Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/ESjdzYcUJ_BH9ChI7hQp7e1ZZ0A.roa
File: ESjdzYcUJ_BH9ChI7hQp7e1ZZ0A.roa (raw, json)
Hash identifier: Lbm5kJ3aUH6hFbLH0DQ3FL9a5i2njmO1C0zGzaEXehk=
Subject key identifier: 11:28:DD:CD:87:14:27:F0:47:F4:28:48:EE:14:29:ED:ED:59:67:40
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 01856F42E25A80F276BA7EC788FA4FD15BC2
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/ESjdzYcUJ_BH9ChI7hQp7e1ZZ0A.roa
Signing time: Sun 01 Jan 2023 21:35:32 +0000
ROA not before: Sun 01 Jan 2023 21:35:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59961
IP address blocks: 5.160.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:e2:5a:80:f2:76:ba:7e:c7:88:fa:4f:d1:5b:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 21:35:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1128ddcd871427f047f42848ee1429eded596740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:74:36:c2:96:03:27:33:e8:7d:68:40:1c:b7:
e7:03:61:03:21:98:f0:98:b8:06:48:c5:58:43:78:
00:bd:fa:31:e6:2a:fd:5f:69:b5:c6:4e:73:e6:bc:
55:ba:10:99:e7:53:72:87:68:70:72:80:b1:26:8f:
b6:7f:e9:67:bd:7b:2d:5f:e8:c6:9c:07:44:14:32:
36:85:43:f0:99:de:de:7f:82:29:f6:fd:8b:d1:7d:
ca:f8:ea:02:af:44:64:b3:6c:b6:f1:0c:bf:89:c0:
39:26:79:d7:0b:9c:04:47:9b:62:13:21:fc:a1:46:
23:95:0c:cb:c7:55:78:d1:2f:23:05:9c:1b:c6:fb:
92:27:f2:a0:81:f4:77:8c:1b:42:18:97:16:20:43:
51:87:1c:8e:4f:98:a3:66:31:4d:64:3c:f1:84:16:
92:90:4e:7d:af:7a:cb:c3:85:e2:1f:10:3d:8b:09:
bf:1b:a4:9f:e4:12:5f:a4:b7:79:43:91:27:04:43:
71:cb:aa:18:3d:21:0d:da:0d:6e:a3:2b:d9:b7:b2:
ca:1b:b4:6c:3f:e9:d6:82:e3:19:5c:0c:88:79:f8:
55:6d:f6:d3:b9:f9:7b:84:ef:19:68:09:41:8e:54:
82:00:1f:f7:53:a2:be:75:6d:41:70:b8:ad:54:4b:
37:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:28:DD:CD:87:14:27:F0:47:F4:28:48:EE:14:29:ED:ED:59:67:40
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/ESjdzYcUJ_BH9ChI7hQp7e1ZZ0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.195.0/24
Signature Algorithm: sha256WithRSAEncryption
55:77:eb:6d:ed:5a:f4:fd:b6:b8:d9:a0:3c:03:b1:78:15:34:
5a:19:04:92:f5:17:f8:42:f8:6c:27:ac:6c:76:dd:09:21:be:
88:02:9e:1d:7f:62:89:22:f2:d2:51:1c:4c:57:1c:a0:8f:67:
8c:d4:2e:78:31:a4:60:6f:fb:a3:5c:73:ab:45:94:36:02:d2:
35:da:0e:e3:2f:66:9f:93:aa:f2:91:1b:0b:ef:42:01:8e:c0:
cc:22:71:09:be:83:cf:7a:77:69:09:5f:ed:c1:e7:54:88:85:
f5:a5:83:de:39:9c:5a:b6:8e:ee:9c:18:59:eb:3f:b0:23:19:
02:d2:22:84:f8:a2:e4:92:83:0c:91:6e:4c:d8:43:fe:a9:ca:
12:2c:83:9b:0b:98:d9:29:fe:ec:cb:b6:5a:43:d7:93:8f:63:
78:43:16:5b:ec:8a:16:04:2f:f7:84:6a:b5:83:16:d1:46:aa:
b6:6e:35:da:a0:d1:18:eb:c7:5f:72:5a:7f:ba:76:3e:3c:fc:
b9:43:2a:1d:e6:a4:8f:6b:17:08:59:1b:53:21:77:b3:2b:13:
0b:c4:72:9a:17:72:73:f5:75:89:45:59:a9:8c:c8:ff:06:67:
bd:ba:9b:ac:78:32:e6:13:3e:96:2d:57:13:87:5f:7f:bd:0e:
aa:02:c1:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:20 2024 by rpki-client on console-ams.rpki-client.org