Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/TEWmCsTNWHuzr9XMXJw_ruJPKx8.roa
File: TEWmCsTNWHuzr9XMXJw_ruJPKx8.roa (raw, json)
Hash identifier: VNEERxq/s8D48p995o/yo8yyk8YIbeloeEI4mF2Q3Vs=
Subject key identifier: 4C:45:A6:0A:C4:CD:58:7B:B3:AF:D5:CC:5C:9C:3F:AE:E2:4F:2B:1F
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 01856F42E0C96DBE1B5171425A0A4C825C96
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/TEWmCsTNWHuzr9XMXJw_ruJPKx8.roa
Signing time: Sun 01 Jan 2023 21:35:31 +0000
ROA not before: Sun 01 Jan 2023 21:35:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59757
IP address blocks: 5.160.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:e0:c9:6d:be:1b:51:71:42:5a:0a:4c:82:5c:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 21:35:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c45a60ac4cd587bb3afd5cc5c9c3faee24f2b1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:16:d3:0c:e2:a5:28:cf:bd:60:7f:59:99:1b:
3b:f0:08:81:58:d1:4a:34:da:9c:16:54:a6:50:79:
cb:82:29:66:b9:37:51:f5:09:d7:9a:0f:0a:5c:13:
be:bd:66:81:dd:ae:70:c3:6b:52:cd:0c:93:a2:c3:
cb:29:5b:87:44:c0:6c:7e:d5:11:4a:32:3c:5b:49:
cb:5c:46:3a:6f:e0:31:2b:33:12:d0:cd:4d:ed:aa:
87:84:c6:ca:25:bf:80:7d:87:8a:4a:a6:7c:e0:33:
48:d2:b7:ec:5e:96:f9:37:8b:5d:db:10:a6:80:fc:
19:ac:b9:d1:15:89:b2:5d:27:5c:79:b3:13:23:12:
ae:cb:67:a5:96:fe:96:be:c0:d1:4a:d9:6b:ad:0d:
38:82:01:f0:82:bd:08:63:44:b3:48:75:3c:f6:9f:
3d:f9:50:4b:f0:dc:04:93:b8:cf:c8:ed:ab:d4:bc:
c7:8d:86:8e:12:8b:be:2d:b7:f1:e7:0a:1b:99:f2:
cc:ba:98:cb:38:31:4e:68:bb:e4:05:13:e1:8d:d0:
94:d2:8a:98:73:98:d7:e2:84:f3:1a:86:17:98:9c:
38:1b:50:4c:ab:e0:c4:c1:00:c9:d8:f6:86:12:97:
28:28:a1:52:77:4e:8d:1e:64:7d:30:c7:c5:46:9f:
7f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:45:A6:0A:C4:CD:58:7B:B3:AF:D5:CC:5C:9C:3F:AE:E2:4F:2B:1F
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/TEWmCsTNWHuzr9XMXJw_ruJPKx8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.216.0/24
Signature Algorithm: sha256WithRSAEncryption
17:af:41:a0:a2:13:51:42:e6:09:f2:d4:75:cb:ce:db:fc:9c:
63:e5:ce:7d:3b:2e:16:c8:f7:25:01:d7:24:da:cc:38:bb:d3:
26:e1:7f:d7:cf:8e:a5:70:2c:da:e7:99:f4:04:1a:30:20:d0:
e7:c9:49:4e:fa:27:e7:cb:b7:45:89:94:b7:86:54:f0:39:57:
5a:18:94:75:39:a4:c6:21:87:13:4a:2a:1e:86:54:32:f3:57:
17:8b:ab:2d:3c:71:a3:42:b1:28:2d:34:52:f8:0d:bf:88:03:
8f:01:b5:ce:30:c6:f3:85:d5:b2:67:b2:da:f8:2d:14:73:66:
16:d4:e1:2a:d1:a7:ad:13:9b:73:3d:88:6a:1e:c5:06:2c:3f:
a0:85:99:da:d7:7d:04:38:b0:ee:70:ee:87:d5:ab:7a:e5:27:
4e:aa:a3:ed:b4:15:57:1d:30:a0:fc:70:52:6f:4a:8c:5f:46:
b6:3e:5f:ba:39:ab:f1:f3:9b:b3:ba:28:c5:12:a9:b4:aa:20:
13:d0:b8:9b:55:24:16:95:91:9f:c9:82:18:aa:a9:18:60:91:
b3:16:4d:d9:6b:8c:35:24:4e:70:91:b9:b4:bd:4f:b7:d5:de:
29:ff:de:c2:75:66:8b:ef:2a:5c:1e:04:97:2c:f3:b1:07:88:
0a:46:ee:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:21 2024 by rpki-client on console-ams.rpki-client.org