Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/Phcko9qdc9LYKdN7RpdAVevodBk.roa
File: Phcko9qdc9LYKdN7RpdAVevodBk.roa (raw, json)
Hash identifier: Fj9ZB7UuRaqrh6fTPn8rIgk/e+KIJGZuJ5TdQ17r0Go=
Subject key identifier: 3E:17:24:A3:DA:9D:73:D2:D8:29:D3:7B:46:97:40:55:EB:E8:74:19
Certificate issuer: /CN=5a43e9e267956e7f262c17f0089f0f60ba7abefb
Certificate serial: 018BD6D444926C04C5B4B875AFBEBE190F77
Authority key identifier: 5A:43:E9:E2:67:95:6E:7F:26:2C:17:F0:08:9F:0F:60:BA:7A:BE:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WkPp4meVbn8mLBfwCJ8PYLp6vvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/Phcko9qdc9LYKdN7RpdAVevodBk.roa
Signing time: Thu 16 Nov 2023 06:31:57 +0000
ROA not before: Thu 16 Nov 2023 06:31:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25233
IP address blocks: 213.184.160.0/19 maxlen: 19
84.22.241.0/24 maxlen: 24
84.22.254.0/24 maxlen: 24
212.93.192.0/19 maxlen: 19
212.93.196.0/24 maxlen: 24
78.93.144.0/24 maxlen: 24
78.93.145.0/24 maxlen: 24
78.93.150.0/24 maxlen: 24
78.93.151.0/24 maxlen: 24
78.93.152.0/24 maxlen: 24
78.93.146.0/24 maxlen: 24
78.93.147.0/24 maxlen: 24
78.93.148.0/24 maxlen: 24
78.93.149.0/24 maxlen: 24
84.22.224.0/19 maxlen: 19
78.93.157.0/24 maxlen: 24
78.93.158.0/24 maxlen: 24
78.93.159.0/24 maxlen: 24
78.93.153.0/24 maxlen: 24
78.93.154.0/24 maxlen: 24
78.93.155.0/24 maxlen: 24
78.93.156.0/24 maxlen: 24
84.22.231.0/24 maxlen: 24
78.93.160.0/24 maxlen: 24
78.93.161.0/24 maxlen: 24
84.22.234.0/24 maxlen: 24
84.22.238.0/24 maxlen: 24
86.60.107.0/24 maxlen: 24
86.60.109.0/24 maxlen: 24
212.100.218.0/24 maxlen: 24
86.60.112.0/21 maxlen: 21
86.60.126.0/24 maxlen: 24
86.60.64.0/18 maxlen: 18
212.100.192.0/19 maxlen: 19
212.100.210.0/24 maxlen: 24
78.93.0.0/16 maxlen: 16
77.64.0.0/17 maxlen: 17
77.64.40.0/24 maxlen: 24
78.93.92.0/22 maxlen: 22
78.93.96.0/22 maxlen: 22
78.93.108.0/24 maxlen: 24
78.93.109.0/24 maxlen: 24
78.93.107.0/24 maxlen: 24
78.93.28.0/24 maxlen: 24
212.116.192.0/19 maxlen: 19
78.93.50.0/24 maxlen: 24
2a02:df0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d6:d4:44:92:6c:04:c5:b4:b8:75:af:be:be:19:0f:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a43e9e267956e7f262c17f0089f0f60ba7abefb
Validity
Not Before: Nov 16 06:31:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e1724a3da9d73d2d829d37b46974055ebe87419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:83:30:7c:df:06:c8:32:a1:ac:77:5d:5d:3a:
d5:b0:02:e3:c3:fd:f3:77:eb:3b:68:75:98:f3:6c:
dc:33:22:02:9e:d9:df:5b:bb:ab:bc:2d:cf:08:40:
2a:61:f4:14:f8:06:68:e7:40:2a:7d:75:a5:2d:7b:
e6:f4:6e:e3:2b:4f:f1:1b:82:56:57:f1:39:60:a0:
e9:49:b3:76:96:5a:e0:69:f6:60:02:28:c2:9a:d4:
d6:99:27:aa:b2:2c:e0:82:5d:98:29:92:19:cf:b8:
5c:9d:4b:02:a9:1a:3b:4a:7f:6b:d4:ce:3e:78:37:
80:8c:9a:e2:7a:cd:d0:67:0f:22:f2:9a:05:ca:fb:
30:10:9c:6c:94:c5:57:86:fb:bd:6d:a7:4e:be:d2:
08:cd:67:48:1b:43:f0:8b:55:f4:3d:ee:58:ca:2b:
df:ed:5d:5f:c1:04:c8:3f:be:18:35:6e:4f:75:2a:
7c:f3:e6:91:e6:b4:5e:5c:93:03:32:7c:d2:b1:37:
b8:47:ac:c6:2b:ce:8e:4d:26:6e:e5:ce:78:f5:2d:
4f:e8:b8:93:88:8c:68:ec:ae:2e:9b:44:04:3a:83:
da:57:a9:ea:37:fc:56:0b:c6:80:12:f5:41:89:d1:
31:42:dc:b6:92:14:2e:fd:1c:03:53:73:40:f1:d9:
a7:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:17:24:A3:DA:9D:73:D2:D8:29:D3:7B:46:97:40:55:EB:E8:74:19
X509v3 Authority Key Identifier:
keyid:5A:43:E9:E2:67:95:6E:7F:26:2C:17:F0:08:9F:0F:60:BA:7A:BE:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WkPp4meVbn8mLBfwCJ8PYLp6vvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/Phcko9qdc9LYKdN7RpdAVevodBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/WkPp4meVbn8mLBfwCJ8PYLp6vvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.64.0.0/17
78.93.0.0/16
84.22.224.0/19
86.60.64.0/18
212.93.192.0/19
212.100.192.0/19
212.116.192.0/19
213.184.160.0/19
IPv6:
2a02:df0::/32
Signature Algorithm: sha256WithRSAEncryption
5f:e3:e7:d9:15:06:6b:4a:e6:60:58:e6:63:b3:d1:ab:d0:8d:
0c:47:24:0e:0d:4c:2d:c0:a4:d8:ef:6b:7e:04:99:96:19:ba:
76:65:33:62:2f:ea:d3:ab:33:f5:07:1a:c9:26:2e:56:5f:13:
e9:cb:88:14:0e:9b:ca:64:26:45:cf:fc:0c:00:19:57:6b:3a:
83:c2:ab:d0:2b:41:e0:7e:fe:6a:8f:00:73:61:ce:62:ec:d6:
ab:da:63:75:c9:48:99:cf:41:25:68:01:03:b0:78:82:1d:5a:
6b:b8:db:59:ae:90:7a:88:09:6f:91:02:51:d0:6a:8c:ff:4e:
a3:0f:01:9b:19:77:0e:cc:3a:9b:61:79:cf:62:55:4d:ab:fc:
fa:17:d7:b5:90:36:b7:52:4b:db:69:0b:06:6b:7d:35:73:b6:
7f:3d:2c:dc:94:24:c3:44:63:8c:57:e4:57:8b:7f:7f:51:cf:
f1:33:7d:60:82:95:88:4d:27:dd:6a:9c:0d:95:56:fe:14:bd:
a8:49:16:d2:c3:1f:6d:d8:8c:e3:44:33:68:f5:75:d2:8b:13:
8b:c7:ca:a5:59:a6:d2:22:81:70:bb:32:44:79:62:65:05:08:
79:4b:97:6b:ea:f8:be:3b:f5:ba:ef:44:93:d3:f1:38:c1:34:
e1:34:aa:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:05 2024 by rpki-client on console-fra.rpki-client.org