Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5HcvmWW6wZVA71Uad7__ALURV2g.roa
File: 5HcvmWW6wZVA71Uad7__ALURV2g.roa (raw, json)
Hash identifier: KT19BH/pfixAps6/KTjLkA52W8qmaX6uUBvxQ0yVGKM=
Subject key identifier: E4:77:2F:99:65:BA:C1:95:40:EF:55:1A:77:BF:FF:00:B5:11:57:68
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018CCA2A892FD52676457C4F6260814001C6
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5HcvmWW6wZVA71Uad7__ALURV2g.roa
Signing time: Tue 02 Jan 2024 12:33:54 +0000
ROA not before: Tue 02 Jan 2024 12:33:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207326
IP address blocks: 193.124.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jan 2024 08:46:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:89:2f:d5:26:76:45:7c:4f:62:60:81:40:01:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 2 12:33:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e4772f9965bac19540ef551a77bfff00b5115768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:12:87:20:24:0e:3f:48:aa:2e:dd:5b:28:77:
f7:eb:de:0e:a6:5e:b5:b4:25:f0:24:b5:e5:cf:79:
b2:b3:ff:82:3d:24:81:c0:dd:ba:9a:21:cc:36:55:
84:69:46:b3:f3:6e:15:a0:05:be:73:91:ee:27:18:
5c:4f:b6:f7:cc:66:ce:b0:c7:f3:b3:b5:17:49:b8:
31:e8:bd:b6:ec:e2:ab:13:55:af:52:64:a1:f7:5f:
17:52:26:3e:ae:72:30:ee:c8:38:3e:dd:19:e2:c5:
25:f5:27:fd:d5:9f:4b:df:a6:93:c7:f3:b9:61:36:
a4:a7:fe:93:70:85:ca:d5:53:17:88:1b:aa:54:fd:
de:fc:b8:6a:4f:58:91:a0:a3:42:04:1d:06:3b:0e:
04:81:84:66:37:86:9e:04:f4:8d:9c:d4:9a:b4:a4:
87:f8:e4:cb:40:50:6d:c3:63:a3:53:8e:9a:da:34:
db:82:3e:98:6e:7c:d8:df:d7:fa:ef:05:c7:44:80:
c6:e5:6a:0d:29:fc:fe:a2:d9:57:0d:e9:12:b5:f7:
3e:58:1d:64:31:34:93:ef:86:5f:fe:c7:11:03:7a:
88:5d:29:e6:a7:e6:9d:d2:a5:2d:c1:b1:5e:56:fa:
f5:c1:66:7d:e9:92:11:1f:0c:6f:49:49:96:80:27:
d7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:77:2F:99:65:BA:C1:95:40:EF:55:1A:77:BF:FF:00:B5:11:57:68
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5HcvmWW6wZVA71Uad7__ALURV2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.5.0/24
Signature Algorithm: sha256WithRSAEncryption
74:00:08:86:3d:78:8b:a4:91:84:47:51:67:fa:89:22:2d:a4:
10:32:a4:90:80:d8:cf:c8:d9:a7:33:a4:19:9d:4e:50:14:87:
e4:c0:13:3a:20:b2:be:e8:f4:f5:a7:2e:9b:cb:c4:70:f8:5b:
fe:a6:50:6b:be:fd:cb:50:ee:c4:f9:5a:b9:c8:08:f1:0f:8d:
21:f5:9e:87:63:09:e6:3c:77:82:e9:e2:b7:63:0d:af:ee:c0:
07:23:a9:c7:45:49:57:29:f6:61:23:3b:a3:2b:6d:b4:09:23:
5e:51:cb:4a:c7:13:78:31:cd:94:f0:df:42:b9:18:27:3e:6b:
bd:cc:57:b6:f7:62:20:eb:77:79:e6:2a:a8:c4:5d:15:a2:51:
97:df:1e:c8:2c:18:ad:c2:a8:5d:c7:f5:26:6f:53:97:02:42:
d7:db:dc:09:92:36:6e:73:06:be:12:2f:4a:09:06:29:7c:1d:
1c:a9:ac:fb:21:13:f2:51:3f:c2:af:e3:eb:29:f5:53:40:7f:
3a:9c:08:da:44:99:28:10:8b:ae:64:e6:01:b0:70:cf:8e:8d:
5c:7e:80:07:24:a8:9b:8b:2a:7c:1a:d5:4a:27:7e:ae:e5:cf:
3f:d5:ad:21:d7:df:d5:79:88:5c:59:62:65:0a:ea:87:31:fd:
6d:ab:b7:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:06 2024 by rpki-client on console-fra.rpki-client.org