Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/61upTK8kS78G4tHNZfRiEZqBY0M.roa
File: 61upTK8kS78G4tHNZfRiEZqBY0M.roa (raw, json)
Hash identifier: CKoIiO9NaoZFDwWuVxuo2bdAxRSIH2saAq9j5envcCE=
Subject key identifier: EB:5B:A9:4C:AF:24:4B:BF:06:E2:D1:CD:65:F4:62:11:9A:81:63:43
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 01897208303225FFA497E06D1FC1D37456E6
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/61upTK8kS78G4tHNZfRiEZqBY0M.roa
Signing time: Thu 20 Jul 2023 06:41:26 +0000
ROA not before: Thu 20 Jul 2023 06:41:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208485
IP address blocks: 78.159.131.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.217.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:72:08:30:32:25:ff:a4:97:e0:6d:1f:c1:d3:74:56:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jul 20 06:41:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb5ba94caf244bbf06e2d1cd65f462119a816343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:34:e1:63:13:5d:44:6c:a2:c9:0d:0a:0c:1d:
23:9d:26:b1:90:c5:05:a8:61:58:48:3b:a8:d6:6c:
7f:c1:82:b3:ed:08:51:38:ff:89:89:00:60:3a:ba:
25:8d:dd:c2:d7:9f:eb:f1:54:0a:b6:11:66:57:3e:
e4:79:a3:07:e4:df:7e:0a:67:ba:98:74:c8:df:49:
72:6b:73:1e:bf:b6:02:45:f4:90:c0:cf:2a:da:f0:
24:4b:78:10:73:df:2c:12:72:69:a0:90:ef:d1:7e:
14:ca:fa:6b:aa:af:15:03:a4:85:ed:12:07:d0:64:
6e:82:1f:5a:14:80:dd:cd:01:e1:0b:dc:d0:c2:8d:
05:cb:c2:a3:84:61:13:02:f7:34:4f:7f:9a:26:f8:
55:0e:59:03:29:c0:91:ac:42:87:89:11:d0:b5:ff:
8a:38:0b:cc:0c:ca:ce:3f:80:cb:60:c8:bf:df:0b:
94:0d:31:7c:b8:73:33:b6:0f:b7:cf:7f:68:4a:30:
63:4f:0d:fc:3b:89:a6:f0:c0:e2:90:84:c6:75:43:
48:54:1c:13:f8:29:51:0a:51:00:5a:c6:84:81:b7:
23:bc:87:3b:3e:d8:08:f0:00:d7:8a:4d:6a:e6:68:
7e:d0:24:ff:16:2e:7a:c0:49:39:db:b5:76:67:e2:
2f:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:5B:A9:4C:AF:24:4B:BF:06:E2:D1:CD:65:F4:62:11:9A:81:63:43
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/61upTK8kS78G4tHNZfRiEZqBY0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.159.131.0/24
93.152.206.0/24
93.152.209.0/24
93.152.215.0/24
93.152.217.0/24
93.152.221.0/24
93.152.225.0/24
Signature Algorithm: sha256WithRSAEncryption
06:0a:d7:79:ea:78:7b:71:c4:11:de:61:02:50:de:73:9d:6d:
54:e6:41:52:5b:0c:0a:e5:2f:27:2d:24:3a:62:18:dd:d8:6b:
37:fa:bc:59:44:60:c1:db:24:13:c9:0e:51:16:d2:5d:f7:aa:
f3:b6:e5:f8:cf:97:dd:81:8a:5e:f9:d4:e2:70:0f:a1:99:8a:
ce:4a:c0:58:61:b3:b9:fd:77:34:fa:28:e4:e7:77:bb:65:53:
1c:2c:bb:59:09:e5:f6:47:3e:72:49:1c:57:7f:34:8a:df:55:
23:c5:c4:3a:15:6d:47:f4:ba:61:e4:e4:76:ea:bd:a3:1b:bb:
35:6b:67:8e:93:dd:7a:c3:38:42:40:be:24:48:cb:18:52:86:
19:af:86:db:2e:6a:ef:4f:c6:a0:2e:3d:30:3b:37:d9:a3:08:
d0:7b:11:a5:91:5c:98:c5:75:c7:ad:ce:a8:30:69:9e:bd:5f:
7e:6f:24:df:ee:71:d3:a1:70:86:aa:66:bd:07:c2:f8:aa:40:
99:98:07:f0:f0:d7:b5:83:f8:9e:d1:8d:d9:7f:7d:97:90:1d:
c8:6e:42:82:53:d4:cc:41:75:ba:8c:dd:df:72:37:c0:fa:d5:
ee:0a:b1:51:78:04:de:ab:5b:40:22:0d:63:a2:be:97:14:f3:
e1:11:83:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 26 10:05:13 2023 by rpki-client on console-ams.rpki-client.org