Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/5_G147Jb6WpcuEYjqO_nrOa9FOs.roa
File: 5_G147Jb6WpcuEYjqO_nrOa9FOs.roa (raw, json)
Hash identifier: m8ylJbUd3PbKAUpWTQY7Ib276PWYbAjaQsWx+D9FIKE=
Subject key identifier: E7:F1:B5:E3:B2:5B:E9:6A:5C:B8:46:23:A8:EF:E7:AC:E6:BD:14:EB
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018571D7E5EB83726A9452CBB8051A45E873
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/5_G147Jb6WpcuEYjqO_nrOa9FOs.roa
Signing time: Mon 02 Jan 2023 09:37:32 +0000
ROA not before: Mon 02 Jan 2023 09:37:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 188.255.215.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:e5:eb:83:72:6a:94:52:cb:b8:05:1a:45:e8:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jan 2 09:37:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7f1b5e3b25be96a5cb84623a8efe7ace6bd14eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5e:de:be:d7:f4:2a:c5:f3:5b:30:f5:9f:a9:
91:39:d4:1e:24:65:73:f0:99:1d:0f:f5:fb:c6:c9:
1a:5c:cd:5a:75:35:c2:96:3b:98:1f:e6:b3:61:0c:
25:17:8d:1b:37:7f:ae:c3:30:48:06:8c:0a:9f:6a:
3f:06:0a:a3:33:9a:b8:84:34:63:ea:3f:45:4d:d4:
01:a3:eb:a1:2d:df:58:0e:e2:19:83:14:55:e5:47:
8c:76:db:4f:81:5b:f1:87:1a:dc:ac:6b:24:0f:0b:
48:0a:5a:02:02:7e:1e:b4:e2:7f:5a:16:2c:8f:b5:
a3:31:d3:7c:b2:81:1a:62:29:47:69:60:9d:f9:9a:
f3:f4:bd:b6:cc:22:8c:1e:7e:85:bc:b2:3d:c2:f8:
f0:41:00:b6:f4:65:73:c9:e5:61:61:c2:a3:f0:38:
3e:9d:dc:d9:94:99:6c:98:b8:d7:71:fb:fc:c0:b7:
ae:58:eb:e4:72:d2:49:b6:a6:03:8b:f7:0a:76:14:
6d:24:e5:c2:51:43:63:94:7c:88:ed:51:82:4a:91:
5d:1f:0e:99:29:c4:7c:d6:e4:78:d3:19:ed:24:e0:
4a:f6:87:c4:e1:38:a4:b1:54:ce:f7:ef:dc:45:99:
3f:e4:43:00:1f:c8:1a:3f:1e:45:e5:93:ba:dd:99:
a8:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:F1:B5:E3:B2:5B:E9:6A:5C:B8:46:23:A8:EF:E7:AC:E6:BD:14:EB
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/5_G147Jb6WpcuEYjqO_nrOa9FOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.255.215.0/24
Signature Algorithm: sha256WithRSAEncryption
71:bb:b0:33:1a:88:05:f8:15:fd:58:12:eb:ef:5a:72:ab:c8:
6b:56:a2:69:ba:e1:c4:84:b0:e1:2c:3d:22:fd:72:c3:05:bc:
5f:81:44:52:d4:ee:86:c1:b5:f6:66:ca:38:ad:9b:68:6d:6e:
78:58:7f:f3:21:a2:f3:fa:17:e2:99:a4:a2:6e:51:a1:65:38:
a9:4e:e7:67:8c:8e:a4:5a:11:81:0f:4f:e9:88:95:6e:f1:10:
7a:92:f5:dd:4a:99:8a:60:99:64:05:3f:eb:a2:bf:67:05:75:
4c:64:84:ec:fc:91:af:67:8c:cc:76:89:9c:40:77:e5:2b:c1:
a7:94:e1:87:77:8b:d8:a1:31:4a:6a:07:50:de:73:ee:f8:38:
ee:7a:d6:25:47:91:ab:7f:06:6a:33:08:fe:33:f8:21:4f:1f:
2f:90:0a:b6:bb:27:5f:0d:3b:76:16:f4:7a:3b:01:02:dc:58:
3d:40:b4:83:b8:0d:8c:c6:f5:77:f2:3a:b4:23:82:89:61:2b:
47:c8:bf:3d:df:94:75:2f:89:11:f6:29:d0:8e:47:57:a7:0e:
96:94:01:9a:f6:80:81:2b:e5:da:c7:5d:c8:36:c9:28:47:df:
3b:44:8b:c8:46:9d:c4:8e:67:ac:b0:a5:49:58:fd:76:b6:47:
3c:49:9b:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:19 2023 by rpki-client on console-ams.rpki-client.org