Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/CB3Ce1ETMz7aZw4rHx9DefopQjU.roa
File: CB3Ce1ETMz7aZw4rHx9DefopQjU.roa (raw, json)
Hash identifier: LOYePb254oM47E+SOQ3OOpAe+rhXDiVHMereDGdSdss=
Subject key identifier: 08:1D:C2:7B:51:13:33:3E:DA:67:0E:2B:1F:1F:43:79:FA:29:42:35
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 01856F42E93DA80ED0792A2C906DEC9C9A4B
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/CB3Ce1ETMz7aZw4rHx9DefopQjU.roa
Signing time: Sun 01 Jan 2023 21:35:34 +0000
ROA not before: Sun 01 Jan 2023 21:35:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62265
IP address blocks: 5.160.222.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:e9:3d:a8:0e:d0:79:2a:2c:90:6d:ec:9c:9a:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 21:35:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=081dc27b5113333eda670e2b1f1f4379fa294235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:16:de:d7:ef:54:29:2c:06:d8:10:a3:be:25:
38:be:e8:2d:e0:1d:a2:3b:49:0b:0a:46:9e:07:ae:
3e:ee:6d:d3:7c:eb:ec:28:cb:25:8e:e3:fb:d3:49:
7b:80:fd:70:46:23:0c:cc:5f:27:33:46:a1:d8:a9:
00:fb:29:65:d7:1e:06:2b:9b:df:16:fd:31:c8:c3:
e1:9a:c1:9a:c1:40:ac:cf:66:69:53:77:ff:de:f0:
ac:04:67:d6:98:01:34:45:fe:fc:43:29:ee:57:be:
9e:23:f8:4d:35:4e:36:e6:29:b4:03:6c:c8:57:2a:
9a:58:14:12:bf:56:61:29:90:2a:36:fd:45:29:f5:
cb:99:fa:6a:5f:96:15:c8:d7:85:80:50:fd:4a:00:
00:7c:6e:8e:09:42:6d:19:9a:84:59:98:b2:d8:9f:
ba:1e:64:7d:67:ca:27:80:9d:01:fb:f2:b0:87:94:
4d:82:ff:24:76:96:e6:50:cc:a0:f6:62:b0:ae:10:
62:43:29:5a:85:8f:0a:2c:cf:6e:65:b1:29:6d:a1:
fd:aa:5f:57:2a:a1:74:06:35:d6:ff:42:81:55:1f:
4a:21:8d:1a:25:c3:b6:fc:38:a4:3a:a4:fd:52:30:
ba:40:6a:0c:c6:17:43:19:d0:44:4e:25:92:45:a6:
2f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:1D:C2:7B:51:13:33:3E:DA:67:0E:2B:1F:1F:43:79:FA:29:42:35
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/CB3Ce1ETMz7aZw4rHx9DefopQjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.222.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:4a:68:a3:07:5e:de:da:74:b8:81:af:d4:cc:c1:8c:b4:23:
4e:fa:bc:e3:58:83:b2:72:2a:66:28:10:80:96:2e:b3:b3:53:
f3:a4:5e:0b:03:df:b8:f9:83:f7:c8:fb:20:71:95:ed:cf:5d:
35:69:8d:f7:84:41:32:37:63:fb:c4:c5:41:4c:49:6b:c9:3c:
27:6e:47:be:06:0d:3c:ef:97:bf:37:02:b0:84:ea:ac:29:35:
d1:16:f6:d7:f1:45:69:cb:8f:bd:e1:5a:b1:cf:96:68:4b:ea:
76:db:c7:16:f9:3b:20:01:77:5d:8b:67:d8:dc:65:5f:80:87:
5a:bb:f4:1a:f9:04:51:ff:fe:e1:72:05:a0:54:2c:69:e0:e1:
25:41:d8:8b:42:09:51:55:4e:93:a9:42:6d:a8:f6:b6:28:11:
7d:fa:43:f5:6c:be:81:ea:42:e8:b1:1c:03:1a:53:91:fc:f0:
dc:2d:30:7e:83:95:8a:a7:29:87:3e:0c:7b:e4:da:a7:19:6b:
3b:43:a1:0d:c0:f0:04:c5:15:07:fe:00:98:5a:96:2c:fb:3d:
3b:31:ec:42:d0:99:ab:05:4a:11:de:76:e0:28:39:4c:17:86:
b4:93:90:d0:7a:e0:41:d9:0d:7e:d7:68:04:e3:d4:a3:8a:2f:
f3:1c:be:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:31 2024 by rpki-client on console-fra.rpki-client.org