Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/dQaswsi8alCcXTlYjRvY6ICSXHQ.roa
File: dQaswsi8alCcXTlYjRvY6ICSXHQ.roa (raw, json)
Hash identifier: RSqU+2RTqExg6m8g1cr7PmWZjFkbAmc31HQB3yF8DLM=
Subject key identifier: 75:06:AC:C2:C8:BC:6A:50:9C:5D:39:58:8D:1B:D8:E8:80:92:5C:74
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018F1B9BCFF29E9AA90A356FA8975E86538F
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/dQaswsi8alCcXTlYjRvY6ICSXHQ.roa
Signing time: Fri 26 Apr 2024 18:12:27 +0000
ROA not before: Fri 26 Apr 2024 18:12:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2116
IP address blocks: 5.39.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 May 2024 08:36:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:1b:9b:cf:f2:9e:9a:a9:0a:35:6f:a8:97:5e:86:53:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Apr 26 18:12:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7506acc2c8bc6a509c5d39588d1bd8e880925c74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c6:f5:98:29:35:e3:a1:42:6b:b0:e9:28:1b:
33:e9:fa:c3:7a:73:dc:13:95:52:b0:88:ec:5f:eb:
31:d3:45:6a:2f:21:22:7e:df:10:d9:95:aa:38:d7:
b0:7e:b5:c3:cf:1e:2a:44:c2:72:9b:95:c9:db:59:
a2:1a:5e:ee:a2:a1:93:33:60:a0:e9:4a:55:83:6f:
a3:38:0c:94:9a:e3:ed:b5:17:3c:75:2e:b0:21:7a:
0e:02:e8:ed:40:68:bc:d0:c1:73:d6:d2:84:59:a0:
cd:5e:32:c6:4f:1a:01:c4:ce:47:f3:d2:40:9a:f2:
76:4f:74:89:1b:23:b6:20:c4:44:f7:46:af:3d:80:
d3:ef:b7:c9:a5:28:48:e8:ab:8d:a8:8f:99:02:ee:
c2:d0:25:11:22:21:67:90:e2:da:cf:30:a0:da:4c:
d9:72:33:f9:25:66:1c:a6:ca:e5:df:0e:a7:65:8d:
78:73:6d:4b:08:f8:47:45:a8:fb:40:c4:9f:87:af:
5e:ae:fc:77:c4:50:20:1d:f8:5d:9b:9b:33:5e:cf:
1b:1f:db:cd:dd:52:1b:f4:3c:0b:7b:78:e4:2c:4e:
ae:31:73:e8:15:c8:90:b7:1f:78:e3:46:ee:4a:70:
68:66:77:8d:43:f3:15:ec:5e:79:34:6d:e7:a6:59:
6d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:06:AC:C2:C8:BC:6A:50:9C:5D:39:58:8D:1B:D8:E8:80:92:5C:74
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/dQaswsi8alCcXTlYjRvY6ICSXHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.253.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:d1:08:f4:25:ad:23:ea:bd:c2:09:12:a5:63:55:c9:a4:4d:
2d:94:2e:12:20:d3:59:cb:fb:38:09:32:f9:08:42:e6:c4:31:
e9:17:93:7c:53:f5:56:04:da:9b:7d:b6:e8:c2:1c:c4:2a:49:
01:3c:b5:c4:b2:45:b2:8a:0f:cd:30:89:79:e1:16:fb:62:eb:
57:85:27:12:02:49:11:a4:2e:ff:4c:27:1d:fb:ae:98:d8:0a:
b2:c9:3b:25:7c:03:6b:95:0f:1b:1c:05:1e:79:d5:45:63:12:
0e:9f:ea:00:01:b4:27:6b:04:90:60:7b:4e:a0:aa:d2:31:39:
fc:5b:1c:14:ab:22:06:d9:84:be:24:e2:0d:00:89:4b:6a:b2:
27:79:83:58:f4:b8:6f:c6:6b:42:71:86:a0:df:35:e7:46:ea:
c4:fb:1a:2d:c6:24:dd:97:91:39:f3:b3:c6:29:a8:16:5e:43:
e4:46:d5:83:c9:90:22:85:60:4f:b7:04:5d:1b:f7:a6:ab:9c:
27:ab:a6:c3:04:d7:b0:ae:d4:50:59:cc:5b:c0:0b:34:aa:97:
b3:5f:9c:5a:17:18:cb:eb:a2:fd:ca:de:2f:c3:08:6a:5b:a6:
69:61:3c:58:98:66:c1:03:59:5d:47:b7:de:83:88:a2:2f:68:
af:19:f1:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 11:49:48 2024 by rpki-client on console-ams.rpki-client.org