Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/460c00-3e95-4274-bc9c-060dacfebe0f/1/5lr4ykC4BVbEmv9pg_I9uQdqO3Y.roa
File: 5lr4ykC4BVbEmv9pg_I9uQdqO3Y.roa (raw, json)
Hash identifier: WSR11Yc6CA7enIyJrchoD7KFWdTqoPPdbZqsOCdL5lA=
Subject key identifier: E6:5A:F8:CA:40:B8:05:56:C4:9A:FF:69:83:F2:3D:B9:07:6A:3B:76
Certificate issuer: /CN=05bfdbb6a4b1663369da407db97b021f73284a28
Certificate serial: 018EAECF23601EDBDF422983ED135D00D5B6
Authority key identifier: 05:BF:DB:B6:A4:B1:66:33:69:DA:40:7D:B9:7B:02:1F:73:28:4A:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bb_btqSxZjNp2kB9uXsCH3MoSig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/460c00-3e95-4274-bc9c-060dacfebe0f/1/5lr4ykC4BVbEmv9pg_I9uQdqO3Y.roa
Signing time: Fri 05 Apr 2024 15:09:54 +0000
ROA not before: Fri 05 Apr 2024 15:09:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8282
IP address blocks: 78.110.171.0/24 maxlen: 24
78.157.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 13:56:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ae:cf:23:60:1e:db:df:42:29:83:ed:13:5d:00:d5:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05bfdbb6a4b1663369da407db97b021f73284a28
Validity
Not Before: Apr 5 15:09:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e65af8ca40b80556c49aff6983f23db9076a3b76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d5:c0:69:37:32:90:a6:4d:3d:15:30:de:6c:
e4:e3:5c:c9:97:58:66:c0:4e:12:b0:da:19:1d:42:
3a:1d:6e:5b:21:8c:11:c9:35:1a:2d:a5:4e:cf:67:
a7:ce:ef:d4:5c:f3:e8:79:2c:27:76:3b:67:52:5b:
d1:6c:ff:98:36:1a:71:99:f0:4b:9d:3b:7b:27:8d:
62:54:91:c4:ec:e2:d8:55:ba:e7:35:24:dd:a8:b7:
f8:62:65:36:46:b1:2c:6f:96:5b:f5:4c:41:da:64:
22:f3:28:1e:11:9a:42:55:20:43:da:78:81:0c:51:
5b:22:57:5a:89:c5:87:4e:9d:1b:b5:35:8e:9e:1d:
38:24:7d:ed:d8:33:5f:80:d4:7e:4d:e4:3f:01:32:
e2:85:2e:19:1b:0d:3b:01:60:0e:56:a1:dc:f3:49:
a9:22:de:2e:ca:f9:2f:56:b5:64:30:2e:74:93:d9:
17:4e:36:3b:cc:64:64:f3:b8:27:e4:80:a4:01:27:
82:ca:52:39:46:ae:6c:26:af:7d:aa:c5:e2:ef:90:
c1:86:ba:2c:98:34:f7:50:90:4b:c1:34:69:5c:83:
a5:c8:40:1e:1c:fa:2e:10:91:aa:a6:08:d7:48:fb:
47:1a:c4:36:bb:eb:64:0b:60:01:c9:8d:07:82:1c:
97:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:5A:F8:CA:40:B8:05:56:C4:9A:FF:69:83:F2:3D:B9:07:6A:3B:76
X509v3 Authority Key Identifier:
keyid:05:BF:DB:B6:A4:B1:66:33:69:DA:40:7D:B9:7B:02:1F:73:28:4A:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bb_btqSxZjNp2kB9uXsCH3MoSig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/460c00-3e95-4274-bc9c-060dacfebe0f/1/5lr4ykC4BVbEmv9pg_I9uQdqO3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/460c00-3e95-4274-bc9c-060dacfebe0f/1/Bb_btqSxZjNp2kB9uXsCH3MoSig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.110.171.0/24
78.157.205.0/24
Signature Algorithm: sha256WithRSAEncryption
29:0b:2a:29:5a:5e:96:49:fb:30:46:b0:62:e7:1f:f2:8d:98:
e8:7f:ce:f2:eb:81:06:65:56:21:22:06:f9:53:c9:25:46:6e:
dc:af:f9:18:a0:ed:51:d9:44:00:d0:eb:5b:80:dc:39:2c:e1:
04:b3:54:ff:8b:9f:17:79:b2:6e:13:93:49:62:d2:43:d2:e5:
5a:61:6c:3e:45:c9:8a:8d:37:0a:62:35:31:e1:aa:e2:ed:25:
a2:eb:f0:20:bd:43:bf:51:8c:36:fe:5a:62:5a:30:20:8d:50:
2b:37:48:b8:b5:9d:12:a6:8a:51:10:21:7b:35:1d:23:6a:e2:
1b:43:00:7f:a6:c9:87:ea:d2:66:cd:5e:86:46:e1:eb:df:c8:
52:96:36:d1:98:aa:d4:33:c9:3a:94:dd:ed:c7:b3:0d:0b:13:
d2:57:bb:5a:af:ea:f8:33:42:14:a0:e2:40:50:d6:84:eb:2c:
2e:a1:04:9e:6f:89:13:3a:a4:e7:4b:a9:f8:b5:e9:0d:8f:f7:
a9:cd:0d:f9:4f:6f:6d:c3:77:c8:76:32:70:71:8f:25:da:c7:
c3:7d:82:eb:8f:ca:ee:6e:3e:ee:45:67:cd:8f:65:bb:d1:1b:
46:d4:da:7c:a8:18:4d:83:cc:3a:25:25:87:8b:f8:ce:94:63:
cf:83:5f:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 18:14:24 2024 by rpki-client on console-fra.rpki-client.org