Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/5dxdzFmvOhfJArWu9V2PMBfKRbo.roa
File: 5dxdzFmvOhfJArWu9V2PMBfKRbo.roa (raw, json)
Hash identifier: Ha61/JiyfZPX2YZDAhFln5OZmEjpiajGNsTUeosV06Q=
Subject key identifier: E5:DC:5D:CC:59:AF:3A:17:C9:02:B5:AE:F5:5D:8F:30:17:CA:45:BA
Certificate issuer: /CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Certificate serial: 01933ED47174EB7CF5A775504E98CCBC0F76
Authority key identifier: 5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/5dxdzFmvOhfJArWu9V2PMBfKRbo.roa
Signing time: Mon 18 Nov 2024 10:32:10 +0000
ROA not before: Mon 18 Nov 2024 10:32:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5065
IP address blocks: 195.35.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Nov 2024 12:23:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:3e:d4:71:74:eb:7c:f5:a7:75:50:4e:98:cc:bc:0f:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Validity
Not Before: Nov 18 10:32:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e5dc5dcc59af3a17c902b5aef55d8f3017ca45ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:a7:4c:e8:4d:52:c3:88:40:c3:63:f7:ca:3d:
72:d7:3a:7b:bb:e4:5d:8b:d1:99:3d:fd:23:13:a5:
21:7d:ca:50:1f:e8:89:dd:84:31:37:be:43:06:ae:
58:ba:b1:14:4d:79:41:13:23:9f:1b:ad:e7:5a:c6:
62:24:ca:da:9f:5a:a3:47:1a:e3:49:a2:18:ed:17:
80:94:3c:2a:fb:99:2e:9f:5f:d0:07:68:f7:8a:0a:
12:52:8a:5e:ae:ec:bc:a6:e8:9e:4d:90:fd:c5:10:
48:00:db:c8:58:63:ed:3e:23:c3:fb:4a:a8:13:82:
b3:c7:a2:50:92:2d:7c:de:88:5d:55:ce:37:ce:a9:
3e:21:61:8d:a0:62:90:3c:1b:e7:b9:95:85:0c:78:
de:8e:ac:8c:ae:ae:36:6d:6c:20:81:31:99:e2:14:
b7:f1:f1:7e:09:74:65:04:de:09:d6:cb:81:76:04:
4d:b5:a6:67:54:e9:53:8d:8b:35:29:e0:57:36:9d:
31:2c:fc:b2:f1:b0:dc:58:cb:89:aa:de:0d:05:16:
6a:72:e3:37:f3:56:46:8c:c9:d5:f6:4d:d2:ca:3e:
e0:1c:cd:61:57:b3:b2:44:ed:52:3f:7c:f4:19:07:
0f:b6:0f:e2:94:41:b0:b9:4e:ef:0e:4e:0d:1e:32:
4e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:DC:5D:CC:59:AF:3A:17:C9:02:B5:AE:F5:5D:8F:30:17:CA:45:BA
X509v3 Authority Key Identifier:
keyid:5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/5dxdzFmvOhfJArWu9V2PMBfKRbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.35.120.0/24
Signature Algorithm: sha256WithRSAEncryption
32:92:36:5c:4f:46:f6:38:94:eb:87:ab:0a:26:36:45:23:2e:
5f:32:d8:63:04:e1:0d:69:af:fc:4e:c4:3a:71:e1:04:15:2a:
94:6f:53:4c:f6:3e:bc:4f:4a:75:77:22:e8:2c:89:be:5b:ff:
1d:a8:ec:93:50:d0:63:97:e1:a4:97:58:ef:35:49:f4:35:aa:
d5:26:ee:f5:cf:35:3a:05:c8:a6:9f:f2:1f:eb:10:64:28:6d:
b9:30:cf:f9:44:e1:c2:20:f4:da:1e:6f:f3:f2:65:58:a0:e7:
30:6e:fc:3d:18:62:f4:15:08:61:12:ac:48:9e:5d:38:42:ef:
43:d6:18:4e:92:5f:84:11:32:81:2a:f2:03:df:b9:ec:49:d0:
f4:38:96:8d:d4:f6:ae:56:f0:77:d8:bb:19:48:fd:89:85:d8:
29:a1:8a:39:ea:61:e2:c6:9d:87:f1:12:03:b1:52:e8:a2:f2:
e0:c8:d7:40:89:6d:7b:9c:9c:0d:93:f5:b3:2d:ef:3b:60:d1:
c4:4c:9e:e7:90:49:fe:0a:ff:a1:89:20:66:f7:15:e7:a9:30:
28:c4:f2:01:72:40:11:6b:ac:57:45:44:cc:c4:f2:d8:20:0e:
62:a6:7c:ea:06:f0:ac:c2:ff:17:d3:7d:16:c9:fc:f2:d0:71:
ba:25:9f:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:43 2025 by rpki-client