Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/sI6bKlD806Y2CQYmdsnvP0eVH8Q.roa
File: sI6bKlD806Y2CQYmdsnvP0eVH8Q.roa (raw, json)
Hash identifier: WePEejpGgwuQMxow6YBzy2diyi7yL+JK5kYHqlSXN4I=
Subject key identifier: B0:8E:9B:2A:50:FC:D3:A6:36:09:06:26:76:C9:EF:3F:47:95:1F:C4
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE649B6F2736728FE780DD3C05DD28D
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/sI6bKlD806Y2CQYmdsnvP0eVH8Q.roa
Signing time: Sun 01 Jan 2023 10:35:09 +0000
ROA not before: Sun 01 Jan 2023 10:35:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 4755
IP address blocks: 212.5.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:49:b6:f2:73:67:28:fe:78:0d:d3:c0:5d:d2:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b08e9b2a50fcd3a63609062676c9ef3f47951fc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e5:d3:d1:19:a7:10:14:c7:57:5f:60:8a:23:
e8:11:05:6f:02:28:1b:09:e3:81:dd:9b:4d:c9:4a:
1e:3d:26:4f:6a:ce:5e:16:32:df:f6:01:55:d2:99:
75:ff:7b:61:c0:12:2b:c9:b9:2e:d3:ca:11:2c:5d:
f1:7d:4a:6e:33:e9:98:8c:ac:32:a1:b1:c1:0a:39:
78:37:f0:40:00:a5:ef:1e:a4:55:07:ec:d2:26:b6:
a3:37:ef:fd:27:82:ca:ac:ec:25:a5:73:46:29:c3:
5a:6e:7e:a7:c9:fb:f0:ff:41:e1:14:b3:67:f4:65:
04:67:cb:3f:16:c9:d0:6c:22:8f:07:37:51:e7:00:
52:95:15:81:95:4e:90:8a:b8:da:b8:15:65:a0:ad:
6c:58:f8:dc:68:cf:0e:3f:d2:e1:03:4b:f6:85:81:
35:4b:a7:ea:d6:5d:02:26:7f:50:cd:77:85:be:a6:
c6:61:d4:c4:5e:83:b6:b5:52:4c:73:15:e9:ea:cd:
31:53:34:60:df:1e:8a:2b:e9:50:fc:90:24:f7:a5:
a2:17:c4:aa:15:34:67:7d:c5:a2:0b:23:5b:08:df:
88:75:2b:35:da:f7:13:69:68:56:a2:a0:a2:2f:1d:
6a:d1:92:2d:15:4c:83:90:7c:81:55:2b:6c:0a:99:
1b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:8E:9B:2A:50:FC:D3:A6:36:09:06:26:76:C9:EF:3F:47:95:1F:C4
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/sI6bKlD806Y2CQYmdsnvP0eVH8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.5.156.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:08:b0:91:7a:21:2c:03:2e:12:b8:2a:81:0b:06:a7:4a:7a:
26:c5:e5:58:f9:a9:ee:2f:45:1f:f5:6a:50:50:51:26:d3:9b:
b0:6d:74:0f:55:27:64:30:77:9f:91:b1:19:2a:ca:43:7e:ef:
5a:b4:e7:2e:24:f2:4e:e1:9e:10:57:3a:4d:bf:92:e4:89:3c:
b1:7f:21:a1:32:8e:10:57:74:9b:f2:d9:fb:be:d6:d5:d6:fb:
8c:79:92:1b:7d:d7:3a:a3:d6:21:24:93:ae:70:b9:72:3a:96:
2a:45:1b:9d:a2:1e:a9:75:b9:47:2e:fc:fe:34:78:85:5c:a0:
5c:18:4a:14:7c:d0:12:65:8e:df:1d:1f:7b:44:30:da:3d:86:
03:ed:09:29:f1:82:96:1f:c4:ad:3e:f2:ea:f2:e0:64:a9:07:
00:de:26:76:a3:10:cd:9b:45:71:b4:86:1f:a3:2d:da:33:05:
fb:39:ce:bd:a5:84:f3:6f:ca:27:cc:06:47:37:5c:5d:38:94:
48:02:3c:e0:1f:e4:f8:a3:8c:60:b8:3d:18:88:5b:3c:8d:7a:
e4:8a:64:bc:01:b7:29:6b:6f:37:d9:3b:25:7d:00:ce:a1:fb:
6a:d0:89:ef:14:a3:6e:8a:aa:3a:eb:81:e3:22:69:8e:3c:c5:
aa:88:1f:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org