Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/1-ZrxeT03fCyQJPa4Cf1adOE80eU.roa
File: 1-ZrxeT03fCyQJPa4Cf1adOE80eU.roa (raw, json)
Hash identifier: 6+ZAFb3V1SOMKBKK3MEZ82QLkvskj4GQAu30OVch+jE=
Subject key identifier: F9:9A:F1:79:3D:37:7C:2C:90:24:F6:B8:09:FD:5A:74:E1:3C:D1:E5
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018FD17CCB58F684C032D294AACAF145AED7
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/1-ZrxeT03fCyQJPa4Cf1adOE80eU.roa
Signing time: Sat 01 Jun 2024 01:49:27 +0000
ROA not before: Sat 01 Jun 2024 01:49:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6079
IP address blocks: 5.34.208.0/21 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Aug 2024 11:59:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d1:7c:cb:58:f6:84:c0:32:d2:94:aa:ca:f1:45:ae:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jun 1 01:49:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f99af1793d377c2c9024f6b809fd5a74e13cd1e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:53:c0:8b:cb:17:40:bf:5d:53:b9:81:d3:51:
0d:1a:9e:af:5e:b5:b5:17:32:43:4a:24:3f:7f:5c:
26:06:38:67:1f:4b:c9:8b:a7:c6:8f:4c:40:df:35:
fc:1b:a5:6a:5b:f9:ce:15:89:b5:f4:16:2b:e1:cf:
e2:5f:b6:d7:19:37:48:90:fa:c7:4a:1f:be:c1:c1:
96:1c:7d:82:5d:1f:16:d6:d6:30:d7:9a:74:53:17:
85:a1:a1:87:96:7d:ac:8c:ce:5b:02:38:a7:ec:25:
bd:59:a5:89:72:75:72:74:21:52:28:de:68:79:ad:
06:e3:75:d1:0f:f2:ec:df:b5:15:97:f2:f0:c6:3b:
63:0f:e7:ba:5b:8b:f5:30:c1:4b:74:a6:37:e4:f2:
0a:75:da:8e:a6:59:c4:d8:87:63:9d:4b:c2:e4:89:
80:b3:f6:68:b1:f4:00:69:f6:7c:63:3c:83:ec:52:
c8:14:59:43:d2:00:5b:8f:7c:07:03:03:da:49:c3:
0d:e1:ef:45:2d:b9:63:33:4b:2d:2c:a0:bc:e2:be:
8b:1f:fe:67:73:44:49:e1:5b:e8:4f:06:98:05:3d:
f4:96:01:07:2c:ba:74:85:99:df:0e:67:fe:ee:fb:
39:88:b5:0a:d8:4c:e9:b7:7f:3b:a9:24:45:68:bc:
30:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:9A:F1:79:3D:37:7C:2C:90:24:F6:B8:09:FD:5A:74:E1:3C:D1:E5
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/1-ZrxeT03fCyQJPa4Cf1adOE80eU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.34.208.0/21
Signature Algorithm: sha256WithRSAEncryption
b9:78:5f:d8:84:cf:7c:9f:f0:bc:a3:f1:7a:98:3b:fb:6f:cb:
57:a1:52:66:e6:00:36:05:4a:2c:60:34:e9:58:8e:b2:8c:0f:
18:b2:25:cf:bb:35:17:84:b4:b8:e1:47:84:35:6a:74:cf:02:
87:4f:0d:f6:b9:99:c2:6a:dd:37:e4:a0:ce:4d:84:2b:dc:c4:
e2:04:7a:c4:4d:78:f5:4d:72:d7:f9:52:d2:35:b3:84:9d:da:
7b:ad:33:86:3c:a5:96:38:5c:da:6f:62:74:95:1e:91:c8:82:
9c:72:af:3d:82:27:07:10:f6:f9:6d:39:37:a9:c7:cc:f7:4e:
9b:fe:1f:5b:dc:70:c0:ab:66:d2:53:ce:b2:53:2d:f3:32:89:
fa:33:62:b8:ec:a4:93:e4:cc:87:4b:46:a9:13:33:8d:70:e6:
e6:cd:3e:9e:75:e4:a0:78:99:a7:24:4f:91:a6:1d:a2:9c:cd:
3f:2e:71:a5:96:bb:da:9d:b7:c2:d9:8f:ba:78:68:3d:fe:5f:
85:a7:19:6f:5b:0e:9c:3e:34:be:5e:82:e9:0e:5d:7c:c5:41:
3b:ba:5e:64:d3:e0:bf:fc:e4:0a:6b:8c:39:10:e0:6f:0d:ce:
e0:fc:97:79:bc:0c:b9:08:e4:d9:b3:fc:f5:4c:15:61:61:ed:
b0:40:7e:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 13:49:46 2024 by rpki-client on console-fra.rpki-client.org