Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/8c83ca-2278-4d56-bce8-450d2295ba49/1/5wXbGstT4dzFY_5Wy-Yo0kHTHIk.roa
File: 5wXbGstT4dzFY_5Wy-Yo0kHTHIk.roa (raw, json)
Hash identifier: YrN/oPven9JWs3SX7Own76LH0eBM2MtWZMnhq+4pwSg=
Subject key identifier: E7:05:DB:1A:CB:53:E1:DC:C5:63:FE:56:CB:E6:28:D2:41:D3:1C:89
Certificate issuer: /CN=a3a39f1db858b155f25bc343759f5be2b736c818
Certificate serial: 01856D7892BEF4D49C33B8576A152D19A14F
Authority key identifier: A3:A3:9F:1D:B8:58:B1:55:F2:5B:C3:43:75:9F:5B:E2:B7:36:C8:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o6OfHbhYsVXyW8NDdZ9b4rc2yBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/8c83ca-2278-4d56-bce8-450d2295ba49/1/5wXbGstT4dzFY_5Wy-Yo0kHTHIk.roa
Signing time: Sun 01 Jan 2023 13:14:56 +0000
ROA not before: Sun 01 Jan 2023 13:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15576
IP address blocks: 185.79.202.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:92:be:f4:d4:9c:33:b8:57:6a:15:2d:19:a1:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3a39f1db858b155f25bc343759f5be2b736c818
Validity
Not Before: Jan 1 13:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e705db1acb53e1dcc563fe56cbe628d241d31c89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:80:75:b9:f4:1b:2f:21:61:ef:e8:22:a1:12:
52:ef:b9:f4:e1:15:4a:08:e3:75:33:1a:5c:9c:67:
da:67:45:a6:ff:99:a4:43:ba:2b:2b:02:87:9e:16:
db:9b:04:3b:b6:89:61:c0:34:f3:2c:f0:07:00:9a:
ef:ee:e7:f9:b5:a8:73:85:c7:cb:f4:7c:34:90:8e:
47:5f:5b:10:e0:e1:2a:bb:b7:eb:69:9a:5a:a4:19:
4c:3f:28:da:dc:4a:44:49:33:28:ed:f3:2f:5d:97:
72:24:9a:5c:7e:40:ff:65:d8:9a:9b:32:8f:81:c7:
b8:9b:45:67:71:3d:00:fe:f8:72:0f:4d:42:b1:3e:
f1:93:c0:29:cb:db:24:fc:1c:a6:c9:da:94:25:cf:
c9:bd:7f:a9:f1:68:41:86:b8:cd:95:d3:dc:0d:c3:
2a:51:ac:c4:ce:71:09:ff:fe:aa:59:53:0f:dc:46:
0c:d2:71:69:bd:73:a3:03:ce:94:b2:08:eb:44:28:
e5:58:69:7c:cb:b1:fb:c4:b4:7c:b6:14:f6:2a:b1:
fe:7f:3b:84:1b:f1:df:4a:d8:e8:c1:fa:50:95:17:
0c:37:60:1e:d1:e5:47:39:59:be:00:57:1d:b1:3c:
bc:22:4d:94:c8:c8:53:f3:52:95:5d:52:e7:06:15:
9a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:05:DB:1A:CB:53:E1:DC:C5:63:FE:56:CB:E6:28:D2:41:D3:1C:89
X509v3 Authority Key Identifier:
keyid:A3:A3:9F:1D:B8:58:B1:55:F2:5B:C3:43:75:9F:5B:E2:B7:36:C8:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o6OfHbhYsVXyW8NDdZ9b4rc2yBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/8c83ca-2278-4d56-bce8-450d2295ba49/1/5wXbGstT4dzFY_5Wy-Yo0kHTHIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/8c83ca-2278-4d56-bce8-450d2295ba49/1/o6OfHbhYsVXyW8NDdZ9b4rc2yBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.79.202.0/23
Signature Algorithm: sha256WithRSAEncryption
30:59:d9:68:ff:3a:1a:ba:e5:9a:04:ae:d1:3e:3d:c5:23:e1:
98:74:4f:73:80:8d:7a:71:f1:bc:14:77:5c:31:d7:b1:12:80:
2c:2a:86:81:a1:21:dd:a5:94:6b:65:5f:f2:b7:7c:c7:72:d6:
2f:cb:cd:e5:f1:0a:7a:ef:cb:d0:3d:26:4e:a2:8d:74:c8:1d:
3e:aa:78:c6:05:93:e5:06:85:18:25:f5:bb:26:6c:dc:20:c7:
33:fd:aa:bb:5e:7c:49:09:f1:0b:1a:5a:fb:53:ee:9e:81:6b:
69:9a:7e:87:85:9d:97:d0:f5:92:03:60:91:bd:d4:ac:b4:27:
bf:5b:ab:a0:97:4c:01:37:f1:b7:f4:e3:ee:88:aa:ad:7d:20:
3d:ad:b9:2c:08:bd:4c:ee:c1:6a:a8:48:d6:93:3a:47:e0:22:
cf:66:c1:96:4d:36:b6:3b:f2:e5:19:3c:f3:70:9d:85:49:20:
6e:97:7c:1b:84:0f:09:ac:5c:cf:45:20:11:23:5f:d5:33:31:
e4:05:7d:fb:c5:c9:e8:dc:ef:4a:cf:2f:5c:8f:da:91:82:84:
f4:33:ef:0c:dd:7e:48:e2:5d:9a:f9:13:6a:78:3a:f2:c7:b0:
4c:21:f1:66:31:2e:73:82:a8:c8:21:f3:7a:fd:7a:6e:68:a3:
2a:eb:39:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:41 2024 by rpki-client on console-fra.rpki-client.org