Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/kx2aJuCzL3rnyp-XakMnhxS5khM.roa
File: kx2aJuCzL3rnyp-XakMnhxS5khM.roa (raw, json)
Hash identifier: gX4SG2tITLMH2loErWllaRmZGxKgEX7NLeDcZjsnLAo=
Subject key identifier: 93:1D:9A:26:E0:B3:2F:7A:E7:CA:9F:97:6A:43:27:87:14:B9:92:13
Certificate issuer: /CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Certificate serial: 01856CCAE366202A180C385016D85347C795
Authority key identifier: 42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/kx2aJuCzL3rnyp-XakMnhxS5khM.roa
Signing time: Sun 01 Jan 2023 10:05:13 +0000
ROA not before: Sun 01 Jan 2023 10:05:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42962
IP address blocks: 5.181.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 27 May 2023 14:40:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:e3:66:20:2a:18:0c:38:50:16:d8:53:47:c7:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Validity
Not Before: Jan 1 10:05:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=931d9a26e0b32f7ae7ca9f976a43278714b99213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:72:a4:fe:d9:9b:63:1c:f4:30:7e:34:56:ab:
53:d2:26:67:fc:91:38:b2:47:18:45:b8:ac:6c:c3:
81:f0:b0:39:87:2c:88:ae:39:76:12:34:5e:f4:3a:
40:f1:8e:23:08:40:1c:29:32:4c:bf:ee:3f:e1:44:
72:54:dc:ca:98:2f:26:ae:d2:9d:cf:f2:a3:65:a8:
fc:a3:82:3c:8b:40:73:eb:34:83:ac:f1:29:36:56:
5c:6e:0b:32:90:6f:e3:95:71:2d:b1:fb:5b:96:88:
0a:8e:f4:1b:b0:af:7e:8d:a4:98:70:94:28:bc:3e:
d9:03:13:25:f7:06:4f:4c:d4:60:a6:25:ad:5f:ad:
dc:02:fc:a7:30:b2:56:5e:43:ce:e9:17:96:04:87:
eb:8e:4b:aa:25:7b:6e:c4:dc:2a:66:2c:7d:ed:df:
5d:0a:f3:14:6b:74:fc:ab:92:97:39:65:38:f7:f7:
b2:f7:18:f4:0e:63:0e:3d:76:7b:f3:ac:f7:5e:75:
4b:20:80:ce:80:f2:42:1b:74:18:08:09:91:c6:f1:
f2:56:ec:16:53:e9:f8:19:29:53:3f:54:a5:de:a1:
8f:26:bf:96:f5:e1:b1:82:ed:bd:7e:76:7c:65:79:
09:49:6b:5b:5f:fa:a7:02:0d:1a:f7:91:21:80:7a:
c4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:1D:9A:26:E0:B3:2F:7A:E7:CA:9F:97:6A:43:27:87:14:B9:92:13
X509v3 Authority Key Identifier:
keyid:42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/kx2aJuCzL3rnyp-XakMnhxS5khM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.224.0/24
Signature Algorithm: sha256WithRSAEncryption
29:e9:e2:d7:2b:e5:a2:99:cf:7a:92:4c:77:53:0f:2e:a9:9a:
32:fd:07:7b:be:52:8b:cf:6b:7a:b1:a0:ff:4b:9b:85:c5:52:
e7:5f:f4:ac:7f:7e:8f:58:c9:28:34:e1:35:e3:b0:23:be:0c:
aa:2d:cf:13:fd:af:94:ed:3d:2b:71:01:d0:2a:e2:f4:37:b1:
c1:27:51:18:31:76:48:9b:37:44:dd:e9:80:39:e3:9f:6f:59:
16:31:83:d1:8c:57:45:e4:a4:67:86:00:76:60:b0:75:f5:f4:
74:db:25:76:8f:1d:91:fc:3f:22:7a:21:66:26:2e:34:54:74:
fb:f7:87:44:c8:df:e0:e5:2c:c3:e2:9e:38:9c:13:ac:ce:e3:
40:47:78:52:52:bf:8d:84:5b:7f:0f:65:2a:ad:da:d7:c4:74:
a7:75:bf:83:a5:ea:05:11:b3:67:67:43:20:52:36:1d:41:cb:
96:03:4e:c0:b0:54:51:d2:0b:22:84:f0:50:53:8b:69:80:3f:
91:1d:44:d4:79:78:87:29:e9:b4:71:27:53:4a:c6:83:4a:4d:
ce:45:76:43:46:9a:9d:96:da:0d:0b:bc:57:14:29:b8:86:5b:
6f:b3:87:f4:17:a7:0e:76:b0:2f:1a:de:8a:fd:df:51:ea:6d:
6b:0b:1b:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org