Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/5iEPYF2RYTc87wOBvlAcpHPxgPU.roa
File: 5iEPYF2RYTc87wOBvlAcpHPxgPU.roa (raw, json)
Hash identifier: Dw9sROEAVMSiYQz6imPwsvd31nvdML6OJo9IQwtaUCc=
Subject key identifier: E6:21:0F:60:5D:91:61:37:3C:EF:03:81:BE:50:1C:A4:73:F1:80:F5
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 0185C4FE230A933721F72DB70C79E304AC36
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/5iEPYF2RYTc87wOBvlAcpHPxgPU.roa
Signing time: Wed 18 Jan 2023 13:07:47 +0000
ROA not before: Wed 18 Jan 2023 13:07:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56324
IP address blocks: 185.244.96.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c4:fe:23:0a:93:37:21:f7:2d:b7:0c:79:e3:04:ac:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 18 13:07:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6210f605d9161373cef0381be501ca473f180f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:cb:61:3e:92:3d:b9:b7:8c:5b:57:ed:82:f6:
35:dc:fb:cc:38:91:6a:45:02:59:1a:2b:c6:5d:80:
e2:a5:f7:b4:cf:0e:a0:2e:97:bb:f3:da:6c:ff:c9:
95:20:e6:8b:5b:f9:df:d8:19:c0:0f:36:d2:a1:58:
49:61:0a:39:c8:ad:24:32:bc:6f:54:25:8d:a7:50:
7b:79:e7:81:0c:2f:02:34:44:75:34:c8:e0:34:33:
df:66:ed:8c:3a:f1:29:00:f9:46:af:c7:d0:61:7b:
83:f1:2e:f1:2b:eb:e6:6f:fb:20:b3:ca:b9:74:68:
78:be:69:e4:c1:55:bb:6e:e5:f1:0c:b8:e4:6f:64:
6b:3b:9c:33:a8:d3:e4:f6:ae:45:21:52:88:59:fb:
c4:d9:5c:2f:ae:2c:90:1a:97:3d:cf:57:f1:4c:6d:
73:99:7a:46:bd:51:fa:51:a2:94:07:52:dc:cf:49:
25:6f:9f:f8:e8:fb:db:ba:5a:84:1d:29:e1:40:7f:
2f:4a:04:f5:a5:f5:8a:34:e0:33:86:08:1e:13:f4:
1c:c2:39:ac:ab:81:64:b8:82:02:7f:66:ee:97:ec:
94:d0:9d:a1:81:a1:3d:d8:01:a1:b6:66:d4:57:01:
e6:51:31:50:8e:75:dd:63:9a:35:dd:7d:28:ad:c7:
8c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:21:0F:60:5D:91:61:37:3C:EF:03:81:BE:50:1C:A4:73:F1:80:F5
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/5iEPYF2RYTc87wOBvlAcpHPxgPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.96.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:c9:d5:20:b0:4e:f3:fa:b8:2a:8f:a3:33:db:04:83:09:c6:
9a:41:84:39:75:ed:81:fc:bc:b4:cc:99:b8:25:0c:56:e7:a8:
50:ef:f0:b1:3d:d0:d0:96:bb:c6:e1:90:ed:bb:f3:dc:5d:7d:
eb:f6:ea:47:fd:ca:21:50:c9:1e:67:c8:56:05:80:48:39:68:
95:58:a6:98:4d:df:f2:43:b4:4b:55:9a:9e:53:f3:11:1b:7e:
58:2f:3f:2d:82:26:78:53:52:f8:8a:83:21:c7:79:39:f0:af:
32:86:8e:0e:6f:2a:52:38:fd:ed:d3:57:f7:86:6e:1f:10:44:
ff:fc:5a:c7:e7:a4:5f:c6:ca:9d:26:84:c1:03:7d:2b:ba:7f:
89:f0:b8:24:42:30:26:47:57:05:0f:ce:4f:e5:8e:a9:8c:79:
3c:fa:1f:2e:b5:ea:4f:fa:cb:20:86:8e:b0:80:9e:5f:2f:be:
83:52:cf:a0:f7:06:7b:3f:ae:c7:e4:0e:94:e4:27:64:e2:73:
6e:3f:26:99:b1:a5:45:33:0f:09:30:ff:be:0f:e5:47:0e:88:
4c:a5:d9:33:5b:13:51:61:78:03:39:da:e0:c8:e7:58:f8:06:
7c:d8:f4:1f:5f:f5:07:8c:54:84:f6:59:13:84:69:bd:99:21:
56:4b:e6:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org