Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/1tlsBdCRW6YXaw_iV6XL_byw1F4.roa
File: 1tlsBdCRW6YXaw_iV6XL_byw1F4.roa (raw, json)
Hash identifier: Snzc81rJtUJLHH9IOYDmUxmBJzfaAZHvLXChVD5Qey0=
Subject key identifier: D6:D9:6C:05:D0:91:5B:A6:17:6B:0F:E2:57:A5:CB:FD:BC:B0:D4:5E
Certificate issuer: /CN=83991afcd455eb1b174fcf89f8e10eaf7f70b355
Certificate serial: 018F4C6E207A4D58E0565AA88982835785FA
Authority key identifier: 83:99:1A:FC:D4:55:EB:1B:17:4F:CF:89:F8:E1:0E:AF:7F:70:B3:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/1tlsBdCRW6YXaw_iV6XL_byw1F4.roa
Signing time: Mon 06 May 2024 05:43:56 +0000
ROA not before: Mon 06 May 2024 05:43:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 136787
IP address blocks: 5.44.248.0/24 maxlen: 32
Validation: Failed, certificate revoked on Fri 17 May 2024 12:21:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4c:6e:20:7a:4d:58:e0:56:5a:a8:89:82:83:57:85:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83991afcd455eb1b174fcf89f8e10eaf7f70b355
Validity
Not Before: May 6 05:43:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d6d96c05d0915ba6176b0fe257a5cbfdbcb0d45e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:61:98:51:6e:1e:21:37:85:05:7c:97:15:c3:
82:93:a2:1c:4e:7b:a2:ce:7d:11:23:cb:b2:19:98:
07:32:ea:e5:2c:4a:8a:41:8d:66:bf:13:34:bd:14:
f7:98:0d:30:db:f8:36:27:cf:b4:79:b5:ae:cb:6f:
e1:a1:a9:fe:a8:ae:e9:21:e7:90:56:43:ee:b9:91:
88:af:74:37:d7:15:37:f0:f5:79:ef:ac:08:e7:a1:
99:91:a4:14:08:2e:1f:fe:6d:4c:ae:10:8b:c6:a1:
20:5e:0c:20:2f:b8:38:16:03:64:c8:0b:83:84:33:
9e:89:07:42:b8:69:e5:d9:78:e5:6d:47:4b:d6:06:
37:bf:52:3a:7a:97:25:9d:b1:80:e5:33:ec:30:e9:
5d:4b:85:10:fc:34:a7:1b:76:c9:e0:d4:09:ee:e1:
1e:a8:8c:cc:09:78:a1:cf:13:28:fe:9b:f6:5e:dc:
04:61:4e:8b:55:63:15:01:c8:35:33:d9:fd:eb:a6:
a1:5f:02:56:f7:8e:6c:d6:23:af:7f:9e:80:d6:1c:
31:9f:eb:c6:ca:47:b8:0f:4d:cc:6b:a6:e2:42:9b:
d2:73:99:c3:d9:a5:ee:79:59:4f:85:d2:ad:53:e6:
db:11:47:d4:01:f9:46:18:09:7e:c2:49:00:90:fc:
a9:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:D9:6C:05:D0:91:5B:A6:17:6B:0F:E2:57:A5:CB:FD:BC:B0:D4:5E
X509v3 Authority Key Identifier:
keyid:83:99:1A:FC:D4:55:EB:1B:17:4F:CF:89:F8:E1:0E:AF:7F:70:B3:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/1tlsBdCRW6YXaw_iV6XL_byw1F4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/g5ka_NRV6xsXT8-J-OEOr39ws1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.248.0/24
Signature Algorithm: sha256WithRSAEncryption
84:e2:3e:65:a4:ec:aa:ed:3f:50:40:27:67:0b:d3:0b:d3:be:
48:75:a6:d0:b1:30:15:4a:74:08:02:1b:26:2d:2a:9e:3f:03:
0c:46:df:08:83:04:de:38:93:76:ce:16:af:62:5c:78:ec:37:
2f:a4:83:fe:8b:a3:c2:33:bf:c5:fc:41:0b:09:d0:17:8d:31:
a8:99:94:d8:e5:92:d4:70:c9:e6:19:7d:27:44:66:7d:58:d6:
8c:aa:61:ec:bf:6a:9c:5c:0f:60:00:5d:1c:63:b1:1d:dd:71:
d5:9b:cd:d5:f0:ce:6a:31:54:f1:7f:0b:7c:c3:cb:b7:4a:be:
f6:00:21:81:10:23:96:46:92:37:ef:f1:cd:35:75:90:6c:99:
3b:e6:48:6f:89:52:4f:1e:aa:ab:f1:8c:e9:a2:a7:85:93:66:
f1:2f:0e:59:f7:53:7e:03:56:44:45:bc:06:45:b3:9b:b3:f3:
c9:4c:a9:f1:a3:55:ac:03:f7:9b:95:32:84:a7:b9:9d:c1:36:
c9:da:30:9c:be:64:13:e4:8a:7c:0d:e5:9a:b3:7b:aa:3d:06:
17:1d:df:21:95:cb:d6:24:7b:12:2c:c8:c8:29:9e:33:2b:1d:
c3:b8:bf:6a:47:78:10:a7:63:9a:52:2f:4d:e3:46:42:0e:95:
b5:e6:79:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:07 2024 by rpki-client on console-fra.rpki-client.org