Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/1cb911-5e7f-49e8-b4f0-3f6ee705915b/1/5LVeZALl57VnXuTakX5BvBkaTeU.roa
File: 5LVeZALl57VnXuTakX5BvBkaTeU.roa (raw, json)
Hash identifier: aJsb45+tnvIFLpphCFVsb9ff10NqVlsOytjnJAeU3L4=
Subject key identifier: E4:B5:5E:64:02:E5:E7:B5:67:5E:E4:DA:91:7E:41:BC:19:1A:4D:E5
Certificate issuer: /CN=6954e90899ff25644520724cde8c211613600bef
Certificate serial: 01856FCBB865BE20C4AD7AB01DFE22ED6891
Authority key identifier: 69:54:E9:08:99:FF:25:64:45:20:72:4C:DE:8C:21:16:13:60:0B:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVTpCJn_JWRFIHJM3owhFhNgC-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/1cb911-5e7f-49e8-b4f0-3f6ee705915b/1/5LVeZALl57VnXuTakX5BvBkaTeU.roa
Signing time: Mon 02 Jan 2023 00:05:00 +0000
ROA not before: Mon 02 Jan 2023 00:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51569
IP address blocks: 185.95.136.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:b8:65:be:20:c4:ad:7a:b0:1d:fe:22:ed:68:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6954e90899ff25644520724cde8c211613600bef
Validity
Not Before: Jan 2 00:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4b55e6402e5e7b5675ee4da917e41bc191a4de5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ad:00:4f:14:48:98:c6:54:d6:bb:28:02:71:
c4:e2:c3:ad:66:54:19:3c:1d:3d:00:a7:77:89:b0:
f4:72:72:36:c7:72:1c:9d:b7:e8:2a:65:9d:30:c2:
7c:f0:49:42:82:7b:a0:bc:8d:a4:36:f7:92:47:7c:
3b:5d:0a:31:b4:58:5e:45:c1:94:22:6a:9a:69:5a:
fe:9f:62:42:a3:01:5c:73:e8:08:f6:47:3b:b7:64:
20:2f:c7:46:d7:a3:cd:34:de:73:90:00:16:16:6d:
d4:36:3b:fc:4f:6d:4c:2e:09:f7:01:04:0f:aa:be:
57:be:40:38:42:3a:c4:a7:a1:56:b1:b4:e3:b4:34:
95:8c:08:79:95:15:18:32:48:76:02:ff:32:e9:8a:
aa:fa:c2:62:39:e5:96:2b:09:87:59:0e:0d:4b:68:
ce:26:eb:3d:f6:7d:73:00:03:36:56:05:e8:ac:15:
e3:8f:0e:50:57:61:a1:d2:82:ea:89:21:7d:9c:34:
17:df:27:64:2a:6c:6b:ad:a8:e1:24:b0:05:c7:a2:
4b:c1:ea:07:4b:54:e2:b6:b0:4d:80:6b:bd:7e:be:
52:6d:c1:66:47:e9:b1:8f:4d:d8:53:7d:7d:9d:61:
b6:8f:18:37:60:2d:73:92:7c:eb:73:c1:a4:b5:7d:
5c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:B5:5E:64:02:E5:E7:B5:67:5E:E4:DA:91:7E:41:BC:19:1A:4D:E5
X509v3 Authority Key Identifier:
keyid:69:54:E9:08:99:FF:25:64:45:20:72:4C:DE:8C:21:16:13:60:0B:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVTpCJn_JWRFIHJM3owhFhNgC-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1cb911-5e7f-49e8-b4f0-3f6ee705915b/1/5LVeZALl57VnXuTakX5BvBkaTeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1cb911-5e7f-49e8-b4f0-3f6ee705915b/1/aVTpCJn_JWRFIHJM3owhFhNgC-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.136.0/22
Signature Algorithm: sha256WithRSAEncryption
01:06:3f:84:a9:4b:1b:1b:fa:aa:ed:d5:b3:dd:24:3a:a8:7c:
5f:52:1a:36:56:b9:e0:fc:92:da:ce:d5:c6:bc:5f:52:2a:6e:
3b:b0:06:06:d5:8d:44:9f:02:34:4d:f3:f3:72:81:fe:0e:0a:
37:ce:01:2d:a5:6b:5d:f1:21:d8:aa:0e:f5:62:13:e9:36:29:
30:8e:ec:49:f6:e5:a8:e2:95:a3:e8:97:cb:3d:ec:03:49:8e:
09:d7:75:63:8e:75:59:e3:a6:c8:42:77:ae:36:60:31:68:80:
92:f8:07:bf:d6:2c:44:9e:a1:65:11:cf:7c:03:26:e5:20:85:
6c:f7:e6:b4:52:c7:5e:eb:be:69:90:21:24:63:8d:3c:3e:30:
66:d4:c8:a0:a3:22:96:31:77:d0:b6:f1:8f:60:42:7c:a2:67:
5b:6c:dc:36:c1:59:e7:fd:95:60:4f:89:59:0b:a0:31:cf:40:
33:5b:a7:1b:30:e6:0c:42:5a:b8:7f:f7:0a:e3:af:2e:b9:52:
7f:56:be:ca:e8:54:37:0c:bb:66:8c:a4:8b:4f:f6:79:f2:59:
b0:03:26:68:03:05:d9:ea:31:5c:01:40:dd:b3:76:a0:fe:64:
ee:f9:a9:9b:8d:62:88:af:9a:b5:91:fa:21:48:ad:82:f8:a5:
e2:f0:eb:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:10 2024 by rpki-client on console-ams.rpki-client.org