Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/hS-dguxWs1LZWOuMSmJdPx2B6xQ.roa
File: hS-dguxWs1LZWOuMSmJdPx2B6xQ.roa (raw, json)
Hash identifier: +9xq6AlEfzf1SyJ6I9mP4qKAg9uJwG4pcM/5jVdcW7g=
Subject key identifier: 85:2F:9D:82:EC:56:B3:52:D9:58:EB:8C:4A:62:5D:3F:1D:81:EB:14
Certificate issuer: /CN=8bdf76c54b9e6935c30a9b4c9ba9309ac470ec02
Certificate serial: 019129234BEC2FE76F5AFDF16703243C7F5F
Authority key identifier: 8B:DF:76:C5:4B:9E:69:35:C3:0A:9B:4C:9B:A9:30:9A:C4:70:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i992xUueaTXDCptMm6kwmsRw7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/hS-dguxWs1LZWOuMSmJdPx2B6xQ.roa
Signing time: Tue 06 Aug 2024 19:21:04 +0000
ROA not before: Tue 06 Aug 2024 19:21:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2914
IP address blocks: 5.102.36.0/23 maxlen: 23
5.102.38.0/24 maxlen: 24
195.5.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Aug 2024 19:50:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:29:23:4b:ec:2f:e7:6f:5a:fd:f1:67:03:24:3c:7f:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bdf76c54b9e6935c30a9b4c9ba9309ac470ec02
Validity
Not Before: Aug 6 19:21:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=852f9d82ec56b352d958eb8c4a625d3f1d81eb14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cc:18:72:39:a9:b3:39:9b:d1:96:a1:4a:c6:
a4:de:70:cc:c1:4a:63:7f:8d:c8:de:ce:56:13:07:
a4:e5:96:b0:ca:76:66:12:a0:f2:67:13:27:0a:88:
58:4a:74:96:75:ad:fc:66:a9:a1:ac:82:8b:ef:32:
6e:da:1c:a1:e6:d0:1a:71:36:20:a5:a7:18:ba:9d:
18:1c:57:51:87:09:35:55:cf:e4:2d:94:0f:04:f9:
fc:9f:14:0c:d5:e4:89:47:3e:5f:68:77:d9:90:f7:
7a:1e:2e:e4:76:9e:16:04:db:09:59:20:f6:21:48:
05:f2:eb:38:10:ba:11:e1:45:5a:da:1e:47:49:9c:
16:8e:0d:fb:18:df:97:65:12:6a:d9:7c:4a:4c:54:
39:96:75:fe:c7:44:6c:88:39:ba:25:5a:2b:03:82:
99:09:37:c3:70:06:a4:e6:14:62:1b:67:9b:ef:6c:
72:0e:ec:0c:ab:ac:f6:f5:78:7d:ac:df:b1:97:77:
0d:42:a5:38:30:32:f0:89:3c:4d:b6:4c:a5:66:c8:
3a:52:f7:a4:2a:5f:df:4c:45:4d:d2:d1:53:fc:b7:
00:00:d2:29:f7:bd:c8:a7:18:32:5e:b8:74:84:f2:
b3:49:f5:1a:c0:bb:b3:b5:33:08:15:6c:76:ce:a3:
83:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:2F:9D:82:EC:56:B3:52:D9:58:EB:8C:4A:62:5D:3F:1D:81:EB:14
X509v3 Authority Key Identifier:
keyid:8B:DF:76:C5:4B:9E:69:35:C3:0A:9B:4C:9B:A9:30:9A:C4:70:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i992xUueaTXDCptMm6kwmsRw7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/hS-dguxWs1LZWOuMSmJdPx2B6xQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/i992xUueaTXDCptMm6kwmsRw7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.36.0-5.102.38.255
195.5.125.0/24
Signature Algorithm: sha256WithRSAEncryption
28:02:23:a2:9c:d5:b1:bb:2e:f8:bb:e8:79:9c:1f:e8:58:c2:
ca:23:26:38:2e:d6:8d:f1:53:7d:fc:76:94:59:75:31:44:7f:
b9:c8:ee:41:c0:5c:00:5e:96:e6:2c:6a:19:32:c3:b7:f4:c8:
d7:0a:c9:f8:44:c9:09:a8:b6:09:d2:16:b5:36:e5:61:3a:23:
53:f6:03:12:9b:5b:ac:6b:a5:e6:4f:42:d0:37:24:e4:76:ce:
60:ef:f5:39:b4:62:d9:b4:de:6a:74:19:c8:a4:ed:a2:b5:9b:
98:de:57:f8:3c:7c:df:4d:ce:e7:8f:fa:84:07:b8:e5:fc:6b:
2d:58:83:64:d5:6c:ac:a0:68:50:0b:6e:0f:2c:a3:b9:e5:57:
c7:c9:ea:0d:59:d1:af:69:d0:09:71:14:2a:97:61:0d:94:f0:
21:38:c8:5d:16:57:71:ee:05:c2:7e:b6:e7:a6:7f:3f:9d:11:
2c:a8:0c:b3:bd:3a:c4:0c:d9:78:44:1b:a6:2e:79:f7:78:4c:
1c:fd:6e:8c:e4:45:90:cb:a8:23:a4:2f:d2:44:1f:ab:29:64:
d3:d5:c9:58:ca:c0:c6:25:bd:58:2d:44:c7:79:90:d8:12:40:
fd:62:ac:75:6c:04:e6:99:db:60:1c:3e:2c:87:6b:b5:3c:3e:
6f:f2:32:a3
-----BEGIN CERTIFICATE-----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=
Generated at Mon Aug 12 22:20:45 2024 by rpki-client on console-ams.rpki-client.org