Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/tvDLI2FY7T9h1S67aWBAv7sWl5A.roa
File: tvDLI2FY7T9h1S67aWBAv7sWl5A.roa (raw, json)
Hash identifier: koA45ZjO4PLA9V8Gp4WhdsAwW+2+ngdvqMwDVbElrBE=
Subject key identifier: B6:F0:CB:23:61:58:ED:3F:61:D5:2E:BB:69:60:40:BF:BB:16:97:90
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018854EC7DD44CF81119F5945C2DA2F8DC5F
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/tvDLI2FY7T9h1S67aWBAv7sWl5A.roa
Signing time: Thu 25 May 2023 21:59:24 +0000
ROA not before: Thu 25 May 2023 21:59:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 5.180.233.0/24 maxlen: 24
5.180.234.0/24 maxlen: 24
5.180.49.0/24 maxlen: 24
85.208.106.0/24 maxlen: 24
5.253.38.0/24 maxlen: 24
45.9.2.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:54:ec:7d:d4:4c:f8:11:19:f5:94:5c:2d:a2:f8:dc:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: May 25 21:59:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6f0cb236158ed3f61d52ebb696040bfbb169790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:97:00:ef:b8:0c:34:e2:6f:16:15:02:8e:ac:
42:ff:85:1f:be:53:b1:93:c0:01:f6:ea:05:eb:a3:
28:6e:c9:59:84:f6:31:ab:eb:8e:87:9a:55:ed:e9:
80:2b:a1:cc:87:de:1b:b0:62:6c:fb:ab:91:0a:24:
4b:ab:c5:6f:97:0c:d6:8a:78:5e:77:6a:3f:15:0d:
e4:9b:6a:74:50:a0:92:cf:11:6d:f2:10:31:b1:37:
db:05:0f:c3:c6:35:8b:68:43:b3:c2:fc:f5:d9:79:
f7:cc:c9:cb:3b:55:c9:bd:09:4b:d2:1b:e0:72:5b:
88:18:63:73:58:45:7d:fb:e0:b1:e9:08:57:c5:98:
30:6d:ea:b2:16:d2:a5:f8:48:61:10:6b:a7:8c:ab:
aa:3e:b2:bf:67:87:e5:8f:22:26:da:ce:b8:b5:e6:
9e:8f:ce:fc:82:98:54:dc:dd:b6:dd:08:f6:32:ff:
fc:f8:f4:f3:cb:c3:b1:9b:56:01:bb:57:60:d1:9d:
25:2f:1f:57:af:dc:fe:2d:66:a0:1b:45:e6:52:d7:
a7:dd:b6:cc:09:b9:b8:bb:d1:bb:d5:40:28:5c:5c:
9a:53:6c:14:1c:fa:76:5f:33:7f:e7:99:3e:dc:5e:
77:62:24:2f:fd:ec:72:92:3b:72:fc:65:53:47:ec:
be:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:F0:CB:23:61:58:ED:3F:61:D5:2E:BB:69:60:40:BF:BB:16:97:90
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/tvDLI2FY7T9h1S67aWBAv7sWl5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.49.0/24
5.180.233.0-5.180.234.255
5.253.38.0/24
45.9.2.0/24
85.208.106.0/24
Signature Algorithm: sha256WithRSAEncryption
90:ee:23:ae:94:7d:c1:72:42:81:89:1c:87:2a:82:65:f7:6b:
2d:b0:8e:c3:7e:57:8e:2c:06:f6:86:18:29:12:4c:70:97:f0:
aa:6b:71:41:f7:c8:26:50:09:1c:9c:fa:82:09:9d:e9:7b:16:
7e:e4:39:4d:d9:63:8b:37:3b:61:6b:24:c7:8a:35:66:98:a3:
61:18:cc:c9:d0:b8:4b:09:fa:5f:a4:16:a6:c3:ec:77:f5:90:
26:39:df:92:5e:42:22:e9:46:3c:52:7c:e9:43:cd:02:ae:ff:
2c:3f:7f:b6:b6:07:ca:d8:5e:46:0c:ee:73:14:87:af:b5:19:
d4:82:38:84:4a:11:ea:69:c6:f7:0c:dc:82:f3:75:15:17:3b:
7f:78:f9:21:a2:97:e2:90:30:34:6e:02:b1:21:fa:df:71:58:
83:5a:57:44:4d:21:6b:3a:aa:44:d4:6c:72:d3:ed:0c:3b:d9:
20:fe:dc:f9:56:4f:78:c2:88:1b:4c:65:93:90:a0:fe:fc:0a:
6c:f4:55:74:be:94:9e:9a:39:90:e7:73:b5:38:ef:53:e4:e8:
bc:f7:3f:8b:7c:b7:ba:28:be:b3:e0:80:c9:5b:b4:9b:6c:f8:
cd:d8:5b:97:dd:4c:f9:b3:06:a4:19:05:c9:6d:8b:2d:96:a1:
5d:8b:1f:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:23 2023 by rpki-client on console-ams.rpki-client.org