Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/5sNvNZ6xFb8Vyq9LFwpwAVsutHQ.roa
File: 5sNvNZ6xFb8Vyq9LFwpwAVsutHQ.roa (raw, json)
Hash identifier: OwyaQySZM9GofX6TQTiBifTFj0iSp419N6ECO7YXcrk=
Subject key identifier: E6:C3:6F:35:9E:B1:15:BF:15:CA:AF:4B:17:0A:70:01:5B:2E:B4:74
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 018CC26D5D952CE540617D75981BA8E3BBB4
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/5sNvNZ6xFb8Vyq9LFwpwAVsutHQ.roa
Signing time: Mon 01 Jan 2024 00:29:56 +0000
ROA not before: Mon 01 Jan 2024 00:29:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60147
IP address blocks: 213.130.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 08:18:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:5d:95:2c:e5:40:61:7d:75:98:1b:a8:e3:bb:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 00:29:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6c36f359eb115bf15caaf4b170a70015b2eb474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a6:d6:d0:ca:07:d7:f6:03:b7:6e:04:d8:c5:
80:82:9a:c7:8a:3b:99:d4:4d:22:a6:50:18:30:c7:
bf:28:e9:aa:5d:b5:e5:dc:cb:18:d5:34:9a:90:94:
cf:ba:84:1b:bc:aa:43:89:03:85:68:e8:3b:a9:b5:
cc:44:b1:a9:c5:2f:ba:85:f4:0c:56:cc:c5:09:38:
6f:ce:dd:7e:e1:d0:ba:95:b0:c6:91:68:8b:15:ae:
4c:a1:66:76:f8:36:12:72:9c:dc:c0:57:1f:3f:19:
1a:8c:12:fa:27:e5:3c:63:78:d0:89:50:e4:e0:85:
42:db:49:2b:35:4d:ec:6c:c7:89:3b:0f:0f:df:05:
a6:c7:9b:68:d1:59:47:cb:df:a2:91:70:88:50:3a:
ca:d9:11:ca:ce:a0:6e:8c:7b:25:05:e2:e1:b0:a4:
09:0f:75:d3:f7:ed:83:c3:06:f2:7b:46:77:7a:33:
88:94:28:e0:23:db:e3:88:5f:f4:75:71:a1:88:c3:
6f:87:6d:fc:53:d2:2d:fe:0e:40:02:d4:99:7b:a7:
31:31:18:3c:b4:ef:f5:45:bd:ad:31:59:3b:9b:9a:
f1:85:87:ac:e6:52:5c:b5:ce:cf:28:91:c8:75:91:
a9:d5:fe:55:0f:64:7e:ec:ae:69:65:d2:1e:27:d1:
6a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:C3:6F:35:9E:B1:15:BF:15:CA:AF:4B:17:0A:70:01:5B:2E:B4:74
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/5sNvNZ6xFb8Vyq9LFwpwAVsutHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.130.95.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:be:98:a9:f5:44:1a:20:fd:5a:72:aa:d5:65:53:64:86:3c:
7c:6f:73:a0:ea:5e:36:fa:7b:77:ab:c2:7b:33:02:d3:a0:44:
7a:da:ec:7d:cc:07:a2:9b:a8:f7:7f:c8:dc:ba:78:cc:8f:af:
77:4e:af:3d:88:a0:59:b3:20:c0:f3:a0:1b:d1:85:0d:c5:50:
96:d9:6a:94:4c:ea:cd:9b:77:79:56:5d:a2:ff:49:13:f4:07:
80:fe:de:46:ec:47:11:8b:13:92:37:ca:1a:33:77:da:a1:ac:
6c:21:da:57:4e:0b:bf:d9:99:68:5f:61:1e:af:11:db:92:1e:
c0:cc:94:55:0b:cc:c9:06:9d:ad:69:28:f1:7e:7e:3c:11:23:
54:56:25:da:16:bd:be:86:d5:e0:6d:cc:0e:16:40:f8:c6:36:
22:5e:5d:8f:2b:4a:7e:4b:b1:1f:af:72:f2:6e:ba:b4:82:47:
42:da:69:f3:5d:fb:7a:10:0e:67:af:10:66:a6:d9:72:ed:b8:
0e:33:60:63:96:46:c0:67:34:54:f8:e1:5c:35:45:84:82:6e:
3d:77:ba:95:05:26:1e:fc:ef:d1:92:0b:a1:a7:94:79:22:e2:
d3:c7:ee:d6:89:69:b5:0e:24:0a:f4:16:a3:b7:6a:88:ba:4f:
ea:9e:65:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:53 2024 by rpki-client on console-ams.rpki-client.org