Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/WlZLtKxmaTQNXputzvwElmO_-t0.roa
File: WlZLtKxmaTQNXputzvwElmO_-t0.roa (raw, json)
Hash identifier: WfRWaQzurvLmFvabhzmQVELNIYKbVxmj7SehhAfEAIA=
Subject key identifier: 5A:56:4B:B4:AC:66:69:34:0D:5E:9B:AD:CE:FC:04:96:63:BF:FA:DD
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018E98FE47A02E62DE7BA0AF3B4FEB1567DC
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/WlZLtKxmaTQNXputzvwElmO_-t0.roa
Signing time: Mon 01 Apr 2024 09:29:45 +0000
ROA not before: Mon 01 Apr 2024 09:29:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12730
IP address blocks: 5.143.192.0/19 maxlen: 19
Validation: Failed, certificate revoked on Thu 11 Apr 2024 08:59:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:98:fe:47:a0:2e:62:de:7b:a0:af:3b:4f:eb:15:67:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Apr 1 09:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a564bb4ac6669340d5e9badcefc049663bffadd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:9c:4e:39:c7:72:81:40:7f:81:75:90:02:c5:
ac:1c:85:31:0f:1c:81:05:9e:ef:c8:24:e8:74:eb:
77:e7:3d:01:b5:a4:82:fb:6d:a2:9b:84:73:cb:f3:
33:8e:ef:80:77:75:39:6b:9e:62:30:0d:5c:0a:37:
40:60:39:e8:4e:a2:2c:ca:62:1d:7a:dc:10:0e:75:
82:ad:eb:33:27:4f:2a:31:a8:c7:da:e8:b3:cc:d5:
57:74:05:e8:36:bc:3a:52:07:0d:01:7a:2b:52:05:
4d:71:13:cc:74:ff:80:e0:a1:55:38:43:f7:24:26:
ff:67:75:e0:f5:b0:fc:ec:a0:50:26:58:b2:e8:ab:
56:94:84:60:da:13:bc:8a:22:44:3e:23:77:b1:5d:
22:12:e5:2c:7f:57:48:18:0d:4f:9a:0f:bf:82:bc:
7e:d3:67:da:8a:f7:82:69:fc:7c:9a:4a:38:6c:0d:
60:86:3b:5d:65:78:3b:f8:c6:af:37:7b:f8:1c:bc:
3d:e1:66:5b:fd:56:9a:15:93:1d:f2:97:b2:1f:19:
44:55:5a:44:93:74:6d:74:53:f2:2c:b6:81:9b:2f:
54:90:b9:4e:4a:e9:fd:7d:44:cc:1b:eb:eb:60:a9:
be:cb:0b:bb:09:2e:90:89:4b:2c:c1:1c:9f:3f:08:
cf:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:56:4B:B4:AC:66:69:34:0D:5E:9B:AD:CE:FC:04:96:63:BF:FA:DD
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/WlZLtKxmaTQNXputzvwElmO_-t0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.143.192.0/19
Signature Algorithm: sha256WithRSAEncryption
17:80:21:e4:4f:3e:1d:66:18:c2:6e:4d:b1:96:a4:9b:21:fa:
6a:3e:27:41:16:09:7a:d6:71:db:33:0c:a4:8e:6d:f7:58:b7:
81:97:6b:33:be:b3:6b:c2:ce:26:1a:3f:66:9c:2b:fd:c6:ae:
5e:26:17:5b:98:ea:11:4a:e8:54:9b:c4:21:43:2f:60:b7:20:
15:18:2b:39:d0:f6:f2:d0:3a:af:04:62:ba:23:2f:33:9f:f1:
dc:5d:bf:2c:07:6e:dd:d1:ea:36:8c:13:b1:f4:49:2c:05:dc:
4e:61:d1:12:30:20:ef:a5:ee:ad:8b:ee:c1:47:01:93:c4:15:
5e:d0:ea:9d:23:94:bd:ca:1f:94:81:48:0d:7f:75:a1:d4:61:
f3:90:63:3a:7b:53:34:25:9b:56:ca:87:8d:49:b6:33:6e:98:
05:db:f1:e7:bb:52:1c:61:af:cb:49:23:1d:20:23:6d:7a:62:
7d:0c:c3:59:1e:36:06:2e:0f:6b:b6:b1:bd:16:41:f8:9b:70:
27:60:bc:1e:52:f1:7d:b9:c1:aa:e2:c7:fb:3b:85:11:25:eb:
ec:61:01:2c:dc:e5:a1:0d:df:4b:5c:70:ff:a6:74:e2:dc:1a:
07:6d:16:b0:a7:4f:47:4e:1a:de:45:58:fd:4f:d1:ac:0c:cc:
de:26:d1:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:25 2024 by rpki-client on console-ams.rpki-client.org