Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/ed28d5-78d3-45e2-a7d3-6867c4ae3161/1/i3MYwvtRlLdplPTbvwZfXSIMnHs.roa
File: i3MYwvtRlLdplPTbvwZfXSIMnHs.roa (raw, json)
Hash identifier: IvISNvKeYTxlYSCd8fMKxfbGcG03rOv2ZEMbBZGsgco=
Subject key identifier: 8B:73:18:C2:FB:51:94:B7:69:94:F4:DB:BF:06:5F:5D:22:0C:9C:7B
Certificate issuer: /CN=05bcde319a3dca2cf6744d2881ca91b83db9bdea
Certificate serial: 019271B83B06D0D5258E1876E6B5F3E58782
Authority key identifier: 05:BC:DE:31:9A:3D:CA:2C:F6:74:4D:28:81:CA:91:B8:3D:B9:BD:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbzeMZo9yiz2dE0ogcqRuD25veo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/ed28d5-78d3-45e2-a7d3-6867c4ae3161/1/i3MYwvtRlLdplPTbvwZfXSIMnHs.roa
Signing time: Wed 09 Oct 2024 14:39:11 +0000
ROA not before: Wed 09 Oct 2024 14:39:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60187
IP address blocks: 5.150.124.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 24 Oct 2024 09:42:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:71:b8:3b:06:d0:d5:25:8e:18:76:e6:b5:f3:e5:87:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05bcde319a3dca2cf6744d2881ca91b83db9bdea
Validity
Not Before: Oct 9 14:39:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b7318c2fb5194b76994f4dbbf065f5d220c9c7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:06:e1:1f:3b:1f:78:3c:f8:0e:14:db:a6:13:
a1:c0:27:48:fd:0a:64:c2:04:83:b7:d4:95:9b:5c:
8d:10:89:e7:dc:e8:e3:b8:f9:ec:02:ae:44:67:fb:
62:7d:73:07:dc:dc:e8:41:77:eb:f7:94:f0:a6:34:
34:67:6f:1a:0d:3d:e0:e1:29:b6:8b:fb:4e:1f:3b:
f8:c8:4e:18:a3:d9:41:fa:32:08:2e:4b:e3:f7:22:
82:8d:34:2c:29:0f:0c:ed:bc:b7:0b:d4:94:8e:3c:
88:57:a1:21:47:12:ab:9f:65:ad:c7:0e:3f:55:cd:
b1:3b:37:0a:10:6b:e2:91:c4:45:0f:c1:1c:5e:12:
57:65:b8:9d:af:f6:cc:ee:c4:70:fe:7d:27:bc:62:
38:e9:ad:90:02:6a:9e:26:25:74:48:27:6b:7e:1d:
f6:36:09:20:97:54:9b:4b:e1:0f:a2:18:f3:a2:e1:
57:fa:8d:7f:0f:0e:e2:75:bd:1f:c9:91:6e:9d:e0:
50:73:6d:70:a8:d1:15:23:24:4c:5b:c3:b3:06:3e:
69:77:63:c0:72:a9:ea:5e:13:e0:9e:1b:3d:06:48:
46:ae:dd:43:05:6d:4b:dd:ba:a5:53:cc:7a:be:a9:
87:f1:a3:9b:90:15:22:5d:66:33:f8:96:36:5e:d5:
31:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:73:18:C2:FB:51:94:B7:69:94:F4:DB:BF:06:5F:5D:22:0C:9C:7B
X509v3 Authority Key Identifier:
keyid:05:BC:DE:31:9A:3D:CA:2C:F6:74:4D:28:81:CA:91:B8:3D:B9:BD:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbzeMZo9yiz2dE0ogcqRuD25veo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/ed28d5-78d3-45e2-a7d3-6867c4ae3161/1/i3MYwvtRlLdplPTbvwZfXSIMnHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/ed28d5-78d3-45e2-a7d3-6867c4ae3161/1/BbzeMZo9yiz2dE0ogcqRuD25veo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.150.124.0/22
Signature Algorithm: sha256WithRSAEncryption
29:02:d6:0e:70:36:24:16:70:ed:9f:eb:f9:65:2f:be:97:8f:
93:8e:f5:ff:e7:6e:b9:0c:fa:de:1d:1b:8c:51:b2:bf:31:d4:
e9:b6:40:fd:2b:5d:b6:c7:26:03:ed:d4:9e:e8:54:fb:58:78:
49:4f:fd:6f:58:c9:fb:88:ad:09:7b:de:fa:67:95:59:0b:21:
e4:49:45:33:4b:81:f2:85:3b:da:6f:f1:0b:d3:ba:33:73:82:
ae:61:4e:43:c3:00:f8:95:c5:bf:67:50:0d:d4:6e:96:7d:1d:
f5:28:4f:57:a6:46:93:27:d1:ad:71:63:4a:a7:f9:ba:ed:5a:
57:c6:36:c2:f9:46:34:40:64:8f:67:29:ec:dd:08:c5:c0:e0:
9b:cd:79:d8:5f:56:fa:da:0d:25:eb:0c:a9:2d:3d:b5:ad:29:
b0:a9:9a:9d:53:0c:24:a2:3d:68:14:b4:7f:c9:d4:87:95:73:
cb:39:ca:89:7a:99:d5:6e:fc:43:cf:4e:d1:43:33:fe:cb:22:
bd:29:e2:9a:8c:26:4e:ae:14:be:dd:8c:5c:a8:97:ef:fd:8f:
50:1a:1b:07:7b:b1:67:92:39:22:11:fb:d5:cf:60:0b:02:84:
fe:27:a1:95:18:1c:fd:1b:1d:d7:38:70:2a:f7:64:de:de:df:
0d:4c:24:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:38 2025 by rpki-client