Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/4759f9-7fdf-4916-a995-6970ecd9a610/1/7IW3SmTt_8cvqalhdqHuihEjDmE.roa
File: 7IW3SmTt_8cvqalhdqHuihEjDmE.roa (raw, json)
Hash identifier: SXRvEApkGdcOnwH74WijuPo+dx70XkEFptTcPdax7kY=
Subject key identifier: EC:85:B7:4A:64:ED:FF:C7:2F:A9:A9:61:76:A1:EE:8A:11:23:0E:61
Certificate issuer: /CN=052b864969e9680764899015e163ece77bb4cb76
Certificate serial: 018CC6B7E2EA69AF32A4838CD2E7C2E17DE0
Authority key identifier: 05:2B:86:49:69:E9:68:07:64:89:90:15:E1:63:EC:E7:7B:B4:CB:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSuGSWnpaAdkiZAV4WPs53u0y3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/4759f9-7fdf-4916-a995-6970ecd9a610/1/7IW3SmTt_8cvqalhdqHuihEjDmE.roa
Signing time: Mon 01 Jan 2024 20:29:49 +0000
ROA not before: Mon 01 Jan 2024 20:29:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59445
IP address blocks: 5.144.84.0/22 maxlen: 22
5.144.80.0/24 maxlen: 24
5.144.90.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 07:47:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:e2:ea:69:af:32:a4:83:8c:d2:e7:c2:e1:7d:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=052b864969e9680764899015e163ece77bb4cb76
Validity
Not Before: Jan 1 20:29:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec85b74a64edffc72fa9a96176a1ee8a11230e61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:5a:c4:09:e1:9d:a1:ef:c8:cb:e6:97:0b:a0:
9b:d4:e9:af:1e:a2:8f:c6:1f:65:73:04:8f:56:4a:
50:11:82:da:3f:2f:57:87:2d:ab:60:af:68:a2:3a:
00:20:c1:8d:ad:9b:38:21:2b:3d:6a:3c:6b:d6:bd:
fb:51:df:4e:89:46:8b:ea:94:78:a1:6d:9d:3b:8c:
dc:91:4c:11:65:36:bc:d0:f2:f5:a2:09:08:b7:12:
bd:c6:d8:9a:0b:f5:b3:85:b6:8d:d1:15:58:63:a0:
51:e9:25:2d:86:b8:5e:a0:f7:37:80:d1:6f:10:a3:
cb:df:88:68:a4:8d:60:43:61:63:f6:e5:42:a4:37:
10:9f:ac:a2:17:fb:06:99:9b:90:af:ed:56:bc:b6:
f3:a1:15:c6:58:27:fc:8c:2c:69:f2:cf:05:93:f3:
f7:6e:1a:7c:41:11:f9:26:73:d4:0f:05:0d:9b:15:
1b:ce:b9:46:f9:75:90:9c:fc:09:64:30:95:22:6d:
6a:1a:12:24:65:c3:11:66:c5:de:2a:39:d1:2e:1a:
db:f4:49:34:75:e1:26:ff:0a:72:4c:2c:67:46:9a:
23:8e:9a:7e:d9:eb:69:ef:4b:e5:b1:9b:77:25:38:
0d:7c:17:61:61:57:d9:27:67:22:38:f1:4f:fa:9b:
c8:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:85:B7:4A:64:ED:FF:C7:2F:A9:A9:61:76:A1:EE:8A:11:23:0E:61
X509v3 Authority Key Identifier:
keyid:05:2B:86:49:69:E9:68:07:64:89:90:15:E1:63:EC:E7:7B:B4:CB:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSuGSWnpaAdkiZAV4WPs53u0y3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/4759f9-7fdf-4916-a995-6970ecd9a610/1/7IW3SmTt_8cvqalhdqHuihEjDmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/4759f9-7fdf-4916-a995-6970ecd9a610/1/BSuGSWnpaAdkiZAV4WPs53u0y3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.80.0/24
5.144.84.0/22
5.144.90.0/24
Signature Algorithm: sha256WithRSAEncryption
99:68:2c:c4:49:dd:86:40:8a:18:da:24:ac:d3:cd:b1:83:ad:
21:9c:b6:ac:b3:5f:bc:14:51:63:eb:8d:56:eb:10:c4:1b:e9:
60:c1:d3:8f:5c:00:7f:58:c7:0a:2f:0b:8b:8e:47:0b:7a:70:
8a:00:51:b0:e1:68:d2:ff:1f:fe:a5:bc:2f:39:77:ba:8a:aa:
72:1b:9c:bb:d2:61:a4:fa:14:7d:b2:5f:b0:c8:d6:d7:56:3a:
51:22:a8:27:9d:3b:4a:b3:78:a7:6a:3e:0e:70:58:24:60:38:
9e:e0:5e:5f:78:1a:69:1b:25:c3:9a:7a:fb:1a:0d:40:64:f0:
ed:6a:ba:8a:7a:0e:dc:39:5a:f2:3c:cd:04:9d:cd:d5:48:de:
58:14:7e:20:eb:06:bd:2a:53:65:3e:3c:a2:07:ee:01:59:30:
50:33:4c:26:14:7e:9a:b5:56:59:7d:2b:bd:3f:d6:b6:da:20:
81:41:3a:cd:37:c1:5f:2d:60:c1:48:6d:86:11:04:a9:97:23:
22:ca:93:84:98:0e:39:d1:58:7c:cd:56:98:8c:47:b8:2b:49:
84:66:95:68:18:21:de:ab:f0:86:3c:b0:33:41:fd:58:cd:2b:
12:07:b8:de:33:cb:29:b1:95:4d:ca:d6:44:e4:76:04:b2:cb:
e3:96:97:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:55 2025 by rpki-client