Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/4759f9-7fdf-4916-a995-6970ecd9a610/1/tmC2gg5MzuwAwzTmykR_0A-kXf4.roa
File: tmC2gg5MzuwAwzTmykR_0A-kXf4.roa (raw, json)
Hash identifier: Q9GgZSy2S3T+D9/K/EEpDguYXYPDQpuMFYKSGg/9frs=
Subject key identifier: B6:60:B6:82:0E:4C:CE:EC:00:C3:34:E6:CA:44:7F:D0:0F:A4:5D:FE
Certificate issuer: /CN=052b864969e9680764899015e163ece77bb4cb76
Certificate serial: 0185A0438A96C1085A7371414F859D11E4C0
Authority key identifier: 05:2B:86:49:69:E9:68:07:64:89:90:15:E1:63:EC:E7:7B:B4:CB:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSuGSWnpaAdkiZAV4WPs53u0y3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/4759f9-7fdf-4916-a995-6970ecd9a610/1/tmC2gg5MzuwAwzTmykR_0A-kXf4.roa
Signing time: Wed 11 Jan 2023 09:57:39 +0000
ROA not before: Wed 11 Jan 2023 09:57:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61349
IP address blocks: 5.144.91.0/24 maxlen: 24
5.144.88.0/23 maxlen: 23
5.144.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a0:43:8a:96:c1:08:5a:73:71:41:4f:85:9d:11:e4:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=052b864969e9680764899015e163ece77bb4cb76
Validity
Not Before: Jan 11 09:57:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b660b6820e4cceec00c334e6ca447fd00fa45dfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:62:84:b9:a7:dc:42:ce:5c:e6:53:d3:08:2c:
6c:e8:96:c8:48:2f:ac:80:1f:90:ed:d6:d0:8b:75:
5e:6f:7c:39:02:f0:73:30:8c:e8:5c:60:04:d8:c4:
7a:c4:b8:16:be:4b:83:ff:bf:0e:ff:3d:0f:70:85:
ff:79:23:12:41:da:03:f4:31:89:81:20:71:f5:b3:
ec:2f:91:d9:40:ee:b0:8a:c8:cd:1f:ce:23:1e:6d:
10:43:6c:18:6e:3e:f0:dd:24:f4:48:3b:a4:8d:85:
cb:95:14:38:e9:3f:ab:79:4d:ab:fa:42:e9:d2:93:
65:49:f7:a9:ec:8e:a4:a6:79:7d:d1:38:56:cb:20:
c0:66:e4:2a:bb:15:47:2c:ca:f0:7c:58:97:d6:82:
d0:51:ff:33:70:3b:10:04:51:91:78:05:f8:47:d1:
cf:e8:f1:fc:08:97:72:a9:17:4e:33:b2:e3:d5:7c:
74:4b:15:eb:53:c6:29:60:dd:d1:de:2a:98:a7:38:
b2:7f:6a:2e:71:3f:e9:5a:89:3a:69:4c:ed:97:bc:
dc:d7:bd:69:88:9e:80:4e:5d:00:be:a6:64:06:7c:
19:61:74:d2:a4:60:03:a9:f2:a2:5e:05:ca:17:31:
b4:60:ca:57:91:f6:e2:66:13:0f:22:7b:1a:e0:6d:
4f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:60:B6:82:0E:4C:CE:EC:00:C3:34:E6:CA:44:7F:D0:0F:A4:5D:FE
X509v3 Authority Key Identifier:
keyid:05:2B:86:49:69:E9:68:07:64:89:90:15:E1:63:EC:E7:7B:B4:CB:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSuGSWnpaAdkiZAV4WPs53u0y3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/4759f9-7fdf-4916-a995-6970ecd9a610/1/tmC2gg5MzuwAwzTmykR_0A-kXf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/4759f9-7fdf-4916-a995-6970ecd9a610/1/BSuGSWnpaAdkiZAV4WPs53u0y3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.88.0/23
5.144.91.0-5.144.92.255
Signature Algorithm: sha256WithRSAEncryption
84:0a:ff:79:68:5c:a3:ba:eb:b3:02:f3:e3:ea:e0:57:3e:24:
ca:6f:b0:20:27:fe:cf:63:f3:fb:8a:70:36:d5:3c:29:c0:1f:
99:df:9d:47:f7:63:18:99:91:4a:73:8c:a1:4c:5e:ac:cb:50:
60:42:bc:c1:b9:a6:62:1b:04:aa:b5:92:00:ae:81:32:33:e5:
68:9b:fa:20:41:e3:42:b0:84:82:81:19:75:46:12:fc:b3:d3:
f8:52:66:c1:fb:52:2f:8d:12:b3:01:79:0a:1f:2d:db:9c:de:
fe:78:a2:49:a2:d4:60:21:06:07:a9:df:9b:7c:7e:f0:26:4b:
64:ea:5b:d3:ad:c4:ee:8b:d3:9d:30:ef:0b:5a:b9:1f:c7:c2:
95:22:6e:6f:f3:d1:e1:c3:fb:53:a9:c6:f5:27:08:4d:7c:50:
e3:97:77:a5:61:ad:0e:c7:1e:98:ee:5a:f0:b7:52:9e:e8:cd:
d7:26:ae:fe:b1:4f:b6:5e:e9:b0:02:fb:df:ef:c6:e6:a6:24:
0d:78:3b:ae:13:35:b2:79:e7:f6:70:bf:9f:0b:16:3c:94:db:
f7:8e:97:37:9f:34:73:f0:1f:50:82:5b:ea:02:56:35:5e:58:
80:6b:5d:2e:54:53:76:82:e0:29:9e:01:2f:dd:39:5a:78:78:
e1:ae:78:70
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:23 2024 by rpki-client on console-ams.rpki-client.org