Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/F4UX1rxk5fcGNTd9uQK2Nhb14p8.roa
File: F4UX1rxk5fcGNTd9uQK2Nhb14p8.roa (raw, json)
Hash identifier: d0vVsU3JhiyPt83pvAwhWEIuc1S5BuCNg6CDc7NLDTE=
Subject key identifier: 17:85:17:D6:BC:64:E5:F7:06:35:37:7D:B9:02:B6:36:16:F5:E2:9F
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 01856F42EAD0EF6239B36A041AC0324C970D
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/F4UX1rxk5fcGNTd9uQK2Nhb14p8.roa
Signing time: Sun 01 Jan 2023 21:35:34 +0000
ROA not before: Sun 01 Jan 2023 21:35:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64460
IP address blocks: 5.160.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:ea:d0:ef:62:39:b3:6a:04:1a:c0:32:4c:97:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 21:35:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=178517d6bc64e5f70635377db902b63616f5e29f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ec:a4:c4:59:9c:3d:2e:bc:6c:fe:5e:b5:83:
aa:cc:08:e7:9f:63:8b:f7:44:f0:96:0e:3d:ee:6e:
98:ab:d3:0e:22:1a:6b:b8:e7:62:fe:c6:98:30:51:
e6:7b:c8:aa:9d:88:74:b0:72:8e:bd:aa:58:35:49:
ee:94:ad:b3:15:c2:6b:4e:ba:be:ce:bc:5e:33:32:
56:58:d9:20:7c:7f:63:42:94:d9:74:6c:26:f8:87:
1d:ad:3a:8c:45:f2:b6:72:f0:e8:63:72:84:c2:f1:
57:9c:d1:04:da:3d:b6:fd:78:18:0c:ba:a8:c0:dd:
ef:63:b9:52:76:33:5e:98:0e:7f:7a:82:9a:0c:f4:
b3:f9:eb:1c:de:e4:01:5d:1f:88:e9:ae:35:c8:3f:
79:4c:0b:2c:63:61:6e:ea:c0:ca:9c:7b:0d:be:6e:
80:4b:9c:01:3f:ca:cf:79:b0:22:ad:c8:a5:ec:63:
1b:73:70:84:3f:49:6a:ff:36:ec:fa:ce:5f:85:f0:
8f:b1:50:c0:4f:7f:1a:49:44:03:6c:84:ac:32:f7:
b6:8e:39:69:64:04:56:ab:07:16:9f:25:3a:b3:ad:
f7:23:f3:08:5d:d5:3f:a0:18:ff:06:74:c5:bb:75:
39:64:37:93:54:37:d2:2b:bd:83:2c:d7:e8:1d:e2:
00:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:85:17:D6:BC:64:E5:F7:06:35:37:7D:B9:02:B6:36:16:F5:E2:9F
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/F4UX1rxk5fcGNTd9uQK2Nhb14p8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.141.0/24
Signature Algorithm: sha256WithRSAEncryption
33:ba:e9:8f:fb:66:b8:87:98:77:90:fe:44:5f:43:44:0b:14:
d2:6a:e7:82:cb:8d:d5:44:3d:75:72:88:8a:99:8e:b1:d8:e7:
aa:2b:b1:80:1e:6b:eb:50:76:d3:8d:ef:ae:04:ce:d7:f9:3b:
d3:d1:89:0e:45:cd:0e:34:55:14:6d:9f:b1:75:ae:d6:fa:db:
0f:6d:0a:a2:fe:a3:25:9d:8a:6c:d7:29:1d:5a:81:38:1d:55:
e2:20:78:fb:e0:2d:05:e4:b4:9b:72:0a:ce:49:9e:f8:8a:2c:
7c:22:82:3a:82:fa:5b:01:86:b5:61:ff:9f:d5:80:2b:28:88:
83:68:0e:7d:27:c4:6c:89:30:93:2f:22:7f:6c:65:bd:81:65:
53:2b:5d:db:49:3a:c7:00:89:4f:79:4f:7d:d8:ee:09:67:5b:
b5:2f:9a:17:10:d8:cc:46:62:d4:51:b1:0a:40:29:c3:75:0c:
b7:61:f1:e5:ef:c9:a5:01:84:68:33:7b:4b:75:4f:6e:bf:e4:
6c:8f:fd:d7:cc:d4:bc:e6:ca:47:36:a9:e3:9b:45:50:96:8c:
c5:90:f6:6a:65:1f:fc:f9:29:6d:c0:49:af:94:c9:be:d1:ff:
bc:6a:30:72:81:97:33:96:fa:7e:c9:9a:df:a8:03:25:12:2c:
13:d3:98:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:20 2024 by rpki-client on console-ams.rpki-client.org