Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/b95ca0-853f-48ab-9b41-e0aee1bbf9e3/1/cEZeTES-z0UbgctuONp1LIYxQSk.roa
File: cEZeTES-z0UbgctuONp1LIYxQSk.roa (raw, json)
Hash identifier: 2QRvdwtMYBsBlVtiXBGF1JfMfhHhGq7qEv8ECqmqSkg=
Subject key identifier: 70:46:5E:4C:44:BE:CF:45:1B:81:CB:6E:38:DA:75:2C:86:31:41:29
Certificate issuer: /CN=5aedcb334d39e797817e2eb47703c018b4dc49d5
Certificate serial: 018B28740C5B198A74ED6E2F69ECBA3CB471
Authority key identifier: 5A:ED:CB:33:4D:39:E7:97:81:7E:2E:B4:77:03:C0:18:B4:DC:49:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wu3LM00555eBfi60dwPAGLTcSdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/b95ca0-853f-48ab-9b41-e0aee1bbf9e3/1/cEZeTES-z0UbgctuONp1LIYxQSk.roa
Signing time: Fri 13 Oct 2023 09:52:55 +0000
ROA not before: Fri 13 Oct 2023 09:52:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39767
IP address blocks: 78.158.72.0/21 maxlen: 21
78.158.80.0/20 maxlen: 21
185.90.140.0/22 maxlen: 22
194.88.12.0/23 maxlen: 23
2a05:e200::/29 maxlen: 30
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:28:74:0c:5b:19:8a:74:ed:6e:2f:69:ec:ba:3c:b4:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aedcb334d39e797817e2eb47703c018b4dc49d5
Validity
Not Before: Oct 13 09:52:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70465e4c44becf451b81cb6e38da752c86314129
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:1a:20:a2:87:af:9e:b7:e3:52:76:e5:43:1e:
f3:ec:b9:fc:a7:0a:b8:6a:d1:5e:1d:85:7f:50:08:
fa:b0:af:01:19:f1:c6:96:58:da:2d:49:f3:12:1f:
a5:53:7f:9a:8c:93:6e:21:ad:41:f3:0d:39:58:ec:
94:b8:b9:64:09:fa:2e:df:e7:79:42:07:fc:ac:4d:
58:4d:4b:d1:99:04:ed:b0:f1:f0:3f:2c:4d:5e:58:
07:00:44:9f:c4:e6:95:72:77:f9:bc:02:28:8d:6b:
ad:5d:ef:b9:40:cb:9d:5f:b5:60:64:b0:b3:29:60:
b9:2c:5d:4f:20:aa:62:e3:a0:27:60:56:3c:6d:ea:
f9:f7:3b:3d:82:9c:34:02:0f:4a:99:32:11:89:93:
91:69:12:72:7a:62:fe:ee:b4:2c:c9:17:d4:0c:bb:
20:88:02:b2:c8:fd:97:a8:62:8f:f3:26:67:a0:6b:
59:83:ef:33:0c:67:28:9f:6b:68:83:80:f4:59:34:
cb:cd:5f:60:57:9b:ea:b6:78:c9:35:3b:57:39:98:
b4:e6:2b:22:61:7c:20:42:76:d4:30:ae:5a:4a:51:
6e:2e:97:b3:0f:e4:f1:0e:83:a6:ad:39:7e:ab:29:
71:c3:44:2a:29:93:c7:78:ac:95:8b:98:f0:14:72:
12:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:46:5E:4C:44:BE:CF:45:1B:81:CB:6E:38:DA:75:2C:86:31:41:29
X509v3 Authority Key Identifier:
keyid:5A:ED:CB:33:4D:39:E7:97:81:7E:2E:B4:77:03:C0:18:B4:DC:49:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wu3LM00555eBfi60dwPAGLTcSdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/b95ca0-853f-48ab-9b41-e0aee1bbf9e3/1/cEZeTES-z0UbgctuONp1LIYxQSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/b95ca0-853f-48ab-9b41-e0aee1bbf9e3/1/Wu3LM00555eBfi60dwPAGLTcSdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.158.72.0-78.158.95.255
185.90.140.0/22
194.88.12.0/23
IPv6:
2a05:e200::/29
Signature Algorithm: sha256WithRSAEncryption
93:3c:3d:82:b9:89:24:2e:d4:d2:b4:3e:e9:1d:b3:21:6b:05:
cb:f9:6b:74:68:65:a0:67:ee:02:be:53:ee:21:8d:35:12:8b:
db:d0:6e:cf:7b:a4:95:23:a2:6d:f2:12:25:27:6f:43:a5:5d:
7a:2b:23:6e:26:01:91:93:7c:9c:34:17:11:63:ac:7c:7f:39:
69:9e:c5:84:6d:45:86:10:3b:52:2f:65:96:23:e4:dd:b6:7e:
6b:fe:6d:41:7f:54:63:84:00:01:82:c9:70:5e:16:d6:31:36:
4b:7b:7a:d1:aa:e5:20:9e:51:fb:d8:22:64:10:5f:7d:01:ff:
ac:04:fa:73:04:37:bc:75:9f:26:e0:38:19:ce:18:17:8c:b2:
02:81:fd:bc:92:2d:82:35:de:69:32:c8:fc:2f:f0:58:45:78:
c2:21:9a:f6:90:25:a4:cd:10:6c:d4:2a:c2:ea:7c:a1:05:d7:
de:a6:4a:ba:d8:0b:36:10:92:ad:39:22:e6:e4:6a:cf:52:b5:
a5:16:75:53:8f:16:33:45:ad:1e:85:ad:fb:9d:a2:ae:3a:59:
b8:2f:44:f6:37:db:0f:4f:bd:09:e1:34:b5:34:bc:e9:f8:4c:
30:08:2f:88:69:d5:d1:fd:8a:46:5a:97:ba:26:cd:75:bc:bd:
b4:74:14:af
-----BEGIN CERTIFICATE-----
MIIFIDCCBAigAwIBAgISAYsodAxbGYp07W4vaey6PLRxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhZWRjYjMzNGQzOWU3OTc4MTdlMmViNDc3MDNjMDE4YjRk
YzQ5ZDUwHhcNMjMxMDEzMDk1MjU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MDQ2NWU0YzQ0YmVjZjQ1MWI4MWNiNmUzOGRhNzUyYzg2MzE0MTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlxogooevnrfjUnblQx7z7Ln8pwq4
atFeHYV/UAj6sK8BGfHGlljaLUnzEh+lU3+ajJNuIa1B8w05WOyUuLlkCfou3+d5
Qgf8rE1YTUvRmQTtsPHwPyxNXlgHAESfxOaVcnf5vAIojWutXe+5QMudX7VgZLCz
KWC5LF1PIKpi46AnYFY8ber59zs9gpw0Ag9KmTIRiZORaRJyemL+7rQsyRfUDLsg
iAKyyP2XqGKP8yZnoGtZg+8zDGcon2tog4D0WTTLzV9gV5vqtnjJNTtXOZi05isi
YXwgQnbUMK5aSlFuLpezD+TxDoOmrTl+qylxw0QqKZPHeKyVi5jwFHISyQIDAQAB
o4ICLDCCAigwHQYDVR0OBBYEFHBGXkxEvs9FG4HLbjjadSyGMUEpMB8GA1UdIwQY
MBaAFFrtyzNNOeeXgX4utHcDwBi03EnVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3UzTE0wMDU1NWVCZmk2MGR3UEFHTFRjU2RVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9iOTVjYTAtODUzZi00OGFiLTliNDEt
ZTBhZWUxYmJmOWUzLzEvY0VaZVRFUy16MFViZ2N0dU9OcDFMSVl4UVNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi9iOTVjYTAtODUzZi00OGFiLTliNDEtZTBhZWUxYmJmOWUz
LzEvV3UzTE0wMDU1NWVCZmk2MGR3UEFHTFRjU2RVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEIGCCsGAQUFBwEHAQH/BDMwMTAgBAIAATAaMAwDBANOnkgD
BAVOnkADBAK5WowDBAHCWAwwDQQCAAIwBwMFAyoF4gAwDQYJKoZIhvcNAQELBQAD
ggEBAJM8PYK5iSQu1NK0PukdsyFrBcv5a3RoZaBn7gK+U+4hjTUSi9vQbs97pJUj
om3yEiUnb0OlXXorI24mAZGTfJw0FxFjrHx/OWmexYRtRYYQO1IvZZYj5N22fmv+
bUF/VGOEAAGCyXBeFtYxNkt7etGq5SCeUfvYImQQX30B/6wE+nMEN7x1nybgOBnO
GBeMsgKB/bySLYI13mkyyPwv8FhFeMIhmvaQJaTNEGzUKsLqfKEF196mSrrYCzYQ
kq05Iubkas9StaUWdVOPFjNFrR6Frfudoq46WbgvRPY32w9PvQnhNLU0vOn4TDAI
L4hp1dH9ikZal7omzXW8vbR0FK8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:53 2024 by rpki-client on console-fra.rpki-client.org