Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/IN-GoSUpQQ5qiEOtc20nHD474KQ.roa
File: IN-GoSUpQQ5qiEOtc20nHD474KQ.roa (raw, json)
Hash identifier: rUiiPANWGVjP+/d0UeKuQDHoYsFkNwDfe5asCizba9U=
Subject key identifier: 20:DF:86:A1:25:29:41:0E:6A:88:43:AD:73:6D:27:1C:3E:3B:E0:A4
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 01856F42D4B93CA824785AC90E50025D8753
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/IN-GoSUpQQ5qiEOtc20nHD474KQ.roa
Signing time: Sun 01 Jan 2023 21:35:28 +0000
ROA not before: Sun 01 Jan 2023 21:35:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44889
IP address blocks: 5.160.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:d4:b9:3c:a8:24:78:5a:c9:0e:50:02:5d:87:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 21:35:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20df86a12529410e6a8843ad736d271c3e3be0a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:bd:d5:19:66:c5:c7:72:a5:c4:83:3b:ba:e3:
7c:d4:8c:cf:ec:f9:b5:43:33:ec:9c:ca:6a:3d:d4:
64:3d:8c:fb:f1:0b:8d:22:59:cb:d0:bf:d4:69:3e:
12:55:7a:0c:6d:81:42:3b:dd:ae:b5:d3:57:9f:88:
e8:e8:33:d8:b4:18:c5:49:a5:e0:ad:49:18:f1:dd:
d9:d0:1c:88:a1:53:23:47:6d:b2:f5:e7:9d:ea:20:
b7:6d:aa:2e:6e:05:1f:c8:e8:56:9f:87:d4:8b:30:
e2:36:3b:bf:4a:e2:b4:39:11:bf:82:8e:f6:94:05:
07:9d:34:1e:a6:5e:dc:93:9b:70:78:82:dd:bc:9c:
5d:6a:c7:de:3e:9a:9a:52:7d:94:d1:4f:94:af:66:
ad:48:ce:25:a1:98:14:7d:42:b1:25:24:4a:6c:ba:
44:0a:fc:0c:ba:5a:ca:94:d6:ea:94:bb:2c:2f:d4:
5a:7d:87:15:f2:98:45:07:01:6a:85:1b:2f:b8:62:
b5:5c:98:9d:83:21:41:d5:cf:10:ac:a0:6f:54:fb:
43:2d:21:cf:e7:1a:81:54:92:12:cc:d9:62:09:c0:
14:91:8b:3d:a1:cb:8b:20:91:fe:fe:f5:34:41:7b:
d4:f8:0a:c5:e2:d1:d6:f2:70:6d:e2:6c:06:8a:fd:
10:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:DF:86:A1:25:29:41:0E:6A:88:43:AD:73:6D:27:1C:3E:3B:E0:A4
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/IN-GoSUpQQ5qiEOtc20nHD474KQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.157.0/24
Signature Algorithm: sha256WithRSAEncryption
41:54:29:f4:25:0e:c3:e5:e6:61:95:03:4e:cc:0e:8a:55:83:
63:26:39:6b:8d:2b:b6:2b:0b:ab:b8:b6:b2:a4:bc:db:0a:65:
b4:35:28:95:9d:bd:51:73:a5:0d:dd:26:21:c9:3b:b2:f1:3a:
fd:2b:a1:3e:fe:3f:51:85:2e:ec:19:da:51:ea:cc:dc:d0:98:
3c:b7:14:1c:46:ab:a8:90:15:37:38:8f:40:32:90:96:d5:08:
0f:5a:b3:cb:15:0d:72:06:7b:3d:27:91:4d:9d:3f:6d:c5:83:
94:3f:da:d3:ba:8f:49:4f:58:77:0f:54:f3:f6:21:ce:9b:3e:
32:dc:6a:61:69:0a:93:93:e7:98:49:a0:0c:6c:d7:3e:2b:59:
f1:79:94:ad:70:bb:ac:97:98:31:0c:eb:cd:79:aa:51:32:2e:
91:e7:e2:59:eb:f0:40:08:51:72:0e:53:34:22:ae:07:63:0d:
61:dc:f1:55:43:59:06:3e:cf:59:62:35:c0:3e:d8:c5:c4:1d:
0b:c5:12:ba:70:52:26:dc:88:25:58:c7:b9:be:7d:8f:35:6b:
75:1d:65:98:25:f3:c6:54:70:d8:60:5f:2d:09:d9:fd:db:d2:
75:35:4a:e4:f1:f0:59:2e:1d:d5:04:d4:b0:f8:df:39:3f:b5:
76:3f:d5:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:31 2024 by rpki-client on console-fra.rpki-client.org