Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/53741e-9392-4d19-99d2-ced29650a280/1/M_K5tVoWE7d1Ii6-7jUv3vUyDTA.roa
File: M_K5tVoWE7d1Ii6-7jUv3vUyDTA.roa (raw, json)
Hash identifier: 1+t8WJNamKPk9+Ap7bxgyvmlS97XEjXvvbV3PTO+Igo=
Subject key identifier: 33:F2:B9:B5:5A:16:13:B7:75:22:2E:BE:EE:35:2F:DE:F5:32:0D:30
Certificate issuer: /CN=0da3cbf1e0e856ea4c53b5abae86594ec9933982
Certificate serial: 01871445BC003C5CF3259287D157618D2A86
Authority key identifier: 0D:A3:CB:F1:E0:E8:56:EA:4C:53:B5:AB:AE:86:59:4E:C9:93:39:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DaPL8eDoVupMU7WrroZZTsmTOYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/53741e-9392-4d19-99d2-ced29650a280/1/M_K5tVoWE7d1Ii6-7jUv3vUyDTA.roa
Signing time: Fri 24 Mar 2023 15:38:47 +0000
ROA not before: Fri 24 Mar 2023 15:38:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208545
IP address blocks: 82.215.65.0/24 maxlen: 24
178.175.180.0/24 maxlen: 24
178.175.180.0/23 maxlen: 23
178.175.181.0/24 maxlen: 24
2a12:be40:f::/48 maxlen: 48
2a12:be40:a::/48 maxlen: 48
2a12:be40:5::/48 maxlen: 48
2a12:be40::/48 maxlen: 48
2a12:be40:3::/48 maxlen: 48
2a12:be40:e::/48 maxlen: 48
2a12:be40:9::/48 maxlen: 48
2a12:be40:4::/48 maxlen: 48
2a12:be40:7::/48 maxlen: 48
2a12:be40::/29 maxlen: 29
2a12:be40:2::/48 maxlen: 48
2a12:be40:d::/48 maxlen: 48
2a12:be40:8::/48 maxlen: 48
2a12:be40:b::/48 maxlen: 48
2a12:be40:6::/48 maxlen: 48
2a12:be40:1::/48 maxlen: 48
2a12:be40:c::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:14:45:bc:00:3c:5c:f3:25:92:87:d1:57:61:8d:2a:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0da3cbf1e0e856ea4c53b5abae86594ec9933982
Validity
Not Before: Mar 24 15:38:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33f2b9b55a1613b775222ebeee352fdef5320d30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:76:92:4e:96:c2:0a:79:a7:bb:9f:cb:34:79:
fb:71:27:9e:9f:e4:e4:99:a2:7f:1e:2c:90:fa:28:
d4:51:a6:99:ce:7f:1e:1b:07:47:6f:b5:89:4f:ae:
75:c6:e8:71:7f:8c:46:51:b7:7d:9d:6d:ae:d3:c2:
a3:63:5b:c6:07:f9:35:f8:91:5e:06:dc:9b:95:79:
6d:2d:ad:b9:78:23:c1:ad:ed:00:2a:84:ae:ed:21:
c3:43:e3:3d:a0:4a:21:13:1b:db:88:ed:c8:5b:96:
ab:3a:78:22:a1:74:05:07:a9:b6:77:8b:62:11:17:
a3:b7:b0:1f:12:ba:6f:0b:65:30:37:75:2a:b4:72:
5f:0d:3a:2b:5b:a4:8c:50:b3:a6:ea:50:47:62:d6:
a1:bc:4d:b3:9f:e3:33:96:ca:46:b3:7a:69:8d:9a:
5c:6f:eb:76:95:20:39:5b:b9:a7:06:cd:da:72:bc:
e9:6b:2e:47:3b:f4:9b:11:ad:9d:fb:b0:84:f9:69:
dd:ab:a4:7d:7a:c8:e6:4c:e3:e8:4d:6f:84:9a:c3:
80:76:16:3c:ba:5b:39:2c:c7:6c:3a:86:fc:56:7d:
e5:2f:16:62:89:66:a6:d7:f4:59:e1:88:46:cd:26:
03:05:2f:3b:ef:6a:2a:ec:2b:43:c4:03:5a:10:a5:
6a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:F2:B9:B5:5A:16:13:B7:75:22:2E:BE:EE:35:2F:DE:F5:32:0D:30
X509v3 Authority Key Identifier:
keyid:0D:A3:CB:F1:E0:E8:56:EA:4C:53:B5:AB:AE:86:59:4E:C9:93:39:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DaPL8eDoVupMU7WrroZZTsmTOYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/53741e-9392-4d19-99d2-ced29650a280/1/M_K5tVoWE7d1Ii6-7jUv3vUyDTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/53741e-9392-4d19-99d2-ced29650a280/1/DaPL8eDoVupMU7WrroZZTsmTOYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.215.65.0/24
178.175.180.0/23
IPv6:
2a12:be40::/29
Signature Algorithm: sha256WithRSAEncryption
b4:eb:38:8c:ec:8e:04:15:11:db:d7:e0:ca:86:f8:1e:cd:50:
eb:10:89:6a:cf:95:93:d5:68:9b:a9:72:a6:5d:c2:71:d0:a9:
87:ef:8a:d8:68:91:de:b2:87:66:7c:7d:41:a2:2d:9d:85:cb:
12:48:bd:47:4a:5f:81:da:b6:ac:5c:bf:eb:5d:59:eb:3e:6b:
a2:94:6d:48:4f:f5:ac:cf:5a:44:81:a8:ad:d8:57:00:a4:5b:
ba:a6:51:3c:75:71:da:fb:bf:ac:5e:41:a9:45:b3:5e:ad:f7:
3f:71:e7:19:7a:d1:b8:ef:87:56:2c:23:49:5c:c2:c2:1b:c7:
d2:4f:fc:96:ee:dc:dc:27:46:84:b9:95:02:7e:05:28:46:a3:
9f:18:a4:0d:35:ed:2e:61:76:99:50:b9:a6:eb:4e:67:1e:9c:
1b:bc:99:e3:7c:34:aa:b5:1e:41:6b:04:2d:cf:ce:36:5e:92:
38:b3:8a:ef:6d:fe:ce:cf:81:0a:14:da:af:54:92:0f:cb:e4:
42:cd:cc:03:36:93:97:c7:c8:0d:31:8a:a3:04:89:76:10:c3:
26:be:ab:9e:b8:90:48:dc:ef:f9:5b:36:ba:76:6a:61:e4:7c:
ae:a9:af:a4:2b:e1:67:80:c9:23:0c:43:06:be:73:e1:7c:73:
bf:e8:5b:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:32 2024 by rpki-client on console-fra.rpki-client.org