Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/5fFP53JHNKMwcRJ_E3uutwzTids.roa
File: 5fFP53JHNKMwcRJ_E3uutwzTids.roa (raw, json)
Hash identifier: kRiGdiJcV0BKWLqCZkIHKATiGENnKzc+UTaI7cJdgSs=
Subject key identifier: E5:F1:4F:E7:72:47:34:A3:30:71:12:7F:13:7B:AE:B7:0C:D3:89:DB
Certificate issuer: /CN=01626ffd800eafa336bdf343141f03f7c393c364
Certificate serial: 0187A35F9157EAD128261EEADCC89E860CE1
Authority key identifier: 01:62:6F:FD:80:0E:AF:A3:36:BD:F3:43:14:1F:03:F7:C3:93:C3:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/5fFP53JHNKMwcRJ_E3uutwzTids.roa
Signing time: Fri 21 Apr 2023 10:32:41 +0000
ROA not before: Fri 21 Apr 2023 10:32:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30870
IP address blocks: 89.30.150.0/23 maxlen: 24
89.30.154.0/23 maxlen: 24
83.98.209.0/24 maxlen: 24
83.98.218.0/23 maxlen: 24
83.98.217.0/24 maxlen: 24
83.98.220.0/23 maxlen: 24
83.98.136.0/23 maxlen: 24
83.98.148.0/24 maxlen: 24
83.98.154.0/23 maxlen: 23
83.98.167.0/24 maxlen: 24
83.98.182.0/24 maxlen: 24
213.247.55.0/24 maxlen: 24
213.247.57.0/24 maxlen: 24
213.247.62.0/23 maxlen: 24
2001:16f8:15::/48 maxlen: 48
2001:16f8:666::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a3:5f:91:57:ea:d1:28:26:1e:ea:dc:c8:9e:86:0c:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01626ffd800eafa336bdf343141f03f7c393c364
Validity
Not Before: Apr 21 10:32:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5f14fe7724734a33071127f137baeb70cd389db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:71:a4:29:41:f1:86:7d:7d:07:74:9d:44:3b:
0a:1c:f6:d9:34:cf:b9:9e:25:90:5a:b6:12:0f:b2:
d0:ce:05:46:f0:14:37:00:0c:8e:24:59:1b:08:b1:
eb:08:60:76:21:3d:8f:ea:a2:c2:85:a7:6a:de:67:
04:20:52:0f:70:08:c9:2a:9e:89:3b:81:43:5c:e9:
64:00:4b:fe:84:19:be:ba:b2:49:eb:81:7d:56:05:
77:36:e7:79:1d:10:20:88:26:54:79:67:5b:18:fe:
bb:5b:93:1d:e9:2f:5c:44:4b:b9:db:77:44:de:bb:
e6:85:9c:c9:f8:fb:f1:90:d3:b3:f7:bb:5b:bd:2e:
e1:29:24:98:20:b0:2b:6a:4f:a5:09:0f:0c:f0:61:
f4:8e:bd:8c:08:8e:5e:9e:eb:0d:27:7f:67:72:44:
71:b5:1e:db:53:ec:04:ab:bb:62:ab:26:a2:89:8f:
f4:22:d4:0c:37:e3:bf:0b:97:d0:ba:5c:fc:62:ed:
f4:92:97:01:1c:63:e2:73:5e:97:26:1d:e3:f3:8f:
45:5a:00:46:f6:0b:f8:bd:e2:bd:09:16:e0:f5:dd:
c3:d0:64:ea:bf:48:fb:f8:4f:97:13:d5:36:86:85:
f2:a7:bf:6c:d4:98:ed:54:1f:24:54:3c:10:33:6a:
55:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:F1:4F:E7:72:47:34:A3:30:71:12:7F:13:7B:AE:B7:0C:D3:89:DB
X509v3 Authority Key Identifier:
keyid:01:62:6F:FD:80:0E:AF:A3:36:BD:F3:43:14:1F:03:F7:C3:93:C3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/5fFP53JHNKMwcRJ_E3uutwzTids.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/AWJv_YAOr6M2vfNDFB8D98OTw2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.98.136.0/23
83.98.148.0/24
83.98.154.0/23
83.98.167.0/24
83.98.182.0/24
83.98.209.0/24
83.98.217.0-83.98.221.255
89.30.150.0/23
89.30.154.0/23
213.247.55.0/24
213.247.57.0/24
213.247.62.0/23
IPv6:
2001:16f8:15::/48
2001:16f8:666::/48
Signature Algorithm: sha256WithRSAEncryption
76:d6:b8:c5:c6:3b:88:c7:6d:f8:9d:af:d8:94:aa:ff:ba:64:
83:9a:d4:4e:27:34:13:b7:18:4a:42:b1:cf:d8:1e:7f:27:68:
fc:0e:3b:6d:c8:19:07:68:69:8b:f4:8a:48:22:35:a1:5e:f8:
3f:6c:90:42:f6:1a:b8:d7:9c:02:dc:47:e3:d8:38:e6:47:06:
a0:c2:e8:63:ee:96:cd:3a:7b:3a:03:4e:f6:19:11:d0:b5:65:
49:59:6e:2e:e0:ca:b3:5a:51:7f:39:89:34:d6:73:8e:2e:05:
a0:48:f1:f5:a2:17:f2:63:1e:bd:c6:47:2f:0e:07:50:ff:98:
34:96:cb:ed:23:46:dd:61:82:6c:0b:f2:d4:6f:a5:77:93:4d:
b4:ce:4a:23:d6:3e:e6:9f:57:9a:a2:06:da:28:b2:86:7b:ee:
1f:57:8d:3e:df:38:1b:ff:45:e7:54:dd:de:03:5d:03:07:36:
4c:aa:3c:8f:43:d5:cb:69:75:f5:4c:af:19:12:1b:ed:1d:5f:
43:fb:2a:81:c8:2e:e3:dc:84:fe:ac:93:4a:e8:6f:b4:a8:e3:
75:16:21:6f:4a:3f:00:81:03:43:5f:20:49:c9:1c:85:03:e1:
78:a5:e9:23:ff:68:d2:ba:99:e3:7e:25:38:ac:73:8d:72:28:
1e:70:83:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:51 2024 by rpki-client on console-fra.rpki-client.org