Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/d33bca-729d-43e3-95f7-7b041c54576a/1/vcoPFq-mhXq1_RcItcsL6K4rSoA.roa
File: vcoPFq-mhXq1_RcItcsL6K4rSoA.roa (raw, json)
Hash identifier: hfgfhJvcpeDpJkpLwEinsZ9HXsflg9ia12OZIX5NfMo=
Subject key identifier: BD:CA:0F:16:AF:A6:85:7A:B5:FD:17:08:B5:CB:0B:E8:AE:2B:4A:80
Certificate issuer: /CN=e2d7b7eb8f47e5277912ff058cfed7d899fc69b9
Certificate serial: 01856CEF408F1F387061039D1F842E4231B3
Authority key identifier: E2:D7:B7:EB:8F:47:E5:27:79:12:FF:05:8C:FE:D7:D8:99:FC:69:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4te3649H5Sd5Ev8FjP7X2Jn8abk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/d33bca-729d-43e3-95f7-7b041c54576a/1/vcoPFq-mhXq1_RcItcsL6K4rSoA.roa
Signing time: Sun 01 Jan 2023 10:44:57 +0000
ROA not before: Sun 01 Jan 2023 10:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207813
IP address blocks: 5.252.148.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:40:8f:1f:38:70:61:03:9d:1f:84:2e:42:31:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d7b7eb8f47e5277912ff058cfed7d899fc69b9
Validity
Not Before: Jan 1 10:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdca0f16afa6857ab5fd1708b5cb0be8ae2b4a80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:29:80:5a:a0:11:c4:c2:e5:79:ae:e1:32:89:
87:6f:84:e3:87:62:13:40:d0:37:0b:d0:9c:f3:9d:
ce:eb:b6:63:85:b8:86:ba:82:66:63:5f:20:53:d6:
0e:ed:f3:66:27:a9:8e:e0:5b:03:d6:8f:df:ca:6d:
33:80:ea:3e:7e:ab:f3:a7:5c:f9:11:8c:8f:aa:7a:
dd:13:37:d3:02:bc:a3:42:e3:62:3b:dc:d8:be:b8:
1a:bc:14:0c:04:10:46:aa:03:0c:b8:32:b9:20:07:
08:5f:54:db:ea:09:f9:fe:8b:a7:ae:6c:8e:3d:48:
2b:67:23:9e:aa:00:12:41:45:f4:43:45:e0:15:62:
49:10:fc:85:e7:64:e1:c3:1e:41:f3:11:73:87:f3:
e9:1d:0d:52:c5:80:99:d0:22:a1:88:b3:84:92:69:
ca:01:48:11:60:76:c1:3e:c5:95:56:de:f4:32:35:
25:b1:ba:f3:9d:99:61:67:ce:6e:91:d7:57:f1:c4:
57:03:14:72:38:d6:10:bb:00:d7:16:fd:8b:30:b6:
28:9e:2e:f8:86:cc:d6:a6:9b:86:22:98:67:41:b5:
01:47:36:30:57:4a:10:c2:4e:8d:58:4a:f2:44:42:
3e:18:01:78:ee:b9:e4:0f:a2:c5:63:4f:00:02:06:
7a:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:CA:0F:16:AF:A6:85:7A:B5:FD:17:08:B5:CB:0B:E8:AE:2B:4A:80
X509v3 Authority Key Identifier:
keyid:E2:D7:B7:EB:8F:47:E5:27:79:12:FF:05:8C:FE:D7:D8:99:FC:69:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4te3649H5Sd5Ev8FjP7X2Jn8abk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/d33bca-729d-43e3-95f7-7b041c54576a/1/vcoPFq-mhXq1_RcItcsL6K4rSoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/d33bca-729d-43e3-95f7-7b041c54576a/1/4te3649H5Sd5Ev8FjP7X2Jn8abk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.148.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:0c:ac:24:b3:36:fe:90:31:63:83:b8:f7:b5:f1:b2:6f:2a:
6d:c7:d2:4c:3e:3f:79:eb:d6:b2:22:f2:5c:bc:a8:2d:73:15:
80:db:f3:b8:54:7b:dc:2c:ad:e5:02:7b:ce:31:72:bc:a2:8b:
86:de:0a:4c:83:0f:04:60:f9:ed:8e:13:e5:c3:53:58:65:ab:
dc:ca:24:b8:91:1e:38:a0:7a:e0:df:b8:91:91:8d:bf:96:3e:
5b:38:bd:fd:f7:b1:6f:72:a2:ef:9f:6d:e9:1f:09:0b:0a:19:
26:d7:07:fa:24:52:12:ff:48:17:ad:48:27:34:3c:69:29:11:
3a:4e:77:5e:90:96:2a:a8:26:2f:c8:56:98:27:48:5e:f8:98:
67:d3:71:81:7f:15:7e:33:3a:1c:1a:21:16:8b:a9:bc:14:e6:
af:43:41:76:3d:75:f3:71:3e:0c:75:d4:42:25:1a:d6:af:49:
fd:42:02:72:0d:ea:22:c3:f7:1a:4f:67:49:bc:c1:38:3c:bc:
c7:a4:f6:3c:b5:a4:24:df:40:19:5a:e7:4a:0a:24:2a:da:92:
55:68:70:d9:89:aa:6f:ce:6f:64:d3:86:04:0b:79:6c:eb:3e:
8a:69:cb:33:51:42:48:2d:2f:bb:22:59:8f:0d:cd:2b:8f:e7:
77:b0:39:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:15 2024 by rpki-client on console-ams.rpki-client.org