Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/edc8f3-0bb2-41ab-ba64-d22967e22ef0/1/5dhSxkYa8B6fb-J9bPZoznFYP08.roa
File: 5dhSxkYa8B6fb-J9bPZoznFYP08.roa (raw, json)
Hash identifier: tjk609X12FKU8rHkpbcwMpmP0xtwOyr72qrWuuBNqVs=
Subject key identifier: E5:D8:52:C6:46:1A:F0:1E:9F:6F:E2:7D:6C:F6:68:CE:71:58:3F:4F
Certificate issuer: /CN=5eccb7cd1b9d6fc39d7158f2fe9cf5217a12d374
Certificate serial: 018798C245AF968ED1E1547599D07B9DB453
Authority key identifier: 5E:CC:B7:CD:1B:9D:6F:C3:9D:71:58:F2:FE:9C:F5:21:7A:12:D3:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xsy3zRudb8OdcVjy_pz1IXoS03Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/edc8f3-0bb2-41ab-ba64-d22967e22ef0/1/5dhSxkYa8B6fb-J9bPZoznFYP08.roa
Signing time: Wed 19 Apr 2023 09:04:41 +0000
ROA not before: Wed 19 Apr 2023 09:04:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203179
IP address blocks: 185.143.156.0/22 maxlen: 22
2a07:3640::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:98:c2:45:af:96:8e:d1:e1:54:75:99:d0:7b:9d:b4:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5eccb7cd1b9d6fc39d7158f2fe9cf5217a12d374
Validity
Not Before: Apr 19 09:04:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5d852c6461af01e9f6fe27d6cf668ce71583f4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:20:21:b9:6f:1f:a0:1e:b4:3f:02:f0:4c:df:
5f:18:32:dc:c6:01:a5:e8:20:35:fc:97:2b:6f:52:
ef:93:b1:d8:68:c1:fc:68:6c:cb:eb:9d:a9:52:46:
8d:f5:d7:c3:ff:05:b1:f7:17:1c:87:64:06:38:7b:
c4:90:ce:3d:05:89:6f:d1:47:2d:e4:20:ff:15:90:
bd:b9:6e:7d:f9:04:c8:85:19:3c:0e:17:66:48:df:
e5:11:4c:19:43:e3:88:fa:c1:d0:9e:36:9d:1b:7f:
15:da:ed:b0:a1:df:46:10:41:a0:6d:f4:d1:3d:30:
71:ed:07:02:3b:b5:69:50:0a:a7:45:c9:81:a1:05:
99:3a:99:11:49:4a:ff:ab:3c:13:5b:9b:74:78:8b:
4f:a4:52:d9:6d:78:73:2f:74:ca:f0:2d:d0:82:94:
ef:73:82:4c:c1:5f:58:9f:bd:bd:d6:4f:f3:ae:1f:
fb:59:3e:4a:af:75:26:84:6c:05:7c:8f:72:22:5a:
22:5b:b7:bb:49:16:38:ca:89:80:b8:8f:92:49:20:
3a:ba:d1:34:49:c1:50:23:df:a3:13:27:84:aa:b8:
a8:80:ad:be:82:20:ce:58:3b:8e:d6:9f:a4:e5:17:
33:70:c0:b6:1a:6f:bf:2d:c6:1a:da:c3:8b:fa:82:
9c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:D8:52:C6:46:1A:F0:1E:9F:6F:E2:7D:6C:F6:68:CE:71:58:3F:4F
X509v3 Authority Key Identifier:
keyid:5E:CC:B7:CD:1B:9D:6F:C3:9D:71:58:F2:FE:9C:F5:21:7A:12:D3:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xsy3zRudb8OdcVjy_pz1IXoS03Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/edc8f3-0bb2-41ab-ba64-d22967e22ef0/1/5dhSxkYa8B6fb-J9bPZoznFYP08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/edc8f3-0bb2-41ab-ba64-d22967e22ef0/1/Xsy3zRudb8OdcVjy_pz1IXoS03Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.156.0/22
IPv6:
2a07:3640::/29
Signature Algorithm: sha256WithRSAEncryption
3c:3d:11:d5:46:dc:aa:4e:e3:c4:a3:9f:f8:0f:c8:e5:70:b0:
85:18:1e:7e:e6:16:f6:6e:d7:6e:d9:f4:7d:04:42:7f:33:5a:
ac:f4:ba:20:2a:52:26:4e:30:19:7f:a8:11:7a:10:84:2a:93:
d6:ec:c4:70:07:f5:f9:bf:88:07:04:ba:36:8b:7e:21:19:b2:
a0:59:82:4f:8b:66:d9:eb:15:3d:d9:4f:fd:51:cc:64:80:9f:
6a:ee:e5:73:69:69:e1:7b:4d:24:b1:7a:c6:4e:54:e6:6f:e4:
94:20:00:8d:23:04:fa:66:3e:35:d3:ae:7f:75:75:11:d2:d0:
04:a7:bf:5a:66:fa:2d:a4:d9:17:3e:8f:87:4b:6f:9e:c8:a9:
09:af:2b:26:44:22:2e:a3:fd:5b:e1:cc:4f:00:1c:5a:a9:84:
b0:62:d6:34:73:95:3c:8d:e0:16:9f:ff:90:02:ed:fc:d6:b5:
ae:83:22:77:21:c8:0c:d2:6f:61:f5:fe:e9:96:fe:4f:d2:7a:
3c:8a:0f:48:70:16:6f:2d:ec:24:17:54:aa:66:4c:74:87:be:
6b:b5:73:63:3c:38:8b:7a:58:fd:2c:c8:7e:a6:c0:81:aa:0e:
12:5c:41:42:b0:e1:f8:d0:7e:6e:03:6d:ec:0c:78:69:a5:17:
62:28:96:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:34 2024 by rpki-client on console-ams.rpki-client.org