Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/764b34-0d98-454c-85a2-306045efcd68/1/E86smYSs2lIuWPlT6RHrfjc0zBM.roa
File: E86smYSs2lIuWPlT6RHrfjc0zBM.roa (raw, json)
Hash identifier: oQvF1risBvZo8guGseBBDFNgQRTOjsOyQjNIpxYu2io=
Subject key identifier: 13:CE:AC:99:84:AC:DA:52:2E:58:F9:53:E9:11:EB:7E:37:34:CC:13
Certificate issuer: /CN=be43995289b6a5ca972c4b87b5e3149c32cb4430
Certificate serial: 01859B77D27EC6CCD226F93055100614A36D
Authority key identifier: BE:43:99:52:89:B6:A5:CA:97:2C:4B:87:B5:E3:14:9C:32:CB:44:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkOZUom2pcqXLEuHteMUnDLLRDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/764b34-0d98-454c-85a2-306045efcd68/1/E86smYSs2lIuWPlT6RHrfjc0zBM.roa
Signing time: Tue 10 Jan 2023 11:36:39 +0000
ROA not before: Tue 10 Jan 2023 11:36:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5607
IP address blocks: 94.119.8.0/21 maxlen: 21
94.119.16.0/21 maxlen: 21
91.103.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9b:77:d2:7e:c6:cc:d2:26:f9:30:55:10:06:14:a3:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be43995289b6a5ca972c4b87b5e3149c32cb4430
Validity
Not Before: Jan 10 11:36:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13ceac9984acda522e58f953e911eb7e3734cc13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:bc:14:5b:aa:97:1a:e7:53:bd:04:d1:5f:3f:
50:14:ed:7d:d6:a2:10:9f:e5:d6:97:9e:aa:9b:cc:
3b:cf:e0:1d:96:45:5c:44:9a:99:bc:b3:5b:b5:aa:
7c:16:89:d0:29:09:89:29:6b:84:ad:ac:ed:ef:82:
64:b5:df:64:c7:74:50:fd:6d:37:bf:59:f5:54:a5:
41:ed:5d:37:be:8e:99:93:7c:24:e5:62:04:68:9b:
ad:fb:46:3f:25:fa:2e:75:30:18:d5:bf:66:75:73:
21:4b:2d:60:cd:40:8f:55:75:8b:5e:66:96:8e:dd:
d3:96:e3:a6:75:57:ce:94:27:8e:20:0c:50:6d:b5:
a0:50:da:80:89:9a:44:32:ca:17:a1:cb:c9:25:43:
4c:81:1a:96:22:5b:24:fb:0f:23:eb:e2:d7:95:85:
73:86:12:81:c9:6b:20:b2:e4:c3:dd:83:5f:89:30:
0b:3e:09:c3:04:7c:ad:81:c5:d2:c0:ac:b2:dd:bd:
13:aa:c3:61:7c:f4:5d:01:07:ad:f8:00:4d:64:8e:
38:02:9a:41:b5:89:31:0a:34:22:fa:7d:08:2f:8a:
fb:17:f8:e7:80:94:bb:e9:a1:02:b2:f1:3c:d9:21:
bd:cc:9f:fa:2c:95:72:65:11:17:ed:64:83:65:7e:
ab:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:CE:AC:99:84:AC:DA:52:2E:58:F9:53:E9:11:EB:7E:37:34:CC:13
X509v3 Authority Key Identifier:
keyid:BE:43:99:52:89:B6:A5:CA:97:2C:4B:87:B5:E3:14:9C:32:CB:44:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkOZUom2pcqXLEuHteMUnDLLRDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/764b34-0d98-454c-85a2-306045efcd68/1/E86smYSs2lIuWPlT6RHrfjc0zBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/764b34-0d98-454c-85a2-306045efcd68/1/vkOZUom2pcqXLEuHteMUnDLLRDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.103.34.0/24
94.119.8.0-94.119.23.255
Signature Algorithm: sha256WithRSAEncryption
56:3b:61:c2:de:45:3e:85:c7:bc:7d:68:4d:48:f3:78:22:9b:
fb:25:1b:35:01:dd:b0:a6:59:64:b2:f6:f2:47:95:f9:e2:53:
fe:c1:61:67:f8:68:a3:7c:be:c1:88:32:71:42:58:46:7d:e3:
c4:f8:99:29:77:47:7b:7f:53:ba:ab:c1:f6:b0:42:79:6f:60:
e3:36:1f:86:63:20:27:57:3c:bf:ef:17:f5:1a:36:af:66:03:
19:e5:70:ae:c1:2a:71:1a:67:3b:23:60:28:af:4e:81:96:07:
a2:7d:e3:ca:cd:8e:f1:13:b7:2a:6c:38:e3:28:2c:dd:6e:49:
df:94:a6:e2:71:3e:34:34:32:d3:e1:4a:ae:81:3b:88:9d:73:
53:5b:66:a2:33:ce:32:e0:0f:e2:a6:b7:73:8f:21:f2:45:fb:
a8:bd:b0:4b:b4:c1:84:e3:99:71:81:a4:cb:65:fb:c4:84:59:
5e:61:1a:b4:a6:8a:fe:53:c1:62:79:7a:c2:5f:e8:63:1d:b8:
c9:98:23:bc:90:ff:cd:a3:ec:d6:58:c0:80:fe:01:b5:66:95:
2f:a8:33:e2:ba:48:db:f7:95:3a:b7:ee:bc:5b:f4:7f:08:e9:
bb:62:95:e1:52:80:59:9f:b8:ab:71:e4:ee:d2:e3:bd:d1:35:
d1:1f:65:cd
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:34 2024 by rpki-client on console-fra.rpki-client.org