Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/4sdFqvD9gfRnIBkF1OXmxAB02gc.roa
File: 4sdFqvD9gfRnIBkF1OXmxAB02gc.roa (raw, json)
Hash identifier: Deje0dRCfNyd8Iz2Y1ddQd5qy7Bum5f4qu2NackSwmI=
Subject key identifier: E2:C7:45:AA:F0:FD:81:F4:67:20:19:05:D4:E5:E6:C4:00:74:DA:07
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 018BCE0D90FF7EF0EC2D6DC626AE01D41DCA
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/4sdFqvD9gfRnIBkF1OXmxAB02gc.roa
Signing time: Tue 14 Nov 2023 13:37:57 +0000
ROA not before: Tue 14 Nov 2023 13:37:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44687
IP address blocks: 5.133.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ce:0d:90:ff:7e:f0:ec:2d:6d:c6:26:ae:01:d4:1d:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Nov 14 13:37:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2c745aaf0fd81f467201905d4e5e6c40074da07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ef:00:11:ef:dd:3e:e3:5e:71:22:4e:03:c3:
45:f5:89:0d:98:28:ee:3e:44:13:85:a8:97:00:54:
90:81:1e:11:65:5c:fd:20:14:37:dd:d9:24:e7:bd:
5a:9d:a6:cd:dc:54:70:66:45:a2:81:dc:ed:45:2c:
ba:e6:57:dc:8a:5f:db:d4:80:9a:3a:22:43:91:62:
bd:40:fc:eb:fa:ae:a6:cf:13:45:88:20:96:84:d7:
e3:40:6b:18:6c:d0:51:96:f7:5a:9d:47:fb:62:51:
23:fe:61:d8:69:7a:b4:e1:a1:66:52:57:cf:80:47:
0b:27:b9:74:a4:0d:81:5a:5f:48:fa:70:98:ac:96:
bf:2a:35:e0:b1:8c:dd:78:74:83:af:10:8c:80:99:
b3:11:93:e3:73:46:27:0b:fb:30:56:52:69:2f:e2:
1e:60:e7:d6:10:41:c7:14:bd:74:02:6a:0a:af:42:
6a:50:f0:3a:50:92:10:7d:f0:66:38:19:1c:e7:79:
05:fe:e0:2c:3a:9a:e4:57:b0:d9:fd:41:43:4c:7e:
b3:22:be:0b:3b:89:e6:c0:16:6e:b5:3d:10:3f:47:
ab:ed:0d:79:80:6d:62:cd:14:2d:20:6e:d5:be:20:
67:5c:08:19:ec:17:6e:cd:30:ee:c9:29:e0:58:1c:
a8:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:C7:45:AA:F0:FD:81:F4:67:20:19:05:D4:E5:E6:C4:00:74:DA:07
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/4sdFqvD9gfRnIBkF1OXmxAB02gc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.109.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:a1:8b:2a:bd:49:5a:7a:9a:cf:29:12:ac:61:05:d1:7a:1f:
42:af:03:d5:0b:25:d6:6f:a9:c1:01:39:6f:ed:54:75:6f:1e:
9f:be:c9:ea:57:0e:13:e4:77:9e:d5:58:b8:ce:f6:93:b6:dd:
85:a6:80:21:8c:53:5f:ac:10:c3:15:df:d5:84:37:24:9e:ab:
16:15:ff:b5:5b:d3:15:94:69:39:7e:f1:12:fc:b4:32:d3:e0:
90:90:70:94:4f:ef:9c:b4:ff:55:7c:fd:dd:d4:e7:e7:4f:3d:
8b:f4:2b:bf:7d:4b:72:d8:2d:6b:8b:cc:f3:1b:13:96:82:cc:
41:25:e6:f8:d8:ab:5f:d3:f2:3e:d9:3c:ff:25:8b:58:48:35:
66:95:1d:05:57:ec:cb:e2:a8:ee:9e:52:0a:85:7c:c8:f8:92:
31:0e:9d:95:32:ca:9b:93:be:d1:5d:08:75:09:3b:d1:fa:c6:
ff:67:50:6b:03:a9:33:e9:fd:ff:7e:59:23:11:61:84:85:d7:
aa:7a:5c:45:d0:eb:37:26:f4:8a:85:0e:01:87:09:5c:4d:5e:
5a:2a:3e:c2:51:14:c9:68:c5:33:8b:45:52:16:0f:cf:38:af:
01:1b:e0:54:94:e3:7e:22:85:42:83:e4:30:7f:93:2c:fd:12:
ea:2f:51:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:51 2024 by rpki-client on console-fra.rpki-client.org