Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/2119ab-2f0a-451e-b3fa-98db4d5cdb33/1/5oYWRziyRIFVsDS22_TL6OOHquM.roa
File: 5oYWRziyRIFVsDS22_TL6OOHquM.roa (raw, json)
Hash identifier: j+4keLHsknN2FIhAL1MM+giuwwMafkBglNLLQQt3Hmw=
Subject key identifier: E6:86:16:47:38:B2:44:81:55:B0:34:B6:DB:F4:CB:E8:E3:87:AA:E3
Certificate issuer: /CN=a712593732dffe385e676e90568772306cdaeb72
Certificate serial: 01856DD3F31E1E847F1EE58E405D9E025A21
Authority key identifier: A7:12:59:37:32:DF:FE:38:5E:67:6E:90:56:87:72:30:6C:DA:EB:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxJZNzLf_jheZ26QVodyMGza63I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/2119ab-2f0a-451e-b3fa-98db4d5cdb33/1/5oYWRziyRIFVsDS22_TL6OOHquM.roa
Signing time: Sun 01 Jan 2023 14:54:44 +0000
ROA not before: Sun 01 Jan 2023 14:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213072
IP address blocks: 194.60.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Apr 2023 07:15:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d3:f3:1e:1e:84:7f:1e:e5:8e:40:5d:9e:02:5a:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a712593732dffe385e676e90568772306cdaeb72
Validity
Not Before: Jan 1 14:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e686164738b2448155b034b6dbf4cbe8e387aae3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e9:09:11:68:f3:db:d6:48:b8:91:d0:9f:c8:
91:8a:67:9d:a7:8f:59:8d:7f:07:96:6b:6a:39:d0:
15:ea:57:77:5d:07:96:64:df:ae:38:ff:20:36:33:
c1:69:9a:a9:38:5a:11:c7:f8:b9:ae:f9:f8:2d:5c:
ce:b1:74:54:bb:54:66:ac:08:e1:80:70:69:90:c5:
96:94:da:bc:c5:62:f7:fc:1b:6c:9d:9a:1d:9f:d7:
55:f2:61:2c:1a:8c:e6:d1:ab:26:33:e0:2a:3c:af:
d1:2d:4f:8a:c0:13:69:62:48:43:83:7a:79:7e:28:
27:30:ab:1f:16:61:20:42:67:06:f4:5f:86:52:cd:
5d:29:57:32:23:0f:95:28:40:dc:d4:c6:11:98:44:
56:56:95:3b:96:09:71:6f:77:b0:73:f1:03:09:ff:
af:ac:b5:f9:00:70:25:c0:30:9c:90:24:89:3a:c2:
0e:ad:0f:b7:fe:8e:85:f4:d9:aa:e2:ef:6d:29:47:
94:bc:76:d1:fb:49:2c:37:1d:0e:98:ca:9b:7b:75:
7e:cc:d2:8c:49:54:7f:c8:ac:ba:ae:0b:b6:67:52:
80:6a:55:83:9f:56:b9:02:35:8b:c0:75:3e:d7:57:
d1:a0:fc:b8:4c:dc:0d:75:c9:f3:25:ee:0f:f1:49:
4a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:86:16:47:38:B2:44:81:55:B0:34:B6:DB:F4:CB:E8:E3:87:AA:E3
X509v3 Authority Key Identifier:
keyid:A7:12:59:37:32:DF:FE:38:5E:67:6E:90:56:87:72:30:6C:DA:EB:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxJZNzLf_jheZ26QVodyMGza63I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/2119ab-2f0a-451e-b3fa-98db4d5cdb33/1/5oYWRziyRIFVsDS22_TL6OOHquM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/2119ab-2f0a-451e-b3fa-98db4d5cdb33/1/pxJZNzLf_jheZ26QVodyMGza63I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.60.80.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:67:73:66:f5:83:e3:5f:33:ae:d9:a6:8d:91:29:2c:40:f0:
e0:77:93:00:bb:45:ff:f5:19:85:28:41:5e:1a:01:22:6e:89:
b0:3e:ad:ee:b5:54:41:3e:e2:a5:bd:7f:3c:07:e1:48:9c:b7:
54:85:79:17:84:e1:08:ae:7e:d1:e8:ec:c0:a4:e2:7d:6f:60:
2d:a5:63:7a:76:7e:06:a0:a6:24:97:98:bb:db:95:08:94:2d:
3c:0b:f8:d6:81:53:e2:fe:65:c8:e4:83:d7:93:9a:85:d5:23:
18:a9:df:d2:61:57:ec:f2:ad:72:19:ea:31:26:97:03:6e:fa:
6c:7a:9d:29:a9:de:d5:54:c9:82:eb:6c:53:05:e4:d5:af:0a:
4c:26:b9:69:37:8a:5c:f2:03:0f:cf:e6:08:4c:35:da:41:c5:
0a:73:8f:55:a9:fd:37:d9:db:22:61:3a:97:97:30:6f:06:b4:
b4:ce:4b:1f:83:fd:a6:b1:ac:bc:33:b2:c1:bf:b8:96:eb:d5:
4d:d3:44:ce:df:d1:05:50:4d:10:f0:68:ee:f5:3f:87:de:0e:
8d:36:1b:a1:db:3e:5c:0b:d5:1d:a1:e8:31:0e:b5:a9:78:73:
af:7b:d7:a0:6f:37:46:b9:22:c1:66:d0:87:df:fb:f2:4b:fe:
66:34:41:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:38 2024 by rpki-client on console-ams.rpki-client.org