Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/69f655-6879-426f-9bfb-3aed4cc7d5b8/1/TpeYvfDH1VmWUw8_wRtVCP-mGVY.roa
File: TpeYvfDH1VmWUw8_wRtVCP-mGVY.roa (raw, json)
Hash identifier: FQDfqQoq59ON+8dCXKKlInjuqy4EkYs7tgMXjY8mrKw=
Subject key identifier: 4E:97:98:BD:F0:C7:D5:59:96:53:0F:3F:C1:1B:55:08:FF:A6:19:56
Certificate issuer: /CN=a93da86b4af60e7d29a587d01fcc98b5996c46da
Certificate serial: 0188D8DAE540E739187BC6850D58B1C1061B
Authority key identifier: A9:3D:A8:6B:4A:F6:0E:7D:29:A5:87:D0:1F:CC:98:B5:99:6C:46:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qT2oa0r2Dn0ppYfQH8yYtZlsRto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/69f655-6879-426f-9bfb-3aed4cc7d5b8/1/TpeYvfDH1VmWUw8_wRtVCP-mGVY.roa
Signing time: Tue 20 Jun 2023 12:50:04 +0000
ROA not before: Tue 20 Jun 2023 12:50:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200436
IP address blocks: 5.42.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d8:da:e5:40:e7:39:18:7b:c6:85:0d:58:b1:c1:06:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a93da86b4af60e7d29a587d01fcc98b5996c46da
Validity
Not Before: Jun 20 12:50:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e9798bdf0c7d55996530f3fc11b5508ffa61956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:e4:f0:f6:e3:89:95:94:0d:71:c0:55:12:9b:
4b:77:ec:7c:fb:82:3e:2a:ef:8b:61:1f:95:6f:2c:
97:38:ec:42:f1:86:1b:64:90:cb:bb:ee:f8:79:45:
eb:80:c1:99:15:1e:0f:a1:30:e0:f9:0f:81:ad:5a:
9a:75:a5:d3:6e:01:5b:1f:21:e7:69:de:6e:3f:dc:
35:21:b6:90:af:ca:2c:5f:cf:13:08:65:97:e6:b7:
c4:54:0d:d0:c9:a2:a3:4d:aa:bb:bf:12:d3:ed:d5:
fc:78:aa:2c:2f:3f:bd:90:a4:e2:c5:8f:09:e3:36:
ae:11:55:3b:ea:12:1c:f9:8a:ce:a8:34:0a:7f:0b:
48:5a:8f:6d:44:2f:a6:2e:fd:6b:6a:e1:02:ed:74:
dc:e5:46:4d:12:d2:06:4b:34:dc:bd:0c:bb:63:21:
3f:82:65:2b:14:2f:1f:2c:c0:5a:8c:3a:8b:ad:79:
87:71:24:0e:ac:08:13:87:c0:13:46:82:39:10:d2:
b5:b9:4d:82:7b:cc:e6:50:35:35:47:a9:d8:27:a5:
f6:0c:22:70:6b:db:37:2d:3e:e2:fe:c0:be:7f:0a:
9d:c0:0e:6b:2d:a7:b0:8c:f9:cc:58:25:2c:3c:40:
4e:6b:b3:3c:06:8a:fa:f3:86:f2:b9:b7:e6:36:3b:
2c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:97:98:BD:F0:C7:D5:59:96:53:0F:3F:C1:1B:55:08:FF:A6:19:56
X509v3 Authority Key Identifier:
keyid:A9:3D:A8:6B:4A:F6:0E:7D:29:A5:87:D0:1F:CC:98:B5:99:6C:46:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qT2oa0r2Dn0ppYfQH8yYtZlsRto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/69f655-6879-426f-9bfb-3aed4cc7d5b8/1/TpeYvfDH1VmWUw8_wRtVCP-mGVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/69f655-6879-426f-9bfb-3aed4cc7d5b8/1/qT2oa0r2Dn0ppYfQH8yYtZlsRto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.217.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:86:14:35:87:50:33:07:ad:d7:d7:9f:a8:72:8f:6a:be:15:
73:fe:d6:a3:73:64:ea:b0:79:80:61:5e:5a:8b:dc:ab:16:85:
54:7c:bc:c4:4d:a2:98:41:8a:70:c6:96:57:91:eb:4d:98:32:
1c:23:63:d6:90:ea:f5:50:8d:b5:44:18:73:ba:fb:8a:95:1b:
8a:02:04:89:4b:1e:b2:ce:ca:15:fc:f3:45:2c:f8:e0:d0:4f:
c9:33:ee:0b:0d:26:70:74:65:39:73:28:7e:c8:0d:74:34:2c:
52:b7:26:62:c5:8b:c4:30:d6:78:04:5c:94:1c:b5:77:00:e2:
01:28:59:22:05:a9:a3:49:71:da:4d:4a:1c:12:2d:03:7a:b1:
97:0a:5f:a7:77:21:9e:2a:2c:b9:57:4d:35:ea:ad:2b:fb:df:
05:9f:2d:c3:a5:e1:77:8b:46:05:66:61:1f:68:1b:05:59:81:
d4:44:b5:7d:ef:a8:1d:3b:67:bc:a2:f5:ac:2f:57:35:63:5c:
c9:6b:b8:04:fa:2e:8b:ee:f1:60:f7:96:a6:43:7e:9e:45:09:
f7:cb:6c:2b:bc:74:e3:84:55:f2:43:00:cf:16:f1:a3:5f:9a:
29:55:50:44:1b:5a:cb:d2:9b:b3:72:56:b2:cd:64:89:1f:1e:
65:6e:2f:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:52 2024 by rpki-client on console-fra.rpki-client.org