Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/18b5bb-8e41-4e88-bdbe-341c63614280/1/25tQh6Dkpk2NYpbpx4eniqRCiEs.roa
File: 25tQh6Dkpk2NYpbpx4eniqRCiEs.roa (raw, json)
Hash identifier: uClDgqeLEuhq0ASpZxjoOpkPDo7o3ygG1TVq5a8y8eo=
Subject key identifier: DB:9B:50:87:A0:E4:A6:4D:8D:62:96:E9:C7:87:A7:8A:A4:42:88:4B
Certificate issuer: /CN=e466483396afb377e5e379d1615bde0fd4d9ed47
Certificate serial: 01856F54ACA5A52F0D252144F6545E2A3D39
Authority key identifier: E4:66:48:33:96:AF:B3:77:E5:E3:79:D1:61:5B:DE:0F:D4:D9:ED:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5GZIM5avs3fl43nRYVveD9TZ7Uc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/18b5bb-8e41-4e88-bdbe-341c63614280/1/25tQh6Dkpk2NYpbpx4eniqRCiEs.roa
Signing time: Sun 01 Jan 2023 21:54:58 +0000
ROA not before: Sun 01 Jan 2023 21:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210974
IP address blocks: 5.44.254.0/24 maxlen: 24
2a12:cf40::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:ac:a5:a5:2f:0d:25:21:44:f6:54:5e:2a:3d:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e466483396afb377e5e379d1615bde0fd4d9ed47
Validity
Not Before: Jan 1 21:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db9b5087a0e4a64d8d6296e9c787a78aa442884b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d4:e1:de:d6:14:17:f6:93:8f:23:78:76:73:
b3:54:fe:aa:21:5a:60:80:30:67:85:ce:9d:21:51:
75:e4:aa:40:d6:77:07:41:9c:0f:db:11:ef:ac:55:
11:a4:e3:5e:b9:1c:c0:13:e9:37:93:6b:e7:83:63:
35:b0:48:d6:66:33:a4:5f:7f:3e:d9:0c:50:cf:2d:
7c:30:1b:ef:2c:11:7a:6e:d1:13:9b:ba:71:8c:06:
b1:8d:60:6b:f2:0c:a2:76:4e:38:a9:06:ef:c6:0d:
0a:51:aa:c6:30:0f:4f:d8:e6:a2:89:6a:4a:6e:21:
32:98:d3:1e:13:a7:6a:06:91:54:60:34:91:e1:f0:
98:13:d8:bd:e8:80:5c:52:71:a2:74:e2:1c:d6:d4:
80:d3:bf:76:30:1c:76:df:f9:64:18:88:ca:4a:9c:
50:8c:d0:fc:f5:3e:92:52:0d:53:f7:83:4b:bd:f1:
c2:5c:1a:72:b5:b2:66:a4:f0:c9:29:58:e2:a5:74:
4c:6d:3b:2e:8a:a9:e2:05:b4:3b:5b:55:05:09:4d:
2a:fb:78:3b:76:13:bf:f4:2f:4b:8b:6f:7f:22:98:
f6:4e:cb:c0:39:94:73:17:4c:d7:26:6f:8e:b4:c8:
cb:ac:07:12:4d:ab:69:fa:ba:c6:a6:11:8c:80:1d:
3e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:9B:50:87:A0:E4:A6:4D:8D:62:96:E9:C7:87:A7:8A:A4:42:88:4B
X509v3 Authority Key Identifier:
keyid:E4:66:48:33:96:AF:B3:77:E5:E3:79:D1:61:5B:DE:0F:D4:D9:ED:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5GZIM5avs3fl43nRYVveD9TZ7Uc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/18b5bb-8e41-4e88-bdbe-341c63614280/1/25tQh6Dkpk2NYpbpx4eniqRCiEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/18b5bb-8e41-4e88-bdbe-341c63614280/1/5GZIM5avs3fl43nRYVveD9TZ7Uc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.254.0/24
IPv6:
2a12:cf40::/32
Signature Algorithm: sha256WithRSAEncryption
91:03:e2:a9:ea:bb:3b:f2:6e:58:12:74:9b:54:f6:5c:ef:c6:
ba:9f:e6:59:d6:05:6f:2e:4a:d7:86:36:be:f4:1a:a7:3b:96:
a6:3b:15:a2:dd:1d:f1:cb:22:08:97:47:42:67:54:c3:38:9c:
05:54:f6:f4:29:ae:c7:e5:b5:e3:84:16:8a:2a:61:d8:bf:cb:
a7:e6:3a:82:a2:68:fb:49:bd:9e:ee:9f:b7:ab:1a:4e:87:63:
1b:86:b9:5a:02:f8:08:90:a7:7b:50:b3:f2:0d:45:f9:0a:58:
89:c5:3c:cb:09:94:3d:5d:82:94:5a:f3:ed:d5:1d:e1:1a:76:
b7:cc:37:1a:c8:03:21:71:5b:50:ed:4b:41:96:30:e1:e4:60:
80:f2:ab:29:8d:c9:d4:f9:c9:5a:d1:bf:fe:cf:a3:98:3b:04:
d1:5b:a3:a7:9f:43:4f:4a:48:e0:7a:6b:b7:f4:af:0e:59:2a:
f5:f7:e9:e6:d1:a8:0e:f2:3d:54:7b:c0:8d:ff:ea:db:4f:2e:
40:30:64:2c:40:81:59:06:08:c1:49:dd:88:9a:d3:7e:e0:d1:
38:38:cd:fd:42:51:b3:7e:99:3a:be:44:94:ae:96:90:da:9c:
f7:a0:66:4f:91:38:c5:e5:c9:ad:f5:35:2e:1a:59:ae:21:8b:
9e:4d:1d:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:15 2024 by rpki-client on console-ams.rpki-client.org