Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/lb79HnPAd-GexmIlK7ZQe9z0DdQ.roa
File: lb79HnPAd-GexmIlK7ZQe9z0DdQ.roa (raw, json)
Hash identifier: DdopaxySvb3eg7PrXm3yo1HdaYXVlLnek/b5tmDy3u8=
Subject key identifier: 95:BE:FD:1E:73:C0:77:E1:9E:C6:62:25:2B:B6:50:7B:DC:F4:0D:D4
Certificate issuer: /CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Certificate serial: 018DAC6BCA84F39651757EF8B982956021BE
Authority key identifier: 73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/lb79HnPAd-GexmIlK7ZQe9z0DdQ.roa
Signing time: Thu 15 Feb 2024 10:59:21 +0000
ROA not before: Thu 15 Feb 2024 10:59:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 5.22.204.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 16 Feb 2024 10:55:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ac:6b:ca:84:f3:96:51:75:7e:f8:b9:82:95:60:21:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Validity
Not Before: Feb 15 10:59:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=95befd1e73c077e19ec662252bb6507bdcf40dd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:94:11:a6:83:b9:3a:1c:83:0d:46:1e:4e:4a:
31:f6:39:3f:67:d9:75:ef:9d:f2:ce:8f:2d:c1:6b:
10:52:8f:ca:d9:b6:85:94:f0:1d:d5:d9:d1:5d:70:
67:5b:81:37:d3:42:4f:b3:22:55:4e:5b:c4:f0:4b:
06:a2:07:fd:98:5f:91:8c:08:90:35:ab:72:db:3c:
14:9a:22:0e:1d:e7:56:6e:dd:5a:14:ad:45:32:65:
a9:c4:62:a9:31:9f:1b:5f:fc:99:14:22:91:88:2f:
ac:f2:51:d1:95:4b:32:d3:e6:9a:dd:f0:b1:5e:f6:
43:b9:73:b1:ac:30:8a:6e:a9:bb:96:bc:32:cc:72:
f6:ae:b9:1c:00:a4:0c:28:1a:b2:59:a8:f0:38:bb:
41:00:cd:7d:fb:2a:fb:3b:7b:a8:cd:95:05:6a:31:
0d:1f:d7:27:c1:73:43:2c:8c:86:1d:89:95:02:a6:
f7:fb:64:d0:1b:48:99:3d:82:c2:d9:9b:cc:1a:a3:
5e:f4:6f:2c:71:55:59:a5:14:c9:69:75:f0:68:f5:
a4:d4:3c:e7:45:ef:8f:e3:a1:a3:d2:4d:fd:ac:0a:
d9:43:de:51:88:46:34:4f:70:33:30:0d:95:bc:89:
02:79:17:a9:30:da:0d:ae:81:79:85:a4:ed:21:54:
1b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:BE:FD:1E:73:C0:77:E1:9E:C6:62:25:2B:B6:50:7B:DC:F4:0D:D4
X509v3 Authority Key Identifier:
keyid:73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/lb79HnPAd-GexmIlK7ZQe9z0DdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.22.204.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:1b:23:bf:37:bb:b7:21:b9:61:27:c3:ba:54:41:c2:1b:b5:
76:26:4a:34:bb:b1:6f:c1:bb:d6:4a:8b:81:b5:e4:3e:03:07:
5b:c3:cc:37:77:cb:e4:7d:6d:08:0c:c2:68:7b:a7:cd:89:cb:
bd:05:52:0d:cc:c8:8d:06:b9:28:ff:13:29:06:54:89:22:7b:
e4:3f:c4:4b:6f:1e:8f:5d:bb:6d:bd:fd:2f:2b:8f:47:86:4f:
dc:48:68:19:1e:43:77:45:df:26:10:f9:3f:51:af:db:ae:85:
c5:9a:aa:c7:a8:f4:bc:45:f0:a3:93:59:5b:9e:9f:a0:4f:3d:
1c:fc:a3:01:aa:36:37:9c:03:40:1b:4c:aa:c9:51:a0:6a:e8:
2d:d5:63:00:fe:05:17:b6:97:7d:01:9f:2c:52:90:71:0d:2f:
dd:13:6b:df:2a:65:b7:29:57:ed:09:02:08:24:c6:a1:e6:3b:
cc:58:a9:d8:ed:43:cf:17:52:0a:c1:0c:89:fe:98:fe:40:c8:
60:03:ac:9a:c0:48:a4:1d:88:58:5a:8a:0c:f1:d8:89:04:bd:
8d:8c:cf:b1:57:69:66:6f:84:34:3a:5a:57:02:60:7c:c7:ab:
e4:82:56:1f:b2:54:b2:86:43:fd:7e:dd:ad:5c:d9:4f:d2:f4:
8d:3e:cb:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:07 2024 by rpki-client on console-fra.rpki-client.org