Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/c0fc0a-15d4-46cc-a8b9-47632cb5b854/1/D3M5wMc3rPOZVIt-FiOS3ll3kGE.roa
File: D3M5wMc3rPOZVIt-FiOS3ll3kGE.roa (raw, json)
Hash identifier: +RhhDlhzWuCDsKOS/yW4LIXbphU2t3fz6XWfAanCDEw=
Subject key identifier: 0F:73:39:C0:C7:37:AC:F3:99:54:8B:7E:16:23:92:DE:59:77:90:61
Certificate issuer: /CN=7de98f48e988790d0e0793537941b413d2e60306
Certificate serial: 0185722811FD3EAFF1C2ADBF1BB94A1EBC29
Authority key identifier: 7D:E9:8F:48:E9:88:79:0D:0E:07:93:53:79:41:B4:13:D2:E6:03:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/femPSOmIeQ0OB5NTeUG0E9LmAwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/c0fc0a-15d4-46cc-a8b9-47632cb5b854/1/D3M5wMc3rPOZVIt-FiOS3ll3kGE.roa
Signing time: Mon 02 Jan 2023 11:05:06 +0000
ROA not before: Mon 02 Jan 2023 11:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41071
IP address blocks: 5.252.44.0/22 maxlen: 22
91.102.128.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:28:11:fd:3e:af:f1:c2:ad:bf:1b:b9:4a:1e:bc:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7de98f48e988790d0e0793537941b413d2e60306
Validity
Not Before: Jan 2 11:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f7339c0c737acf399548b7e162392de59779061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f1:82:e7:a2:d5:1e:05:5d:3b:28:86:35:bd:
6f:87:f2:2d:17:f9:b4:dc:15:8d:41:d5:52:2e:98:
a5:81:ab:0c:42:7d:29:d8:e5:0f:1e:70:98:71:62:
95:6b:0b:c7:10:02:72:8f:55:c9:83:ec:31:b8:c8:
99:dc:8c:4f:8f:25:49:24:ad:22:d1:d3:a2:b0:be:
06:8e:7c:5f:db:d7:ed:7f:06:79:0f:3b:c2:00:b0:
dd:8e:72:5e:76:ae:90:4c:19:3c:75:ab:68:2c:0e:
1e:5a:eb:43:c0:93:2a:9c:e7:28:12:85:a3:ce:7d:
3a:96:62:a4:09:84:5c:47:30:7f:aa:78:87:69:b5:
8f:56:c3:05:df:aa:e8:ce:ae:98:13:41:cf:3c:4d:
76:ce:30:0b:a2:ad:bb:2d:a6:9a:fe:be:de:e7:dd:
fb:9a:10:36:b9:1c:eb:45:6d:a1:e5:aa:7c:9b:56:
9d:36:3f:82:85:cd:a3:f5:00:e1:ee:0f:49:37:04:
ea:34:53:9c:92:d6:b2:ef:f3:5f:f8:70:f2:f6:c0:
90:dd:3c:6e:3d:c7:7d:84:9c:16:ac:7d:51:89:0a:
c9:02:fe:c5:d0:ec:d3:3b:8a:ac:90:b1:b6:d6:cb:
59:28:27:71:fb:3a:bb:e9:53:90:38:33:80:b0:91:
31:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:73:39:C0:C7:37:AC:F3:99:54:8B:7E:16:23:92:DE:59:77:90:61
X509v3 Authority Key Identifier:
keyid:7D:E9:8F:48:E9:88:79:0D:0E:07:93:53:79:41:B4:13:D2:E6:03:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/femPSOmIeQ0OB5NTeUG0E9LmAwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/c0fc0a-15d4-46cc-a8b9-47632cb5b854/1/D3M5wMc3rPOZVIt-FiOS3ll3kGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/c0fc0a-15d4-46cc-a8b9-47632cb5b854/1/femPSOmIeQ0OB5NTeUG0E9LmAwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.44.0/22
91.102.128.0/21
Signature Algorithm: sha256WithRSAEncryption
61:8c:0c:56:5c:dd:28:a1:50:7c:ea:c4:06:bf:d0:d6:c5:4c:
a1:a5:5c:db:09:7d:9a:90:da:68:b2:fe:24:27:c0:6e:55:1b:
08:7d:79:d7:49:1a:4e:b3:11:f5:86:1d:a8:cd:2b:31:d1:d5:
7e:c9:cd:71:4a:0e:82:f0:b3:4d:bb:70:15:94:ed:7a:a1:c4:
40:4b:78:2f:51:0f:fd:76:5a:cc:32:f7:09:8d:1f:f9:02:f9:
7c:48:9a:66:d8:30:71:61:08:d4:5b:57:d5:26:21:4f:35:fa:
81:ca:3b:5e:f3:7e:87:9c:73:86:73:cf:63:14:5b:86:b0:d0:
46:96:e3:c1:24:84:8a:e4:37:7e:d7:c1:57:66:2b:4a:52:f9:
c5:f9:a6:b4:7c:d8:35:70:28:e3:32:d2:57:76:54:0a:a3:37:
60:87:ee:be:77:c3:68:54:4a:32:29:6f:4a:41:f0:31:8b:e4:
69:a7:a0:31:55:49:39:c2:9a:da:76:99:94:18:b5:c9:e4:6a:
2a:f8:bc:61:c5:04:ee:7d:5e:b4:1d:5a:65:82:69:1c:46:78:
98:db:41:a5:03:8d:70:35:0a:24:20:f5:16:95:de:b5:c8:41:
38:fc:eb:16:12:37:13:7f:11:7e:1f:4e:93:d6:a4:4a:bf:a6:
27:3c:eb:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:56 2024 by rpki-client on console-fra.rpki-client.org