Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/f42340-2fcd-4573-a80b-910155525b2c/1/TdAVzxZXzuAvCU5xKbqilvhkcn8.roa
File: TdAVzxZXzuAvCU5xKbqilvhkcn8.roa (raw, json)
Hash identifier: HgDPuvbv/8hpWx8wokAFwgIBvYf5ZawbDTgPGOxEhk4=
Subject key identifier: 4D:D0:15:CF:16:57:CE:E0:2F:09:4E:71:29:BA:A2:96:F8:64:72:7F
Certificate issuer: /CN=178e2fe21da20235e99ec43c19381c7c6d63a3ad
Certificate serial: 01857142D7E4A08450D622BFBECF5790B747
Authority key identifier: 17:8E:2F:E2:1D:A2:02:35:E9:9E:C4:3C:19:38:1C:7C:6D:63:A3:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F44v4h2iAjXpnsQ8GTgcfG1jo60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/f42340-2fcd-4573-a80b-910155525b2c/1/TdAVzxZXzuAvCU5xKbqilvhkcn8.roa
Signing time: Mon 02 Jan 2023 06:54:44 +0000
ROA not before: Mon 02 Jan 2023 06:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8849
IP address blocks: 5.42.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:42:d7:e4:a0:84:50:d6:22:bf:be:cf:57:90:b7:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=178e2fe21da20235e99ec43c19381c7c6d63a3ad
Validity
Not Before: Jan 2 06:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4dd015cf1657cee02f094e7129baa296f864727f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:9b:62:8e:c1:6a:36:50:2d:e1:d8:cf:b5:cf:
df:89:7c:4b:64:d1:f4:7c:be:ac:d2:68:ab:29:84:
13:34:e4:5b:84:66:1c:bb:05:9c:d4:59:91:66:f8:
18:9c:c3:3a:df:00:da:f6:8f:78:c9:1c:09:91:e6:
49:47:6a:91:04:69:90:26:98:4c:8c:99:4a:47:56:
f6:82:24:fa:59:f4:e3:2c:0b:f5:fe:f4:0f:bc:d7:
d9:5f:f6:46:32:26:81:7c:0f:63:ba:2c:c1:70:8a:
18:d8:f5:ef:85:61:09:2c:89:60:9f:ba:ce:a4:9b:
d8:e7:2a:f8:a7:2b:50:2d:93:04:e9:8d:9f:e4:7f:
46:d1:6f:ee:f5:cf:40:56:30:59:15:8c:99:49:f3:
50:04:eb:0a:21:da:c9:c1:02:6d:e9:30:44:61:08:
e1:52:2c:3d:86:8e:00:dd:10:bd:ce:55:c2:02:2a:
50:d2:a1:49:eb:26:23:a2:a9:8b:4a:64:6b:fa:71:
f3:21:64:59:08:6a:fb:db:0a:4f:86:40:fe:6b:eb:
0f:82:47:03:7f:d4:d3:e3:3b:2f:aa:24:34:3d:3a:
7a:57:ad:86:66:ea:37:00:d5:02:cc:dc:6d:24:e9:
ed:3c:36:5d:95:bd:49:d3:a1:88:c1:ef:c6:b9:2b:
e2:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:D0:15:CF:16:57:CE:E0:2F:09:4E:71:29:BA:A2:96:F8:64:72:7F
X509v3 Authority Key Identifier:
keyid:17:8E:2F:E2:1D:A2:02:35:E9:9E:C4:3C:19:38:1C:7C:6D:63:A3:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F44v4h2iAjXpnsQ8GTgcfG1jo60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/f42340-2fcd-4573-a80b-910155525b2c/1/TdAVzxZXzuAvCU5xKbqilvhkcn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/f42340-2fcd-4573-a80b-910155525b2c/1/F44v4h2iAjXpnsQ8GTgcfG1jo60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.206.0/24
Signature Algorithm: sha256WithRSAEncryption
10:a6:da:07:52:5c:0e:4f:0c:84:82:7a:39:ae:41:f0:31:56:
ec:b3:6e:3e:d6:70:ae:9f:f9:39:6f:b1:eb:3a:27:26:45:5d:
9a:b9:3c:0d:a6:37:ff:ad:8d:02:08:a4:bc:2b:fc:7c:32:44:
b6:e9:e8:cc:3d:31:b1:81:fb:2d:af:0e:18:90:28:3c:7c:d7:
a4:05:71:fa:f8:fe:e2:6f:28:ef:67:63:8b:c4:00:7c:02:fe:
a7:79:21:80:7b:05:c7:e0:9b:95:ab:48:59:11:cf:f6:b9:62:
df:ef:9a:2c:5d:ba:a7:eb:d5:ff:60:cb:32:03:73:fd:0b:4c:
a6:c8:d3:20:a5:b9:fe:f0:5e:85:a2:08:eb:cf:fb:88:cc:25:
0d:2e:97:e6:3d:61:cb:29:2b:5b:f7:ba:64:03:1d:3b:d8:77:
af:ac:e8:4a:a8:0b:f3:9c:51:ed:57:7b:e0:35:9e:f6:81:b5:
67:96:04:e1:9c:e3:6a:bc:67:94:18:3b:64:1c:e9:3d:da:11:
9e:55:6a:c3:f3:96:1a:33:94:ca:4c:f3:26:6a:e0:a1:0a:7c:
65:fc:bc:1c:a1:08:0e:37:bf:56:2e:ca:a0:36:07:f2:16:37:
39:c8:80:33:44:90:19:5d:9a:d5:80:5e:81:f7:a4:89:50:35:
c2:ce:55:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:07 2024 by rpki-client on console-fra.rpki-client.org