Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/b20e90-bf6e-4e25-87d5-eceeff8e84e0/1/vMOcejNTTKC2AUjdr64xlQtKAy8.roa
File: vMOcejNTTKC2AUjdr64xlQtKAy8.roa (raw, json)
Hash identifier: 1Xpg+JrLj30Hw9WD7/yNiDpdFG8cYntuOB9WoYt9K7g=
Subject key identifier: BC:C3:9C:7A:33:53:4C:A0:B6:01:48:DD:AF:AE:31:95:0B:4A:03:2F
Certificate issuer: /CN=5a141c5090824d0a17c29ec4050e21007113fbda
Certificate serial: 01898C9513FD900066FD5BF819DDC2B8D41A
Authority key identifier: 5A:14:1C:50:90:82:4D:0A:17:C2:9E:C4:05:0E:21:00:71:13:FB:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WhQcUJCCTQoXwp7EBQ4hAHET-9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/b20e90-bf6e-4e25-87d5-eceeff8e84e0/1/vMOcejNTTKC2AUjdr64xlQtKAy8.roa
Signing time: Tue 25 Jul 2023 10:25:27 +0000
ROA not before: Tue 25 Jul 2023 10:25:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.85.78.0/24 maxlen: 24
185.85.79.0/24 maxlen: 24
5.63.24.0/21 maxlen: 21
Validation: Failed, certificate revoked on Wed 26 Jul 2023 11:07:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:8c:95:13:fd:90:00:66:fd:5b:f8:19:dd:c2:b8:d4:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a141c5090824d0a17c29ec4050e21007113fbda
Validity
Not Before: Jul 25 10:25:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bcc39c7a33534ca0b60148ddafae31950b4a032f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:04:4f:ad:c8:9c:55:f3:5a:0c:dd:92:54:f3:
bc:69:cc:0f:95:e7:46:eb:dc:b7:02:62:d6:44:e3:
75:e9:52:fb:c6:03:9d:12:64:d1:6b:dc:61:e9:5d:
72:4f:01:f6:5c:d1:4b:0e:98:5f:19:70:31:96:37:
82:ea:c6:d8:d2:d2:96:73:3b:6f:d9:cb:26:bc:72:
d1:f1:3c:5f:f3:95:6f:92:71:6c:7f:7a:50:fa:23:
37:f7:b6:20:52:1f:06:2b:bc:db:b5:30:7d:f8:15:
ac:f8:78:43:93:74:61:89:ad:50:0e:08:23:f8:22:
1e:1c:e1:5a:7d:c9:c9:88:63:cd:6c:5b:d7:31:3a:
b5:18:99:13:97:d2:6f:11:b1:12:49:ac:ba:d7:44:
1e:7a:53:a8:45:5d:4a:f3:67:d9:9f:4c:1b:7c:31:
e3:0c:df:43:9f:d3:7c:fd:7e:06:96:ba:1b:ed:35:
af:88:f2:e7:42:8e:eb:52:d6:f0:64:e5:9f:45:7c:
05:12:69:50:f7:2b:48:b9:b3:9b:0e:66:18:1a:19:
1a:27:b5:41:d8:a7:e4:02:62:2a:21:00:bf:46:5b:
96:8f:45:73:ed:14:45:fe:1e:3f:91:37:b6:04:7c:
e0:33:2b:61:45:50:f3:69:b7:1a:8a:38:25:10:b1:
86:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:C3:9C:7A:33:53:4C:A0:B6:01:48:DD:AF:AE:31:95:0B:4A:03:2F
X509v3 Authority Key Identifier:
keyid:5A:14:1C:50:90:82:4D:0A:17:C2:9E:C4:05:0E:21:00:71:13:FB:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WhQcUJCCTQoXwp7EBQ4hAHET-9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/b20e90-bf6e-4e25-87d5-eceeff8e84e0/1/vMOcejNTTKC2AUjdr64xlQtKAy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/b20e90-bf6e-4e25-87d5-eceeff8e84e0/1/WhQcUJCCTQoXwp7EBQ4hAHET-9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.63.24.0/21
185.85.78.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:7c:f4:a1:3e:01:c4:bd:a6:8d:62:a5:2e:c5:54:9b:d6:79:
78:da:43:7f:75:e5:9c:01:23:71:fc:58:94:a6:59:44:7c:66:
78:20:cb:09:59:0e:ce:5e:81:c3:48:0b:9a:7f:19:a0:8a:26:
1f:f8:e4:da:29:d0:91:72:86:4c:f8:4f:13:2d:7c:1b:e7:73:
97:8b:18:98:75:f2:51:5d:54:23:c1:68:40:da:c2:dd:b0:e8:
e5:ec:9b:72:bf:a5:14:98:4b:a5:89:c8:13:0f:e3:8d:de:43:
b3:5b:0d:2b:48:c5:ff:00:3a:53:6e:18:76:ad:db:65:1d:6e:
d6:a2:83:18:b1:e4:f9:32:23:a4:87:c2:5a:cb:36:b6:6e:44:
9f:d3:a1:46:ef:2d:62:c5:c9:54:16:7f:cd:78:94:76:c0:ae:
2e:13:40:2c:9c:86:a0:ef:a0:e6:ae:ef:95:18:1a:2f:6c:82:
65:53:55:72:c2:12:6b:42:0d:b3:84:e7:a3:3b:7e:4e:a0:89:
6d:01:15:22:9c:71:24:b3:12:de:43:67:3d:e1:d0:0d:90:1b:
a0:4a:af:46:5f:05:1a:2e:97:3a:b7:44:12:b6:79:0a:70:95:
77:94:0d:c0:9e:a6:32:89:c3:9c:41:7f:dd:91:23:51:b2:eb:
4c:59:fd:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:28 2024 by rpki-client on console-ams.rpki-client.org