Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/PeBkk5I6DK8413S1ONZitTB0KSc.roa
File: PeBkk5I6DK8413S1ONZitTB0KSc.roa (raw, json)
Hash identifier: aPsSRJujSateiSARWXmOr23+pUsK7MW9UbkF3Fl0bfE=
Subject key identifier: 3D:E0:64:93:92:3A:0C:AF:38:D7:74:B5:38:D6:62:B5:30:74:29:27
Certificate issuer: /CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Certificate serial: 01892B78EFAACC395B0004AA08B2BC21CB89
Authority key identifier: 5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/PeBkk5I6DK8413S1ONZitTB0KSc.roa
Signing time: Thu 06 Jul 2023 13:51:33 +0000
ROA not before: Thu 06 Jul 2023 13:51:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8330
IP address blocks: 193.203.5.0/24 maxlen: 24
5.57.88.0/21 maxlen: 21
2a00:eb20:abcd::/48 maxlen: 48
2a00:eb20::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2b:78:ef:aa:cc:39:5b:00:04:aa:08:b2:bc:21:cb:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Validity
Not Before: Jul 6 13:51:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3de06493923a0caf38d774b538d662b530742927
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:8d:50:9b:49:7f:f6:dc:3d:a4:39:d5:04:dc:
9e:47:3a:2e:1d:8e:8b:a4:e0:32:94:27:dd:54:a2:
9a:ad:f0:a0:38:63:d8:33:aa:8b:f3:23:27:75:24:
26:84:d4:41:d0:51:c9:71:0e:eb:05:55:ba:a7:c3:
ba:c7:37:90:b3:08:ac:d6:d2:03:b1:16:0d:1d:d6:
85:bf:37:eb:42:06:96:70:68:47:29:d6:f9:91:d5:
cb:8b:b0:cf:f0:1d:17:8b:8c:ee:99:a1:7a:1d:6c:
8d:47:18:e6:ef:92:ac:a9:1e:06:ec:44:74:82:4c:
eb:39:ef:df:d8:35:cc:9a:70:c2:05:90:36:8e:d4:
06:66:1c:9a:f0:ec:87:f5:03:20:af:36:32:1e:ce:
89:f8:24:be:e2:4e:5a:14:6a:7e:bc:21:08:68:51:
37:40:cf:ed:92:b0:72:79:fe:af:63:b5:55:f3:12:
60:26:79:d7:9a:9e:68:c0:db:04:61:45:d0:a4:e0:
25:82:e3:fd:6e:3e:5a:a9:20:de:17:bb:61:a7:7a:
77:79:a8:7c:06:0b:f1:75:ae:47:12:50:ea:88:b3:
b7:52:6b:24:5e:51:d7:f5:51:8d:47:70:ef:05:84:
c5:12:14:ae:6c:08:8a:bc:73:15:d3:b1:db:37:16:
ea:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E0:64:93:92:3A:0C:AF:38:D7:74:B5:38:D6:62:B5:30:74:29:27
X509v3 Authority Key Identifier:
keyid:5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/PeBkk5I6DK8413S1ONZitTB0KSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.88.0/21
193.203.5.0/24
IPv6:
2a00:eb20::/32
Signature Algorithm: sha256WithRSAEncryption
80:d6:3a:18:b9:6e:c7:e9:f8:ce:42:2a:59:28:0b:c5:4e:5e:
f5:64:01:48:6b:a4:f7:62:77:e0:d6:3d:88:19:14:9c:5d:6c:
f9:1a:47:c0:2c:ee:27:e2:a8:c0:56:d2:08:9f:01:1e:c9:05:
75:4c:56:ba:f9:58:04:6a:f6:a7:59:2d:c9:cd:a6:cd:03:d6:
84:57:85:d2:a3:24:5c:a7:e6:f9:bc:0f:95:04:62:ce:bb:2a:
4d:ce:88:28:a7:3b:c0:ff:c0:b8:80:f1:8d:59:1d:c0:80:e8:
37:fa:ba:92:a2:32:67:d5:25:d6:02:da:79:9c:73:c3:72:20:
a6:90:8b:10:8c:f7:cc:8e:77:75:5f:18:34:ef:08:6d:b2:2b:
c8:4d:b7:d5:26:f9:bc:17:8a:b2:54:1d:ac:c3:7b:d0:ba:b9:
16:b2:ea:49:b0:d0:69:cb:37:a1:f9:9c:9d:ba:c7:e1:8c:90:
99:87:f8:bb:42:a4:40:d5:e9:45:94:e9:b1:1c:a0:eb:54:f1:
5e:36:e1:23:91:80:a7:12:f0:f3:2b:c9:bc:b0:cc:45:51:94:
c8:ab:32:10:ce:60:55:fb:6e:6d:40:3d:00:3f:45:f9:3a:e2:
ff:71:36:ff:eb:57:92:08:0f:ce:0e:8b:3f:79:c7:2d:6c:61:
27:41:c0:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:37 2023 by rpki-client on console.sobornost.net