Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/9c27e4-d7b1-43c1-a38f-94914f5ddb3c/1/mYQecGXLRFrv4b6BNeSV3ddQVXE.roa
File: mYQecGXLRFrv4b6BNeSV3ddQVXE.roa (raw, json)
Hash identifier: 7AGslidFUlOS6FsrswR4pBuceKB6lTiH0YofcRZ62Y4=
Subject key identifier: 99:84:1E:70:65:CB:44:5A:EF:E1:BE:81:35:E4:95:DD:D7:50:55:71
Certificate issuer: /CN=320b24a740f2e61632050adc146c1ee6a3e686c5
Certificate serial: 01856D81C0ADA90188ECBA743F837BC016CE
Authority key identifier: 32:0B:24:A7:40:F2:E6:16:32:05:0A:DC:14:6C:1E:E6:A3:E6:86:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mgskp0Dy5hYyBQrcFGwe5qPmhsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/9c27e4-d7b1-43c1-a38f-94914f5ddb3c/1/mYQecGXLRFrv4b6BNeSV3ddQVXE.roa
Signing time: Sun 01 Jan 2023 13:24:58 +0000
ROA not before: Sun 01 Jan 2023 13:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8605
IP address blocks: 5.179.0.0/20 maxlen: 20
5.179.16.0/21 maxlen: 21
5.179.24.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:c0:ad:a9:01:88:ec:ba:74:3f:83:7b:c0:16:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=320b24a740f2e61632050adc146c1ee6a3e686c5
Validity
Not Before: Jan 1 13:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99841e7065cb445aefe1be8135e495ddd7505571
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:43:f6:17:16:1c:41:78:ca:89:50:de:1d:b5:
89:ee:23:17:35:e8:f3:54:5d:f6:78:51:58:9d:01:
1c:08:7b:67:81:85:3b:b8:54:9c:da:2a:24:11:f5:
c1:20:7d:1b:29:f1:96:c7:56:08:c6:97:19:da:ec:
8e:a6:32:1b:90:d7:9a:c4:d0:be:9f:fe:0f:c5:cc:
61:f6:83:26:72:e3:72:23:7f:2f:2f:af:d3:56:8e:
ce:0d:60:0e:0c:9c:8c:2e:1b:9d:2a:7c:b6:b4:83:
b1:77:cb:13:2f:5c:84:45:e2:0a:0a:e1:88:65:2a:
fb:4e:31:f3:a5:73:1d:28:31:cb:ff:a2:04:44:58:
03:f8:90:f3:d3:4a:f5:98:fc:6a:5c:4b:43:51:89:
bf:1f:8c:97:f3:4e:14:f9:d1:8b:b7:b5:c5:75:cc:
da:d2:68:a5:18:43:19:03:bc:4c:df:da:da:04:49:
f4:36:d1:0d:80:65:3a:18:a4:4d:1d:42:fc:e0:f1:
b0:30:a2:f7:f4:47:3e:30:05:45:c6:1a:52:eb:3a:
33:7b:6c:55:4e:da:a8:e4:de:b3:e0:e9:19:cc:df:
e9:ae:d7:ab:83:69:0f:79:89:18:57:63:44:04:92:
3e:5f:75:99:3a:00:5b:37:cd:a7:f5:b3:d0:b7:f2:
91:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:84:1E:70:65:CB:44:5A:EF:E1:BE:81:35:E4:95:DD:D7:50:55:71
X509v3 Authority Key Identifier:
keyid:32:0B:24:A7:40:F2:E6:16:32:05:0A:DC:14:6C:1E:E6:A3:E6:86:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mgskp0Dy5hYyBQrcFGwe5qPmhsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/9c27e4-d7b1-43c1-a38f-94914f5ddb3c/1/mYQecGXLRFrv4b6BNeSV3ddQVXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/9c27e4-d7b1-43c1-a38f-94914f5ddb3c/1/Mgskp0Dy5hYyBQrcFGwe5qPmhsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.179.0.0-5.179.27.255
Signature Algorithm: sha256WithRSAEncryption
7d:ec:6f:87:cf:21:be:01:63:41:8e:ae:94:3d:e6:e9:ff:3c:
89:d3:a9:0b:c0:8b:fd:54:1b:4e:64:4a:38:e1:44:f3:a5:d0:
39:c3:4d:8a:c1:10:9b:b8:33:2d:77:da:0a:f5:87:f6:e2:25:
04:65:86:ef:11:31:e5:65:e6:92:f4:0a:5a:e1:5b:6d:4e:51:
63:06:3a:ea:a4:82:37:01:aa:95:06:95:18:6c:5d:ed:5d:2e:
4a:f5:6b:df:e2:97:85:38:af:c9:ec:53:7b:47:d3:4e:c9:6e:
f9:a9:c6:36:f3:73:9c:54:be:30:6e:16:a7:79:e4:c2:89:45:
69:ea:a0:ba:20:d3:b9:e7:95:8b:69:16:bd:84:7c:2a:9f:33:
10:57:f8:5c:03:76:6b:97:8b:ae:9b:fb:7c:9f:5b:a1:97:b2:
03:92:ef:e6:91:ed:ec:d6:6d:da:4f:bb:84:aa:1b:0e:65:e8:
cb:94:a7:bf:87:63:81:53:a6:4b:cc:1a:d8:44:6e:51:27:1a:
ab:a3:b8:5a:f0:b8:44:d2:9d:a4:47:14:80:dc:29:4d:63:6d:
e4:f8:a0:c2:ae:08:b8:f7:cc:7c:9d:f4:39:67:01:cc:86:a4:
f7:81:86:b9:74:d1:cf:50:01:cc:5a:d0:53:ff:a5:37:b4:96:
4c:c3:69:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:31 2024 by rpki-client on console-ams.rpki-client.org