Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/t5kUgQD4ApoP807aKPaw24LCjLA.roa
File: t5kUgQD4ApoP807aKPaw24LCjLA.roa (raw, json)
Hash identifier: qS5jWZn8l+XX/uZ6MBatQV3oQWFnZrj1rxea4ACIHII=
Subject key identifier: B7:99:14:81:00:F8:02:9A:0F:F3:4E:DA:28:F6:B0:DB:82:C2:8C:B0
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 01857247140C7A72AEECDC4BB483A08489C5
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/t5kUgQD4ApoP807aKPaw24LCjLA.roa
Signing time: Mon 02 Jan 2023 11:38:58 +0000
ROA not before: Mon 02 Jan 2023 11:38:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202425
IP address blocks: 5.8.18.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:47:14:0c:7a:72:ae:ec:dc:4b:b4:83:a0:84:89:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 2 11:38:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b799148100f8029a0ff34eda28f6b0db82c28cb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:10:f0:ee:11:46:5b:2c:2e:d2:42:4b:79:22:
f0:a6:c1:64:02:0f:d9:88:d4:26:e3:7b:3d:ae:c2:
5f:a8:0e:7c:88:fe:bc:bb:24:b6:9f:4b:2e:95:f7:
94:5e:a7:50:61:ce:b7:40:d9:5c:a7:24:f6:5c:df:
c8:5d:81:21:fa:cf:cb:3d:6d:9e:f4:da:ea:2b:c6:
05:70:eb:9d:2a:24:a0:cd:90:0b:26:15:a4:50:ce:
65:ce:f9:ce:51:22:de:5b:e1:80:49:73:a2:af:c4:
6e:a1:be:cf:68:bc:7f:2d:c3:65:fb:d0:41:58:0a:
63:26:c1:e1:ed:d9:55:a0:fe:10:70:9e:c1:d4:36:
8b:64:84:06:d1:34:11:c6:b2:cf:a1:a7:40:e9:c3:
7a:78:05:14:74:cf:3e:91:f9:7b:d1:dd:de:2a:da:
c0:03:44:78:85:c8:1e:61:69:d0:25:e3:2e:e9:9d:
52:4f:93:ac:b1:61:8d:4e:8c:cb:87:f2:f9:dc:a9:
9f:1a:e0:11:6f:4e:87:f6:0c:29:5c:40:85:25:7e:
1c:4c:b3:1c:f9:0d:eb:8a:31:e8:a1:a3:33:d5:e2:
9f:e2:b5:bf:ab:bc:b3:35:5c:c0:1f:7d:3c:be:3e:
d1:d2:6a:65:a7:49:78:6f:f7:fe:fb:15:52:a7:76:
10:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:99:14:81:00:F8:02:9A:0F:F3:4E:DA:28:F6:B0:DB:82:C2:8C:B0
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/t5kUgQD4ApoP807aKPaw24LCjLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.18.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:dd:90:9e:d1:b4:b8:33:05:5b:85:ed:ba:24:34:7b:cb:38:
92:b9:ee:f9:1c:e9:c4:f2:92:2a:18:64:9b:65:e3:ef:ea:e9:
9d:cf:a6:46:15:78:75:43:c4:27:f3:72:04:8a:f5:b6:ba:55:
71:df:1e:c2:97:35:66:d7:e4:30:ef:55:ec:5b:6a:4b:c6:d5:
bc:36:9b:85:d5:dc:4a:41:95:7e:2f:b5:8b:de:0b:c2:0c:d3:
f0:89:ff:14:5d:74:89:e9:a9:0b:3c:f9:0b:e8:4f:9b:65:a7:
84:17:54:5f:82:30:53:58:b0:66:15:06:ce:28:2e:84:33:14:
e8:f5:41:a6:c7:dd:4d:dd:ac:3f:53:ed:5a:d6:bf:87:3c:aa:
e1:19:7b:f6:99:13:33:1b:ac:00:68:7f:e5:5a:ca:fb:21:88:
27:89:27:e9:fd:f5:c7:1f:c5:4b:ef:e3:7c:18:dd:ad:1c:30:
06:e5:bb:8c:29:43:4f:77:b8:dd:85:1e:bf:a5:bd:f2:b2:9b:
28:d2:86:c8:15:9f:18:cf:7a:1b:37:b5:a5:91:39:57:f0:c2:
f8:2e:db:e0:a9:14:7d:53:d5:ab:63:54:06:18:ca:5c:c6:c0:
93:ae:b2:6a:49:5a:e9:df:2f:58:e9:17:26:3c:06:36:32:9d:
48:dc:fd:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:25 2024 by rpki-client on console-fra.rpki-client.org