Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/869325-12c2-4fc0-b19b-0a1d4c022e51/1/5QI28ecQtdQIHWTbl_YKpJWCmf8.roa
File: 5QI28ecQtdQIHWTbl_YKpJWCmf8.roa (raw, json)
Hash identifier: cuN29P2dGTH+lqEIoOJn59LwisOhsnUdMdmEZYqkiMI=
Subject key identifier: E5:02:36:F1:E7:10:B5:D4:08:1D:64:DB:97:F6:0A:A4:95:82:99:FF
Certificate issuer: /CN=628a08e28b31bbe5c1812fda90e7e8c8a48335e8
Certificate serial: 01856F5DE57C9A7814D5E3D5F90991DE7596
Authority key identifier: 62:8A:08:E2:8B:31:BB:E5:C1:81:2F:DA:90:E7:E8:C8:A4:83:35:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YooI4osxu-XBgS_akOfoyKSDNeg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/869325-12c2-4fc0-b19b-0a1d4c022e51/1/5QI28ecQtdQIHWTbl_YKpJWCmf8.roa
Signing time: Sun 01 Jan 2023 22:05:02 +0000
ROA not before: Sun 01 Jan 2023 22:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199494
IP address blocks: 193.0.192.0/22 maxlen: 22
193.0.197.0/24 maxlen: 24
193.0.196.0/24 maxlen: 24
176.115.80.0/21 maxlen: 21
91.201.88.0/22 maxlen: 22
83.142.216.0/22 maxlen: 22
83.142.220.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:e5:7c:9a:78:14:d5:e3:d5:f9:09:91:de:75:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=628a08e28b31bbe5c1812fda90e7e8c8a48335e8
Validity
Not Before: Jan 1 22:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e50236f1e710b5d4081d64db97f60aa4958299ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:20:21:44:e4:0d:16:55:db:d3:06:5f:b9:39:
de:bf:9f:ad:0f:0a:4e:09:2a:83:86:54:4e:9c:c1:
62:62:f6:34:97:b6:23:eb:eb:84:ba:b3:3e:27:7f:
89:91:9b:b6:fd:8e:c4:90:cc:b9:c9:a1:62:a9:e7:
c6:59:16:dd:00:1f:25:4e:c4:98:f0:e6:7f:5c:d9:
6d:d5:81:5d:d0:f4:8e:ea:71:67:7e:0a:ac:2f:72:
cc:c1:f1:51:2b:a5:26:ef:03:a1:a5:54:21:52:2a:
e6:92:96:7d:1e:79:b5:a6:7c:32:e4:bf:40:56:cd:
d6:ad:9d:9a:b7:11:2f:3c:3a:e5:3a:a4:c2:e7:c3:
84:90:8e:d7:14:f3:d5:af:d9:f6:ac:0f:8c:bf:fd:
5f:fc:33:b0:bb:51:e7:ca:72:89:85:49:39:86:83:
7c:3d:4e:38:d1:c6:8b:32:15:62:cd:15:dc:e1:50:
ef:4d:c2:70:ea:f1:1c:e4:47:ae:79:f6:57:77:dd:
74:cc:49:17:09:e7:6b:cb:4e:a4:30:df:60:5a:be:
4e:7e:74:6f:e0:a4:03:0a:84:73:c8:c2:f3:e8:1f:
ac:d5:0b:df:f6:74:4d:04:a1:df:94:cd:b5:07:1f:
1f:71:19:bd:23:8b:07:d1:72:a2:c3:72:5d:54:a9:
38:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:02:36:F1:E7:10:B5:D4:08:1D:64:DB:97:F6:0A:A4:95:82:99:FF
X509v3 Authority Key Identifier:
keyid:62:8A:08:E2:8B:31:BB:E5:C1:81:2F:DA:90:E7:E8:C8:A4:83:35:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YooI4osxu-XBgS_akOfoyKSDNeg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/869325-12c2-4fc0-b19b-0a1d4c022e51/1/5QI28ecQtdQIHWTbl_YKpJWCmf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/869325-12c2-4fc0-b19b-0a1d4c022e51/1/YooI4osxu-XBgS_akOfoyKSDNeg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.142.216.0/21
91.201.88.0/22
176.115.80.0/21
193.0.192.0-193.0.197.255
Signature Algorithm: sha256WithRSAEncryption
35:af:6e:58:8d:27:b5:4d:fd:2e:d4:83:45:81:9d:f6:6d:52:
35:d0:fa:de:3b:9b:4a:5c:82:7c:fb:c4:21:f8:ad:e3:41:0b:
7a:ce:c8:bc:54:bd:bf:ef:b4:fb:1a:9a:76:fd:46:f5:ce:f7:
03:75:7d:bd:06:d5:21:25:d2:60:ab:13:6d:d5:cd:0d:86:68:
fe:df:4c:e7:5b:cb:fb:96:60:8d:63:9f:13:82:9b:ed:81:de:
13:0f:6a:0f:bf:1b:84:9d:80:a4:c1:59:19:43:25:fd:b6:bd:
97:4f:27:60:d6:b3:49:5f:76:91:24:43:e1:a0:c4:96:60:9f:
c4:3d:0c:58:1d:2d:f6:b5:f0:c4:44:b6:fe:14:6d:45:55:7c:
7e:e8:b0:85:49:b2:9d:ed:03:98:f4:42:64:1e:02:ce:dd:fc:
d3:e8:fd:50:65:6b:66:70:09:6f:27:e8:31:b5:9b:ba:01:62:
1f:87:f7:36:a3:e2:00:6c:11:d4:99:04:bd:c4:19:ec:78:c9:
cf:67:af:a8:93:a2:8d:d0:48:a0:17:e5:6b:30:95:79:5b:cc:
8f:bc:91:be:eb:b5:14:e0:cc:f0:c7:13:b8:b5:1a:12:cb:89:
61:2c:d1:1a:ab:ce:4f:90:4a:d0:43:e5:24:3f:b5:cd:c2:f7:
b4:4e:6e:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:53 2024 by rpki-client on console-fra.rpki-client.org