Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/4ZNUEThD5X2vIOzbZJTJ0VS1oDU.roa
File: 4ZNUEThD5X2vIOzbZJTJ0VS1oDU.roa (raw, json)
Hash identifier: 2RfdaSKmCWanGw3KdfgTYb6KM8SErj2dhER8LalHBac=
Subject key identifier: E1:93:54:11:38:43:E5:7D:AF:20:EC:DB:64:94:C9:D1:54:B5:A0:35
Certificate issuer: /CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Certificate serial: 01856CB81F68D2A5AE7D481D9AC735F25351
Authority key identifier: B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/4ZNUEThD5X2vIOzbZJTJ0VS1oDU.roa
Signing time: Sun 01 Jan 2023 09:44:44 +0000
ROA not before: Sun 01 Jan 2023 09:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60911
IP address blocks: 5.172.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:1f:68:d2:a5:ae:7d:48:1d:9a:c7:35:f2:53:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Validity
Not Before: Jan 1 09:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e19354113843e57daf20ecdb6494c9d154b5a035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d5:b4:b7:62:68:7f:40:ca:5a:f5:e2:32:0d:
99:14:71:fc:8a:b3:90:70:d0:68:07:24:c1:d5:6a:
14:e6:46:de:9f:e1:ee:f9:15:70:e7:70:34:c3:ed:
be:7f:3e:ef:3e:d4:b2:fd:67:58:85:1d:73:8e:60:
00:02:66:b7:d2:1b:b8:bd:c2:c4:da:7e:f9:87:da:
3f:cb:67:40:58:be:d2:97:03:a2:b3:80:66:3d:ea:
48:2d:9e:57:d5:82:f4:c7:09:bc:44:9a:aa:5b:b2:
6a:ea:bb:89:f4:89:e7:6e:6c:b0:63:a3:e9:01:ac:
19:f6:a2:2e:a0:cd:57:b1:a7:4b:59:68:e5:b6:4a:
4c:e4:7a:20:b4:d4:2b:1e:b4:47:a1:47:a6:6d:e1:
de:2d:69:2d:6f:39:97:4c:dd:69:41:db:c6:45:e4:
b5:f8:90:c8:9f:01:94:3d:b2:b9:49:d3:5a:a4:56:
6a:29:ae:ed:2c:87:41:74:50:ef:7f:86:09:89:19:
b9:d1:19:be:8b:22:f8:fa:c1:8d:21:2d:bb:e2:d1:
0b:9e:3e:c0:79:19:68:7c:d3:48:c3:5b:d5:25:3b:
f8:8a:e0:31:a8:ed:b6:59:b3:17:46:85:f5:14:d2:
bf:04:5e:b4:2d:60:6a:05:cd:dd:f4:7c:d6:b8:06:
cc:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:93:54:11:38:43:E5:7D:AF:20:EC:DB:64:94:C9:D1:54:B5:A0:35
X509v3 Authority Key Identifier:
keyid:B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/4ZNUEThD5X2vIOzbZJTJ0VS1oDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/s8UbDAY8_BaUP8mkfiyAWZD26q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.207.0/24
Signature Algorithm: sha256WithRSAEncryption
89:2b:ec:d2:e7:e0:24:a4:95:4e:8b:4c:10:bd:8c:39:f1:ca:
6e:67:9a:51:42:55:5d:ef:9c:ff:22:40:b9:65:17:2a:62:d7:
d9:89:ca:e0:82:21:e0:30:8a:da:ad:e1:d4:f5:a7:9c:c4:96:
51:ac:4c:a9:2f:6d:00:12:8f:2d:e9:05:09:69:e0:d9:bc:38:
9d:ff:00:a1:f4:67:36:7c:ce:5f:93:82:35:29:be:bf:fa:f2:
6d:80:95:da:e9:25:43:44:1d:29:d4:2d:b4:94:ef:00:d0:e3:
66:52:53:dc:58:12:db:04:fe:64:5d:61:2e:91:e7:5d:f7:53:
40:a0:17:d8:64:26:30:8e:c0:53:11:b9:fd:07:52:d6:33:c9:
39:43:73:5e:94:5a:1b:73:98:e0:2d:71:33:26:2a:c9:a4:8f:
6a:9d:2c:4b:1a:ca:0a:f2:ef:bc:5b:87:3b:bc:7a:19:2c:5e:
48:ef:87:78:74:94:dd:11:5c:92:c1:e3:6d:80:07:66:30:a2:
6d:c8:84:25:6c:e4:c6:1e:aa:9e:e6:91:5e:bc:5f:11:8d:54:
60:bd:cf:a3:18:44:49:2e:fa:97:dd:a6:c8:ba:6f:f4:12:f1:
d1:c9:58:30:88:1f:db:2c:65:73:47:c2:ed:7b:2c:66:d8:64:
8b:a0:a3:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:41 2024 by rpki-client on console-fra.rpki-client.org