Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/rF5i-yqM9bdvc348OkZJQ55TvJQ.roa
File: rF5i-yqM9bdvc348OkZJQ55TvJQ.roa (raw, json)
Hash identifier: sEE7br7AZnaG7S9fDUgi+mc/u88YhAJNA25NKRXiAeU=
Subject key identifier: AC:5E:62:FB:2A:8C:F5:B7:6F:73:7E:3C:3A:46:49:43:9E:53:BC:94
Certificate issuer: /CN=49e44eeea26569d0ddbd0e8637f12cf505a4ede9
Certificate serial: 018A607B8E428D321CAB61FF320316AADDDE
Authority key identifier: 49:E4:4E:EE:A2:65:69:D0:DD:BD:0E:86:37:F1:2C:F5:05:A4:ED:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeRO7qJladDdvQ6GN_Es9QWk7ek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/rF5i-yqM9bdvc348OkZJQ55TvJQ.roa
Signing time: Mon 04 Sep 2023 13:57:04 +0000
ROA not before: Mon 04 Sep 2023 13:57:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35676
IP address blocks: 178.213.66.0/23 maxlen: 23
178.213.66.0/24 maxlen: 24
178.213.67.0/24 maxlen: 24
178.213.65.0/24 maxlen: 24
178.213.70.0/24 maxlen: 24
178.213.71.0/24 maxlen: 24
178.213.68.0/22 maxlen: 22
178.213.68.0/24 maxlen: 24
178.213.69.0/24 maxlen: 24
178.213.64.0/24 maxlen: 24
178.213.64.0/23 maxlen: 23
178.213.64.0/22 maxlen: 22
193.105.186.0/24 maxlen: 24
194.5.88.0/24 maxlen: 24
194.5.88.0/23 maxlen: 23
194.5.89.0/24 maxlen: 24
195.234.36.0/24 maxlen: 24
185.16.252.0/23 maxlen: 23
185.16.252.0/24 maxlen: 24
185.16.252.0/22 maxlen: 22
185.16.253.0/24 maxlen: 24
185.16.255.0/24 maxlen: 24
185.16.254.0/24 maxlen: 24
185.16.254.0/23 maxlen: 23
2a03:6f81::/32 maxlen: 33
2a03:6f81::/33 maxlen: 33
2a03:6f82::/32 maxlen: 32
2a03:6f80:100::/40 maxlen: 40
2a03:6f80::/33 maxlen: 33
2a03:6f80::/32 maxlen: 33
Validation: Failed, certificate revoked on Mon 04 Sep 2023 14:04:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:60:7b:8e:42:8d:32:1c:ab:61:ff:32:03:16:aa:dd:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e44eeea26569d0ddbd0e8637f12cf505a4ede9
Validity
Not Before: Sep 4 13:57:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac5e62fb2a8cf5b76f737e3c3a4649439e53bc94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:0a:69:4b:0e:3d:e6:17:ea:e8:74:02:32:90:
47:c3:dc:8b:5d:00:43:cd:f8:3b:b4:ec:da:a6:a4:
ab:35:13:bd:df:3d:bf:a1:ca:e4:7a:58:54:13:1c:
aa:00:4b:c8:8d:59:66:bd:31:78:2f:b8:69:e2:54:
6a:47:79:32:6e:14:40:9e:b1:55:e5:1f:17:40:8b:
df:54:7d:4c:09:dd:5b:65:ba:11:c0:7b:91:0e:96:
f7:65:95:9c:1f:48:d0:45:3a:ce:b2:1b:19:f4:b4:
d5:3a:aa:d0:e1:59:9b:9a:23:1a:89:2b:e5:c3:7b:
6e:38:bd:61:eb:ec:0a:1a:9a:54:d2:23:6d:88:ca:
08:ef:53:d9:a3:08:77:45:da:07:bd:b4:a4:c1:75:
99:81:68:12:77:a8:90:de:a5:dc:5d:7f:33:16:2b:
f7:6c:9e:a7:e3:53:28:40:3c:b8:9a:49:31:11:db:
64:cd:57:9d:bf:77:cd:ec:de:b0:e4:f0:ea:a7:bf:
51:45:96:5e:15:eb:aa:8b:34:18:6e:9a:83:74:ff:
c8:d7:ae:b6:71:79:64:63:72:38:a0:19:d1:ec:89:
9e:8e:6e:6a:89:04:02:cf:49:6c:0c:7f:78:a3:f7:
df:de:a9:e7:9d:bb:d9:4f:5c:44:4d:b8:c7:aa:03:
15:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:5E:62:FB:2A:8C:F5:B7:6F:73:7E:3C:3A:46:49:43:9E:53:BC:94
X509v3 Authority Key Identifier:
keyid:49:E4:4E:EE:A2:65:69:D0:DD:BD:0E:86:37:F1:2C:F5:05:A4:ED:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeRO7qJladDdvQ6GN_Es9QWk7ek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/rF5i-yqM9bdvc348OkZJQ55TvJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/SeRO7qJladDdvQ6GN_Es9QWk7ek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.213.64.0/21
185.16.252.0/22
193.105.186.0/24
194.5.88.0/23
195.234.36.0/24
IPv6:
2a03:6f80::-2a03:6f82:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
92:69:96:0a:52:2a:cb:a2:c9:5c:99:09:94:90:2a:f1:9d:55:
a9:87:32:b3:4b:9c:30:bd:ea:e1:84:40:b6:93:43:8c:8c:53:
7b:f7:54:05:cb:fc:a9:d6:65:22:71:7c:e6:ea:5b:fe:89:52:
d5:28:75:5b:22:fa:0f:98:21:1b:7a:81:1f:be:84:91:bb:8e:
a8:d4:20:be:35:d4:8a:fa:81:bc:4b:26:db:1d:de:60:dc:4a:
ec:27:bf:dc:15:46:22:60:8c:d8:f7:54:ca:09:3e:ba:9a:b7:
20:a6:f0:80:9a:af:ca:7e:67:23:a1:70:6e:d8:ac:52:83:89:
a7:ad:bd:21:4e:cb:e4:9d:10:d6:f1:3e:03:33:e4:b8:47:42:
1e:9e:87:00:cd:df:52:06:c4:85:a9:06:3f:24:9f:67:6c:38:
c8:98:b3:ab:ae:d9:f3:37:0d:ff:27:20:50:e3:9f:3d:a9:80:
83:4d:97:11:98:69:27:7c:57:da:57:15:dc:87:7d:af:b7:0a:
9e:2e:81:ca:65:4c:60:eb:c1:64:15:73:73:8a:5a:ac:e3:7d:
7e:45:4f:46:51:63:76:64:2b:a1:a6:4d:93:4a:32:96:12:7c:
89:c2:28:6b:2a:aa:f4:ed:a0:b7:99:a5:f7:f9:66:0d:b8:9f:
60:c0:68:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:52 2024 by rpki-client on console-ams.rpki-client.org