Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/e1b422-162a-498a-92d8-b102fe3283a3/1/o-Wk5e4D2NugDP79MGIblkW7Icw.roa
File: o-Wk5e4D2NugDP79MGIblkW7Icw.roa (raw, json)
Hash identifier: bP6Nou6oCLLEcH9ggDXkRJQXUj/XefZGoN+jds5uwmk=
Subject key identifier: A3:E5:A4:E5:EE:03:D8:DB:A0:0C:FE:FD:30:62:1B:96:45:BB:21:CC
Certificate issuer: /CN=b536466d036852e2f7376ade138046143b994cc3
Certificate serial: 0185728C7DFCBCC4D812A8AA0252CDBE7A46
Authority key identifier: B5:36:46:6D:03:68:52:E2:F7:37:6A:DE:13:80:46:14:3B:99:4C:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tTZGbQNoUuL3N2reE4BGFDuZTMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/e1b422-162a-498a-92d8-b102fe3283a3/1/o-Wk5e4D2NugDP79MGIblkW7Icw.roa
Signing time: Mon 02 Jan 2023 12:54:47 +0000
ROA not before: Mon 02 Jan 2023 12:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199205
IP address blocks: 5.254.184.0/21 maxlen: 21
185.119.160.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:7d:fc:bc:c4:d8:12:a8:aa:02:52:cd:be:7a:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b536466d036852e2f7376ade138046143b994cc3
Validity
Not Before: Jan 2 12:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3e5a4e5ee03d8dba00cfefd30621b9645bb21cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e1:ca:37:53:42:51:a0:01:15:55:f0:6f:84:
d5:4f:7c:e1:06:55:62:fc:09:b1:1c:fa:6a:f0:f5:
7e:85:74:d5:35:f2:e4:fa:c6:d4:b6:27:a8:39:d3:
3d:97:99:ea:cf:80:19:4d:ff:24:6d:e6:bd:75:ac:
6f:af:2c:e7:74:e8:eb:05:d1:5b:29:48:27:bf:e8:
f7:b8:05:e0:a1:54:06:8d:9b:1b:73:04:33:09:0c:
c5:73:56:f3:ac:9e:77:80:eb:22:c0:4a:12:13:7a:
5a:d5:06:36:84:7a:b7:f3:1a:89:0c:02:19:89:94:
9f:53:75:4c:ec:30:ff:ae:51:8a:5f:9c:8d:14:63:
23:20:ff:de:c5:95:54:4a:4e:f5:1d:e1:e5:70:2d:
95:b9:ff:33:0b:89:ca:55:c4:50:77:4f:ad:f9:5b:
14:db:85:b2:4e:c8:67:d2:b0:3e:1f:0b:91:17:3a:
7e:ba:72:bd:7b:4b:b3:68:b7:ef:e7:5a:4c:bf:db:
cd:2b:49:c5:3e:76:8c:ba:90:b8:c9:1a:4a:cf:ea:
25:19:e4:08:7f:96:fd:26:76:da:43:58:92:e5:83:
a1:13:b5:ae:91:95:55:05:80:eb:66:4d:ac:ad:77:
22:88:ba:d8:94:40:96:d3:dc:a6:88:34:dd:6f:2d:
a6:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:E5:A4:E5:EE:03:D8:DB:A0:0C:FE:FD:30:62:1B:96:45:BB:21:CC
X509v3 Authority Key Identifier:
keyid:B5:36:46:6D:03:68:52:E2:F7:37:6A:DE:13:80:46:14:3B:99:4C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tTZGbQNoUuL3N2reE4BGFDuZTMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e1b422-162a-498a-92d8-b102fe3283a3/1/o-Wk5e4D2NugDP79MGIblkW7Icw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e1b422-162a-498a-92d8-b102fe3283a3/1/tTZGbQNoUuL3N2reE4BGFDuZTMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.254.184.0/21
185.119.160.0/22
Signature Algorithm: sha256WithRSAEncryption
84:2d:04:2a:c0:18:17:13:10:3f:92:ec:87:23:9b:80:54:a7:
64:bb:19:b8:73:cf:9f:82:c7:b6:4a:98:24:6d:fb:d9:af:35:
79:aa:cc:48:29:de:9c:1b:30:e0:7a:39:aa:28:55:47:ec:1e:
b2:60:be:28:97:03:53:18:4f:99:d3:53:85:53:34:db:a1:ec:
af:2e:06:2f:fe:e1:13:4d:eb:0a:7e:14:eb:3f:62:7f:2d:f4:
fb:a9:a4:7b:75:42:33:87:9d:3f:3e:ce:8c:87:63:cd:57:de:
16:8a:da:6d:83:1e:05:f0:a0:b3:1e:9d:8c:57:69:df:91:4c:
28:be:5d:ae:9f:dc:21:28:fa:06:14:6d:e4:4d:e5:cc:ce:c5:
d8:f8:ff:0b:26:12:5c:8b:09:ed:54:a5:1a:bd:fe:a3:6a:e4:
fa:00:6b:f9:d3:fd:fa:62:fb:8c:f8:0b:82:f1:a8:ff:a8:9f:
94:64:56:2c:c2:59:78:30:fd:46:40:9d:86:28:e8:b1:6f:2e:
ac:1d:29:db:fa:ae:0e:93:1c:df:a1:b9:78:1d:31:16:6b:cc:
1a:cc:a8:ab:6a:9a:2a:9c:48:1a:8d:97:b7:6b:16:f0:2f:00:
92:42:ff:09:bd:59:c7:35:0b:dc:9e:1c:47:10:9e:ba:cb:c8:
bf:7c:d5:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:11 2024 by rpki-client on console-fra.rpki-client.org