Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/5ozpB9gogi5wQFcEj_dO75YV4jw.roa
File: 5ozpB9gogi5wQFcEj_dO75YV4jw.roa (raw, json)
Hash identifier: e+HfvMyjsfXRIpsXBxKmS+nizQR4twmVnscqlFYBfiM=
Subject key identifier: E6:8C:E9:07:D8:28:82:2E:70:40:57:04:8F:F7:4E:EF:96:15:E2:3C
Certificate issuer: /CN=5a43e9e267956e7f262c17f0089f0f60ba7abefb
Certificate serial: 018BD6B43A3E410A40AA25EC5B34A8A05197
Authority key identifier: 5A:43:E9:E2:67:95:6E:7F:26:2C:17:F0:08:9F:0F:60:BA:7A:BE:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WkPp4meVbn8mLBfwCJ8PYLp6vvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/5ozpB9gogi5wQFcEj_dO75YV4jw.roa
Signing time: Thu 16 Nov 2023 05:56:57 +0000
ROA not before: Thu 16 Nov 2023 05:56:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25233
IP address blocks: 213.184.160.0/19 maxlen: 19
84.22.241.0/24 maxlen: 24
84.22.254.0/24 maxlen: 24
212.93.192.0/19 maxlen: 19
212.93.196.0/24 maxlen: 24
77.64.0.0/17 maxlen: 17
84.22.224.0/19 maxlen: 19
84.22.231.0/24 maxlen: 24
77.64.40.0/24 maxlen: 24
84.22.234.0/24 maxlen: 24
84.22.238.0/24 maxlen: 24
86.60.107.0/24 maxlen: 24
86.60.109.0/24 maxlen: 24
212.100.218.0/24 maxlen: 24
86.60.112.0/21 maxlen: 21
86.60.126.0/24 maxlen: 24
86.60.64.0/18 maxlen: 18
212.100.192.0/19 maxlen: 19
212.116.192.0/19 maxlen: 19
212.100.210.0/24 maxlen: 24
2a02:df0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d6:b4:3a:3e:41:0a:40:aa:25:ec:5b:34:a8:a0:51:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a43e9e267956e7f262c17f0089f0f60ba7abefb
Validity
Not Before: Nov 16 05:56:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e68ce907d828822e704057048ff74eef9615e23c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:85:c8:a0:c2:57:93:c1:45:a1:26:2d:bd:4f:
c6:85:08:80:98:20:e5:1a:49:81:70:1b:3e:76:16:
32:ae:9c:25:19:a5:50:1f:6a:60:af:a9:6b:bd:6b:
e6:a6:0e:c3:cf:3d:39:b3:64:10:29:66:cf:55:0d:
b7:9c:43:df:0c:18:63:cf:b2:0a:04:29:d1:b2:af:
bd:de:de:1b:bc:e3:9a:ca:7c:7c:1a:27:56:69:46:
bd:7d:36:e2:10:10:f6:69:74:63:f7:11:02:17:f1:
fa:e9:b5:8f:9c:78:6a:5a:dd:9a:81:d5:f0:4e:dc:
ec:e4:f8:76:59:27:bf:e2:85:95:ba:18:87:58:6b:
dd:70:cd:bc:6b:24:e2:f4:42:82:88:31:71:f6:eb:
15:72:61:00:41:bf:7f:3b:f5:19:9a:45:44:a2:8e:
56:1c:a8:1d:02:ca:54:72:0b:cd:4b:a8:63:95:87:
fd:55:8e:d6:c6:ae:e1:ce:cd:d5:aa:9e:55:6f:c7:
08:e0:75:64:d3:e9:07:0a:2d:a2:53:eb:d6:fe:19:
c2:58:38:1c:82:ef:7f:da:ec:f8:dc:2e:57:b5:b4:
05:0b:84:98:72:21:aa:cc:c5:3d:af:68:80:5f:28:
10:e2:fd:2f:71:2d:f8:72:99:6a:64:32:60:1b:38:
4a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:8C:E9:07:D8:28:82:2E:70:40:57:04:8F:F7:4E:EF:96:15:E2:3C
X509v3 Authority Key Identifier:
keyid:5A:43:E9:E2:67:95:6E:7F:26:2C:17:F0:08:9F:0F:60:BA:7A:BE:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WkPp4meVbn8mLBfwCJ8PYLp6vvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/5ozpB9gogi5wQFcEj_dO75YV4jw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/WkPp4meVbn8mLBfwCJ8PYLp6vvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.64.0.0/17
84.22.224.0/19
86.60.64.0/18
212.93.192.0/19
212.100.192.0/19
212.116.192.0/19
213.184.160.0/19
IPv6:
2a02:df0::/32
Signature Algorithm: sha256WithRSAEncryption
28:e7:13:08:cf:89:82:9c:70:ae:d1:64:87:23:cb:42:47:c7:
2d:7a:71:15:db:69:71:61:7a:4c:fb:42:de:bb:99:41:82:c7:
d4:8b:c5:b8:dc:45:c5:1c:09:c9:05:e5:5d:3d:48:80:4a:7b:
48:95:69:23:a5:bf:f2:d2:67:72:26:2e:dd:6f:3f:e2:16:4e:
3f:5d:84:98:7f:dc:7d:8f:9c:d9:c4:ca:2d:3e:01:a4:47:1b:
17:6c:c1:77:d4:dd:62:43:ab:65:99:4e:94:f6:52:f8:55:6d:
a1:94:0f:d8:8a:58:1a:64:de:29:39:df:b8:5a:8d:36:d9:27:
03:59:9f:11:5a:59:ad:1f:eb:4f:44:7c:92:a2:41:00:92:89:
5f:f4:3d:8a:88:6e:6d:1c:a9:a8:1e:29:34:b3:48:b6:69:81:
e1:ab:c6:db:e5:d8:29:d8:c5:31:4c:31:f6:0a:4b:e1:05:f3:
a1:53:38:3c:39:7e:35:6f:ba:b0:84:0e:1e:a3:25:b0:83:01:
ed:b0:8b:30:96:4c:10:5d:2b:25:56:9e:29:11:5c:e7:3d:19:
0c:50:00:49:a4:60:aa:89:da:3d:e0:e3:83:37:d8:d9:aa:01:
1a:f7:23:7e:5c:2e:35:54:3a:c1:e1:3d:c2:a7:62:42:7f:71:
9f:bf:d1:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 16 07:08:46 2023 by rpki-client on console-fra.rpki-client.org