:4b:cc:72:0c:2a:
b9:58:99:73:ff:c1:5f:86:fd:fd:91:f7:aa:6d:ab:fb:fb:49:
7b:32:f5:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:02 2024 by rpki-client on console-fra.rpki-client.org