Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/Rg5Ic9tlcHf1kYPvtIonQRCLuhY.roa
File: Rg5Ic9tlcHf1kYPvtIonQRCLuhY.roa (raw, json)
Hash identifier: y/6Jf5La1EHN2bbBQPcIf1riyHghGEP21+1ASk7sPOY=
Subject key identifier: 46:0E:48:73:DB:65:70:77:F5:91:83:EF:B4:8A:27:41:10:8B:BA:16
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 01856F42E7F3F38516CFE9900295CCF2FDA9
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/Rg5Ic9tlcHf1kYPvtIonQRCLuhY.roa
Signing time: Sun 01 Jan 2023 21:35:33 +0000
ROA not before: Sun 01 Jan 2023 21:35:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62048
IP address blocks: 5.160.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:e7:f3:f3:85:16:cf:e9:90:02:95:cc:f2:fd:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 21:35:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=460e4873db657077f59183efb48a2741108bba16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e9:94:c6:1e:d2:5d:6c:6e:7e:94:01:73:02:
20:13:31:39:b8:75:ce:9d:4a:57:d9:34:ae:f3:4d:
43:06:3d:e3:c9:cc:e9:ec:1f:93:24:6a:e5:29:db:
28:d3:1c:fa:1e:59:b8:fc:e6:d1:5e:f1:39:05:60:
3e:94:45:61:85:fb:f0:34:d4:1b:ac:82:f2:c8:47:
2f:84:c8:74:11:4a:25:98:1c:92:54:5e:32:95:43:
bc:e3:f1:a1:39:4a:90:23:24:b9:f6:bf:23:63:be:
88:37:5a:60:3b:b6:c6:e8:a4:73:50:87:1c:67:a0:
3f:eb:30:9a:a1:9a:6f:b5:7a:73:aa:49:28:8b:34:
90:90:3c:50:5c:1a:21:78:41:77:d5:0f:cd:20:f0:
a3:2e:d6:79:d4:8d:c6:3b:69:9d:04:dc:7a:69:1a:
8c:52:07:de:94:70:ac:b0:4d:78:90:fc:4e:d5:84:
fd:ba:9a:b9:7b:bc:50:cf:a3:11:58:3f:75:42:c6:
c2:7c:dc:60:2f:b6:5c:14:aa:7d:55:a1:fd:01:48:
d4:b5:bb:88:04:70:a8:da:1f:86:63:bb:43:20:38:
53:05:72:62:55:8d:70:e9:89:8a:2e:77:99:75:a7:
fb:f0:4d:64:66:f8:87:5d:56:50:78:0f:ed:91:b6:
5b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:0E:48:73:DB:65:70:77:F5:91:83:EF:B4:8A:27:41:10:8B:BA:16
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/Rg5Ic9tlcHf1kYPvtIonQRCLuhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.146.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:3b:8f:84:40:70:6d:43:46:97:e6:00:29:c5:40:8e:3e:c3:
fc:76:13:9c:5b:4d:b4:c4:bf:ac:73:ff:48:b9:7f:4a:7c:43:
a1:ae:aa:d9:80:0f:3d:f9:a2:97:c7:36:12:15:11:1f:66:9f:
de:21:e8:b1:d4:19:42:a3:cc:70:08:80:23:a6:fb:43:83:c5:
b4:d3:17:3d:7e:78:49:bb:72:1c:d9:38:2f:b1:d1:0a:76:28:
6e:1a:c4:31:28:f6:05:c4:23:01:45:c9:01:4d:af:79:df:36:
87:c9:5d:94:98:84:de:22:ad:79:98:d7:95:ef:03:5d:61:93:
65:aa:6a:55:49:76:da:b7:bc:aa:5c:57:ac:a9:0d:bc:76:6a:
83:f9:e5:84:26:43:d6:33:61:bd:b9:87:5a:b5:fe:ea:af:6d:
7c:d8:c4:ae:97:5a:13:69:d7:30:ae:48:00:a0:d8:0a:93:7d:
a7:08:a9:18:c8:72:fb:0a:16:11:3b:30:c0:ad:8d:35:71:51:
87:5e:95:67:e6:3c:5d:87:50:cd:96:a1:38:9d:46:c8:26:d0:
42:e7:27:1c:b1:90:18:7d:c0:fa:e5:80:7f:46:1c:f8:47:ad:
21:80:a5:45:06:71:3a:e6:46:99:81:00:4d:11:af:e0:21:e9:
ab:c5:cb:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:21 2024 by rpki-client on console-ams.rpki-client.org