Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/vn6dUkRkR-M94yTPc57Thntm4j8.roa
File: vn6dUkRkR-M94yTPc57Thntm4j8.roa (raw, json)
Hash identifier: U+kuFf2kmglcIRyPa1kTPR+4QzikvR0E89GNHHssbac=
Subject key identifier: BE:7E:9D:52:44:64:47:E3:3D:E3:24:CF:73:9E:D3:86:7B:66:E2:3F
Certificate issuer: /CN=5a756994bb292e49ecc6337b7f95d69ee2af61e1
Certificate serial: 0187C784CB55DA4AD34BEE1702F0EA11326D
Authority key identifier: 5A:75:69:94:BB:29:2E:49:EC:C6:33:7B:7F:95:D6:9E:E2:AF:61:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WnVplLspLknsxjN7f5XWnuKvYeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/vn6dUkRkR-M94yTPc57Thntm4j8.roa
Signing time: Fri 28 Apr 2023 10:59:41 +0000
ROA not before: Fri 28 Apr 2023 10:59:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29037
IP address blocks: 185.39.108.0/22 maxlen: 24
93.119.240.0/20 maxlen: 24
82.115.96.0/19 maxlen: 24
212.7.160.0/19 maxlen: 24
5.57.192.0/21 maxlen: 24
2a02:1628::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 11 Sep 2023 14:42:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c7:84:cb:55:da:4a:d3:4b:ee:17:02:f0:ea:11:32:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a756994bb292e49ecc6337b7f95d69ee2af61e1
Validity
Not Before: Apr 28 10:59:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be7e9d52446447e33de324cf739ed3867b66e23f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8b:63:ac:f1:bf:7e:bc:9a:cb:14:d9:b1:92:
9c:ca:b7:27:b8:bf:7d:fa:12:26:7c:47:09:5d:e1:
96:75:9c:9a:d5:60:18:39:0b:0a:64:8d:a5:84:a4:
e0:03:55:e7:f2:c2:62:c1:29:30:d6:59:9c:e1:99:
ab:a9:83:ca:a0:eb:8a:7b:3e:e2:df:01:fa:6f:11:
d1:3c:f2:27:d2:53:c3:96:5f:b1:c9:34:01:03:4b:
0c:00:88:89:ec:ee:70:44:34:ff:7f:ca:84:af:e1:
84:93:45:fd:40:1a:33:90:e7:a7:44:07:1e:77:5d:
9a:31:91:f9:05:82:0c:02:a1:32:3b:82:6e:c9:0d:
43:c4:f5:57:60:ee:1c:5a:ff:8b:bd:8e:b2:a5:b8:
b9:0e:18:b2:d4:4c:88:18:1a:8b:8e:b8:14:b8:51:
5e:7d:1f:6c:0e:2e:e0:8d:cc:63:05:e1:46:08:ab:
26:09:b5:3c:73:28:81:a0:f5:4c:ec:26:50:8d:ce:
4a:2d:99:db:34:67:c8:8c:cb:8a:86:8c:41:94:c0:
35:d2:05:5e:a5:51:59:42:f4:bd:61:98:51:4d:e9:
62:a9:7b:62:c8:a4:5c:a2:ad:fa:f8:46:b7:d5:c0:
d8:fc:0d:5e:05:08:45:5e:1e:af:72:49:8d:77:b8:
18:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:7E:9D:52:44:64:47:E3:3D:E3:24:CF:73:9E:D3:86:7B:66:E2:3F
X509v3 Authority Key Identifier:
keyid:5A:75:69:94:BB:29:2E:49:EC:C6:33:7B:7F:95:D6:9E:E2:AF:61:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WnVplLspLknsxjN7f5XWnuKvYeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/vn6dUkRkR-M94yTPc57Thntm4j8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/WnVplLspLknsxjN7f5XWnuKvYeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.192.0/21
82.115.96.0/19
93.119.240.0/20
185.39.108.0/22
212.7.160.0/19
IPv6:
2a02:1628::/32
Signature Algorithm: sha256WithRSAEncryption
63:c1:9c:7c:dc:ca:78:b2:f1:14:f5:ac:00:9d:08:07:e1:52:
a3:34:33:4f:c0:61:26:c8:79:8c:88:6f:b7:9a:81:ae:c9:95:
46:74:0a:48:72:7a:30:6a:f4:f9:27:28:3f:2d:0a:8b:c9:81:
35:b3:62:b6:eb:2d:8a:ef:57:ba:ea:25:40:6c:fb:5f:5c:f3:
cd:15:fe:0d:c4:88:12:0d:82:67:e6:1c:03:df:b2:97:1c:ba:
dd:e6:c5:45:27:eb:5e:3b:40:d9:ab:28:78:96:5d:85:f9:fc:
f2:63:ab:78:b9:6a:05:0b:ae:0c:cb:a4:fb:cd:d5:13:63:62:
05:d4:eb:67:c5:f1:7b:ed:87:b0:d5:c8:f5:46:21:1e:e9:5a:
6b:df:60:c6:83:10:54:18:ab:78:2d:07:0f:c6:e4:40:2f:1e:
3b:d2:46:5a:0d:c2:20:98:0e:0d:82:c0:37:c2:35:70:d3:4c:
a3:f3:1f:b5:82:88:d1:7a:fe:18:20:91:7e:9f:08:78:4e:d5:
3b:60:70:d5:ff:01:65:55:84:6b:46:1a:8c:10:72:c6:11:22:
b9:2f:dd:a1:f5:ee:d9:92:c0:60:0d:e1:a6:b0:6a:b1:88:29:
83:03:af:84:b4:70:d6:67:15:64:c4:23:e0:64:6d:65:f4:e6:
76:cc:ac:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:28 2024 by rpki-client on console-fra.rpki-client.org