Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b44330-5d3b-4479-8b10-2bb7fdd5f728/1/5YKJUF_oJTckqqZqSiqwKRBZS_g.roa
File: 5YKJUF_oJTckqqZqSiqwKRBZS_g.roa (raw, json)
Hash identifier: 1HM7hFjBzDdn6hcABvjRiGD+q2nQ8IZziiKAlOrAbxg=
Subject key identifier: E5:82:89:50:5F:E8:25:37:24:AA:A6:6A:4A:2A:B0:29:10:59:4B:F8
Certificate issuer: /CN=4d136295f7f32e64be78fb399eb6d15ae3e92632
Certificate serial: 01856C0A549D3B5237BDC42498E8A0801D5E
Authority key identifier: 4D:13:62:95:F7:F3:2E:64:BE:78:FB:39:9E:B6:D1:5A:E3:E9:26:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRNilffzLmS-ePs5nrbRWuPpJjI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b44330-5d3b-4479-8b10-2bb7fdd5f728/1/5YKJUF_oJTckqqZqSiqwKRBZS_g.roa
Signing time: Sun 01 Jan 2023 06:34:54 +0000
ROA not before: Sun 01 Jan 2023 06:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211505
IP address blocks: 194.5.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:54:9d:3b:52:37:bd:c4:24:98:e8:a0:80:1d:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d136295f7f32e64be78fb399eb6d15ae3e92632
Validity
Not Before: Jan 1 06:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e58289505fe8253724aaa66a4a2ab02910594bf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:af:3d:5c:c8:0f:81:8e:29:30:d9:ed:c5:69:
bd:f9:49:9b:0b:00:b3:7d:8e:81:31:61:4a:ae:8d:
b9:fb:38:39:b2:d3:a5:c8:e0:88:c7:a1:ec:13:e6:
1a:16:37:77:e7:c5:75:63:42:07:a6:7a:a9:4a:3f:
ab:73:b0:ed:62:f0:7a:31:81:f5:13:5d:fd:03:65:
d2:c6:55:9e:4b:f7:f5:9d:d6:32:89:33:f4:63:4c:
0c:9d:2f:4f:64:b0:23:73:b8:69:20:dd:f4:a4:6c:
99:f4:bb:f6:d6:2c:28:8a:3e:8d:24:99:4c:40:7b:
4a:76:fb:59:46:fc:ee:93:ea:81:25:6b:88:30:a8:
79:ee:6b:c0:69:c9:36:83:ed:0c:b1:0c:8c:89:9e:
79:eb:64:00:d4:de:28:f7:27:31:f2:62:ba:68:e1:
60:12:d0:40:d7:8c:d1:14:6c:98:d3:bd:c5:c2:08:
20:7b:2f:aa:0f:51:ea:12:fa:99:44:6a:de:0b:b5:
58:9c:95:cd:ee:a4:ca:35:9e:69:ca:03:83:c0:9c:
e0:c7:e9:63:df:8e:e7:29:44:08:65:fa:34:46:33:
0f:88:8d:5c:eb:fa:08:bd:96:3d:07:71:17:41:96:
e4:da:20:54:80:e1:69:66:9a:6c:c3:bc:ea:fb:87:
43:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:82:89:50:5F:E8:25:37:24:AA:A6:6A:4A:2A:B0:29:10:59:4B:F8
X509v3 Authority Key Identifier:
keyid:4D:13:62:95:F7:F3:2E:64:BE:78:FB:39:9E:B6:D1:5A:E3:E9:26:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRNilffzLmS-ePs5nrbRWuPpJjI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b44330-5d3b-4479-8b10-2bb7fdd5f728/1/5YKJUF_oJTckqqZqSiqwKRBZS_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b44330-5d3b-4479-8b10-2bb7fdd5f728/1/TRNilffzLmS-ePs5nrbRWuPpJjI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.195.0/24
Signature Algorithm: sha256WithRSAEncryption
13:41:c2:b2:a5:ac:37:73:4f:50:32:5a:66:b0:3c:d2:15:b4:
84:d5:92:b7:16:20:a7:e7:8f:d5:52:82:62:94:a2:c3:e4:a6:
3e:ea:23:33:53:84:28:fd:53:8f:7a:97:35:63:b7:a3:41:17:
a1:b6:fd:e2:4d:90:29:62:47:3e:f7:14:d7:dc:f7:92:74:7e:
ac:d2:a5:f8:d2:75:26:a3:bd:ad:ef:42:c5:b5:8a:d1:af:2e:
e3:83:85:5e:d5:2c:b3:28:b6:5d:36:0f:08:58:89:a2:c7:e3:
5a:a1:d6:44:fb:49:cc:d7:ff:f5:f1:b1:3a:be:1a:20:dc:ee:
c4:b0:f1:6a:5a:93:59:7e:bf:cf:88:32:87:95:1a:c9:44:56:
25:bd:0f:47:45:eb:40:08:50:9b:08:18:ab:31:86:eb:02:bf:
f5:1f:82:21:19:86:28:d2:99:95:62:e1:cf:07:32:90:58:ad:
45:82:95:20:c8:c9:0d:9b:d7:5c:2a:8a:27:33:0e:85:e2:62:
bc:3a:dc:47:ed:ff:6a:19:4f:71:16:d4:5f:be:c7:d8:ab:7f:
3c:3e:87:bc:19:af:1b:06:71:e1:31:e1:96:84:9a:2b:f5:f5:
c8:09:a4:7b:d2:50:33:47:96:ab:2b:a0:de:76:41:b4:07:f8:
9c:3d:af:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:36 2024 by rpki-client on console-ams.rpki-client.org