Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/h1EdHkqFmsxTlwRwLSePpCFO-Mg.roa
File: h1EdHkqFmsxTlwRwLSePpCFO-Mg.roa (raw, json)
Hash identifier: HEFKa2JVNcVCA3kE67a9vDrzWkeM1aGmlGUCtH0quhA=
Subject key identifier: 87:51:1D:1E:4A:85:9A:CC:53:97:04:70:2D:27:8F:A4:21:4E:F8:C8
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018CC42556AD57DAF451B9EB4DBA2942AA9D
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/h1EdHkqFmsxTlwRwLSePpCFO-Mg.roa
Signing time: Mon 01 Jan 2024 08:30:30 +0000
ROA not before: Mon 01 Jan 2024 08:30:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21177
IP address blocks: 5.182.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Feb 2024 14:09:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:56:ad:57:da:f4:51:b9:eb:4d:ba:29:42:aa:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 08:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=87511d1e4a859acc539704702d278fa4214ef8c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:99:f8:57:94:5d:96:56:2c:a3:20:99:af:86:
90:cb:1b:db:9d:20:3a:37:81:79:d7:3e:1f:01:58:
9c:2a:24:00:25:5e:92:01:18:de:47:59:21:fb:c5:
f4:16:7e:88:73:59:6e:6d:d3:5e:37:d9:45:96:ae:
96:c5:46:e5:94:c4:f3:e4:10:ad:8d:1a:e4:06:1e:
dd:85:21:f7:7b:b9:8f:41:7b:4f:3d:a2:88:43:5d:
cc:d5:9c:7f:2a:b4:c1:92:7b:36:da:a1:d8:56:c6:
04:a0:b1:54:38:b6:64:58:95:6d:8b:50:ae:c0:a4:
80:d8:70:0d:83:20:a5:13:13:20:ca:ec:1b:ff:d7:
e5:07:96:66:54:6d:3f:3f:7d:c4:1c:a5:6e:c2:79:
8d:36:f4:f3:b4:b1:15:f7:8b:06:78:b5:07:e8:f0:
56:e4:f4:e3:28:5b:71:73:53:1b:cf:52:da:ec:fd:
3e:48:22:26:58:2c:20:b7:62:c8:8d:7c:1a:3e:42:
3c:df:36:63:12:64:04:eb:a7:b5:04:05:13:b7:97:
00:50:06:14:3f:a1:74:fa:d2:e3:03:85:25:62:30:
41:9b:dd:dc:8e:6f:24:8a:70:fa:f9:25:93:c1:47:
64:db:0b:55:f5:e2:5c:1d:5b:25:9d:5e:53:2a:f1:
f5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:51:1D:1E:4A:85:9A:CC:53:97:04:70:2D:27:8F:A4:21:4E:F8:C8
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/h1EdHkqFmsxTlwRwLSePpCFO-Mg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.48.0/24
Signature Algorithm: sha256WithRSAEncryption
44:a5:19:bf:a9:ea:ad:98:0a:53:8a:c7:47:85:2f:0b:43:65:
21:ed:51:e1:95:55:f1:30:4b:5c:1d:df:82:a0:6d:9b:56:ee:
3f:f6:30:2f:09:65:17:16:e7:48:e1:df:e0:be:16:36:0d:3b:
3b:d6:66:9a:c1:32:39:a0:61:10:52:84:a8:aa:ad:30:25:6c:
e6:4a:84:13:3e:40:70:fd:99:5e:64:13:46:13:f9:b2:1c:81:
12:ff:19:f4:54:a9:0e:cd:a0:b7:83:b0:70:e9:87:13:c3:d8:
9a:45:ad:2f:ef:ba:6d:ea:4e:47:49:68:4f:59:09:50:35:f1:
e1:a8:92:4c:33:78:ba:00:0c:d0:7d:2c:86:ca:a6:99:47:f9:
31:3d:08:b9:77:56:cc:fa:4d:63:bb:b4:62:5c:40:24:38:31:
43:55:54:17:0e:06:15:8b:ac:a8:d5:a9:83:9e:f4:e2:7c:0a:
35:75:e8:40:21:e3:b8:e5:97:d6:5b:9f:eb:ae:89:5f:52:06:
c4:42:75:7e:3f:62:6d:4c:dd:a7:a0:3c:0a:0b:99:25:1d:44:
86:b7:64:d3:90:b1:9e:9f:f7:72:0a:52:34:2a:1f:26:50:1b:
8c:01:b2:9a:05:e8:7a:be:fe:9d:e2:52:ca:01:27:08:cf:82:
cb:02:4c:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:40 2024 by rpki-client on console-ams.rpki-client.org