Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/oV5TBmo6M16IzgcnoW21uffhU-0.roa
File: oV5TBmo6M16IzgcnoW21uffhU-0.roa (raw, json)
Hash identifier: HF6KypC2ui2kKf9K/Ml4aeZe2Bbnw7uJsfNlr8csdSo=
Subject key identifier: A1:5E:53:06:6A:3A:33:5E:88:CE:07:27:A1:6D:B5:B9:F7:E1:53:ED
Certificate issuer: /CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Certificate serial: 018914DBD5950AAF202C0EA171839F2D9798
Authority key identifier: 5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/oV5TBmo6M16IzgcnoW21uffhU-0.roa
Signing time: Sun 02 Jul 2023 04:28:18 +0000
ROA not before: Sun 02 Jul 2023 04:28:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203000
IP address blocks: 185.79.96.0/22 maxlen: 32
185.79.96.0/24 maxlen: 32
185.79.98.0/24 maxlen: 32
185.79.97.0/24 maxlen: 32
185.129.119.0/24 maxlen: 32
185.79.99.0/24 maxlen: 32
185.129.116.0/24 maxlen: 32
185.129.116.0/22 maxlen: 32
185.129.118.0/24 maxlen: 32
185.129.117.0/24 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:14:db:d5:95:0a:af:20:2c:0e:a1:71:83:9f:2d:97:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Validity
Not Before: Jul 2 04:28:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a15e53066a3a335e88ce0727a16db5b9f7e153ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:bf:cc:e1:92:65:96:4b:d5:6d:d5:f2:df:65:
39:ba:bb:43:7a:43:4d:01:2c:ad:77:69:b4:46:f9:
45:18:21:88:4c:77:13:98:6f:a8:79:14:1c:26:ae:
28:b9:79:81:65:3c:cd:85:b1:73:4d:ff:2a:58:ef:
51:0c:d2:94:f8:a4:29:c5:70:3f:5d:cf:fb:53:23:
96:7f:53:ef:50:aa:44:14:e1:39:e4:0f:fd:eb:89:
99:2d:f7:78:8d:ee:09:65:88:e6:d0:13:5c:c5:06:
2f:48:2e:42:80:f6:8e:18:e0:4b:db:fa:dc:4e:2b:
18:37:c1:8c:bf:ee:4c:56:a0:e1:a0:2a:1d:23:76:
76:29:39:19:8c:49:fe:d6:fc:16:da:fe:81:dc:d3:
b2:f5:0a:da:43:d7:b8:d7:08:b5:17:ad:3c:80:20:
f8:a9:9d:11:bf:eb:54:74:2d:50:d6:45:eb:61:46:
25:59:87:ff:b8:95:67:11:e4:a0:fe:8a:e7:f1:47:
0b:64:34:58:34:e1:b3:13:cd:57:19:ad:46:91:6f:
68:bc:27:a0:d3:b4:8e:95:a1:76:1d:96:3c:31:0f:
20:5f:4d:9c:f9:1b:33:e6:74:5a:28:ef:a7:b0:06:
7e:9e:d6:32:f9:10:19:ab:bf:f6:19:b9:86:b5:56:
0a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:5E:53:06:6A:3A:33:5E:88:CE:07:27:A1:6D:B5:B9:F7:E1:53:ED
X509v3 Authority Key Identifier:
keyid:5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/oV5TBmo6M16IzgcnoW21uffhU-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/W1JjSi6wP4VlteM9wrn0kEH3z7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.79.96.0/22
185.129.116.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:73:7c:83:45:52:43:8d:97:24:47:df:b7:c3:8b:c0:93:36:
d4:f9:80:ff:0a:38:93:79:07:c6:69:d0:81:41:ad:ae:de:f7:
1c:de:e0:da:88:73:70:f0:12:8b:6d:4e:ae:1e:fd:0f:db:57:
4a:24:11:6e:5f:4e:78:b4:03:22:2b:7b:c6:3c:7c:8b:29:e0:
fb:70:59:68:41:62:6f:9e:f1:ab:de:75:47:84:63:db:8f:96:
09:8d:61:9e:3e:9c:c5:9f:19:5d:3d:96:21:f5:b2:4a:23:bb:
0f:df:8f:64:65:c1:34:dc:00:c4:10:76:0d:d8:64:39:5d:b8:
a5:1b:c6:49:9d:32:5a:fa:a2:ea:29:1a:2c:f4:a8:b1:18:04:
ea:f2:3b:ef:d6:b8:28:49:0a:07:0e:d6:a7:a7:79:cf:94:7f:
62:ad:e1:6c:8a:15:2b:93:b8:06:cf:42:c9:d5:09:2c:61:12:
78:d6:2c:5f:c2:ba:9e:45:53:58:ba:41:d3:4f:d3:0b:d7:a4:
43:9b:5d:22:d7:fc:6e:7a:ba:f2:9c:ab:f0:60:0b:1d:64:9f:
6d:c1:2b:61:29:e8:49:1e:b3:0d:16:8a:50:13:92:a9:af:fc:
87:cd:77:3c:c5:78:32:0f:9c:10:82:fc:e4:6f:d7:51:06:0a:
c4:06:e2:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:08 2024 by rpki-client on console-fra.rpki-client.org