Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/c43ed2-70b3-45d8-aa28-53fb018a8c0e/1/iYE7R-pLadsY3Zo-q2lV86KgDlA.roa
File: iYE7R-pLadsY3Zo-q2lV86KgDlA.roa (raw, json)
Hash identifier: oRkzWqmxhusa3kK1KgKR0noCJ1NF6c4SlMoIZLWJJEI=
Subject key identifier: 89:81:3B:47:EA:4B:69:DB:18:DD:9A:3E:AB:69:55:F3:A2:A0:0E:50
Certificate issuer: /CN=7d32deda31fe8eafcdad6e2a06fde236e7d11d61
Certificate serial: 018CC3B6870312FAA318662837E700A9AA91
Authority key identifier: 7D:32:DE:DA:31:FE:8E:AF:CD:AD:6E:2A:06:FD:E2:36:E7:D1:1D:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fTLe2jH-jq_NrW4qBv3iNufRHWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/c43ed2-70b3-45d8-aa28-53fb018a8c0e/1/iYE7R-pLadsY3Zo-q2lV86KgDlA.roa
Signing time: Mon 01 Jan 2024 06:29:28 +0000
ROA not before: Mon 01 Jan 2024 06:29:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 5.250.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 12:40:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:87:03:12:fa:a3:18:66:28:37:e7:00:a9:aa:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d32deda31fe8eafcdad6e2a06fde236e7d11d61
Validity
Not Before: Jan 1 06:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=89813b47ea4b69db18dd9a3eab6955f3a2a00e50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ef:0a:da:8c:4d:d2:06:e6:4e:6f:f0:7b:87:
17:f8:cb:80:90:34:c1:16:90:d6:ec:1f:a1:31:0b:
c5:92:9e:0d:b7:e4:13:2b:5c:fb:e8:88:3d:a6:1b:
0b:40:49:32:6e:06:53:24:da:8a:c2:ba:43:15:f7:
7c:37:1c:8b:5a:22:b8:04:cd:12:c4:da:ac:5a:a8:
8b:69:6a:39:78:40:2c:91:2a:d9:97:94:f4:d1:93:
21:e6:f2:3a:1c:6b:3c:e8:b0:af:ca:a9:92:7c:87:
5c:23:4a:3b:61:67:d3:67:b9:7f:0e:48:fa:c4:bf:
8d:96:31:c0:74:22:86:76:a2:a8:3d:89:77:51:9b:
62:91:c9:86:77:46:3e:86:d9:25:38:f9:72:97:2e:
e9:f4:60:a0:a4:98:59:e0:1d:3d:46:89:f4:d8:3f:
32:85:28:f3:90:ee:6c:cc:7a:36:bb:15:7f:e7:42:
90:53:b7:f4:52:6e:3a:3a:b7:97:0c:ff:7d:f5:f1:
6e:7e:9b:10:07:54:c8:c2:df:26:22:f7:dd:01:c4:
eb:db:96:2f:eb:56:a0:83:a9:6d:f5:02:32:41:55:
8b:5e:73:f6:97:bb:3f:a9:dd:d9:92:5e:b9:3f:14:
35:72:6a:15:27:86:7a:05:69:35:08:b5:5f:cb:05:
3e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:81:3B:47:EA:4B:69:DB:18:DD:9A:3E:AB:69:55:F3:A2:A0:0E:50
X509v3 Authority Key Identifier:
keyid:7D:32:DE:DA:31:FE:8E:AF:CD:AD:6E:2A:06:FD:E2:36:E7:D1:1D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fTLe2jH-jq_NrW4qBv3iNufRHWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/c43ed2-70b3-45d8-aa28-53fb018a8c0e/1/iYE7R-pLadsY3Zo-q2lV86KgDlA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/c43ed2-70b3-45d8-aa28-53fb018a8c0e/1/fTLe2jH-jq_NrW4qBv3iNufRHWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.250.254.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:43:ff:40:35:ae:e1:42:ae:d9:db:47:ab:92:59:45:48:11:
24:b5:70:d5:71:64:41:2f:b6:25:a2:93:df:b5:27:4d:b2:f8:
e7:f0:f2:09:52:71:d8:7f:37:52:b8:10:72:df:b5:32:d4:5d:
91:18:0a:0a:43:85:6d:9c:5e:ce:b4:57:7c:21:4e:72:b7:08:
8b:03:e9:84:1a:7e:0e:3a:c5:35:e9:6a:ae:52:1c:f8:22:a1:
c3:ef:81:c1:cb:e5:80:cd:9f:8b:f4:7b:5b:de:0d:47:e1:8d:
f8:27:70:6b:51:a3:95:9c:27:aa:0e:25:85:79:88:47:93:2c:
75:cd:98:4a:ba:16:f7:6b:65:e8:e8:5c:06:87:a6:a1:7e:20:
0e:be:f7:75:f6:46:a7:ac:ac:ec:cc:21:a3:85:20:0d:13:1f:
08:bf:25:83:43:21:16:3e:6b:68:9d:c2:64:5c:78:d4:b2:6c:
13:af:7d:48:18:71:35:1f:96:1f:e9:66:98:c2:01:86:46:ed:
01:da:e7:82:2c:45:03:56:d1:ae:3c:ac:be:41:57:bd:b3:0d:
c7:61:18:ce:9b:2b:70:d8:52:8f:ae:84:c8:48:c3:77:94:28:
92:88:56:04:ac:65:7a:48:04:b1:07:a3:41:a6:1e:cc:91:5d:
6c:4f:2b:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:10 2024 by rpki-client on console-fra.rpki-client.org