Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/1MvFW-_3iZ1JOGQ6Wmp_i2YMZEw.roa
File: 1MvFW-_3iZ1JOGQ6Wmp_i2YMZEw.roa (raw, json)
Hash identifier: /b9Yg0koXnw+Fpa5GPxyfbMQOIwOcz+dwem4tjNxt1U=
Subject key identifier: D4:CB:C5:5B:EF:F7:89:9D:49:38:64:3A:5A:6A:7F:8B:66:0C:64:4C
Certificate issuer: /CN=96062f5ddb18f96d78492b3538d7745cc4714a26
Certificate serial: 0188FE3F897E313A77C26673E799695ED67C
Authority key identifier: 96:06:2F:5D:DB:18:F9:6D:78:49:2B:35:38:D7:74:5C:C4:71:4A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgYvXdsY-W14SSs1ONd0XMRxSiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/1MvFW-_3iZ1JOGQ6Wmp_i2YMZEw.roa
Signing time: Tue 27 Jun 2023 19:05:56 +0000
ROA not before: Tue 27 Jun 2023 19:05:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201826
IP address blocks: 5.42.88.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fe:3f:89:7e:31:3a:77:c2:66:73:e7:99:69:5e:d6:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96062f5ddb18f96d78492b3538d7745cc4714a26
Validity
Not Before: Jun 27 19:05:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d4cbc55beff7899d4938643a5a6a7f8b660c644c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0a:c8:d7:bd:93:6d:27:6a:a8:8c:b6:cc:33:
8b:00:3d:03:04:0f:b0:a1:70:94:63:e6:b9:98:01:
c2:ba:3d:9f:44:1c:f9:32:0f:3f:fc:63:7b:79:24:
34:6f:4c:12:87:0e:53:ff:c6:fd:28:6b:91:7c:ce:
12:da:3f:32:a9:09:48:5a:d5:c6:8b:bb:6b:59:51:
46:3d:7a:73:94:10:f1:5b:b6:05:71:e8:2e:24:65:
0b:ab:62:ac:bf:5b:34:83:48:cf:f6:96:2b:eb:a9:
9b:9d:fa:8d:75:ae:72:33:75:1b:fe:0a:1f:53:82:
d8:2c:02:78:2f:11:03:a6:c0:57:2f:88:00:ee:4d:
43:88:3f:95:b1:c0:59:43:69:18:82:c1:25:96:ed:
f8:1b:b4:f8:cf:10:ba:03:e7:3c:11:fb:5a:65:71:
eb:2d:48:ce:1c:51:41:e6:95:a0:2e:67:2e:88:a8:
41:a8:3b:58:c7:44:41:7b:3c:83:f0:47:9f:6f:eb:
9a:cf:43:5c:1d:f6:25:12:9b:c3:4d:4b:23:7c:46:
d0:a0:89:d9:c5:5f:82:2a:88:1a:f6:30:9c:43:76:
9f:d0:9a:27:44:2f:d8:22:9e:51:79:7d:c4:ef:09:
4d:e8:90:0d:ef:e5:64:df:0a:92:5b:c5:e7:4c:77:
5e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:CB:C5:5B:EF:F7:89:9D:49:38:64:3A:5A:6A:7F:8B:66:0C:64:4C
X509v3 Authority Key Identifier:
keyid:96:06:2F:5D:DB:18:F9:6D:78:49:2B:35:38:D7:74:5C:C4:71:4A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgYvXdsY-W14SSs1ONd0XMRxSiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/1MvFW-_3iZ1JOGQ6Wmp_i2YMZEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/lgYvXdsY-W14SSs1ONd0XMRxSiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.88.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:d3:8f:ae:ee:13:c6:25:d2:9d:ab:89:50:db:a1:a4:2b:1f:
4b:3b:2d:dc:0d:03:83:b4:0d:86:5e:87:9f:ce:0b:c7:07:e9:
4d:d1:0d:10:db:dd:6a:9a:dc:ad:e7:9e:6f:af:38:cb:23:15:
15:3d:55:5a:c7:d7:1c:cb:ce:e7:ab:b5:c8:ca:02:e6:61:3c:
ee:a8:2f:69:9e:7b:57:a9:6a:4c:7d:11:47:49:19:6d:03:8f:
f2:b2:14:fb:b0:a7:d5:c5:c9:c4:09:59:33:27:db:9f:6b:45:
5e:79:04:ec:f0:23:72:47:a7:81:56:e8:dc:77:09:1d:fd:02:
b2:8b:52:72:5f:69:ea:fb:67:b3:89:de:ae:be:6d:12:0b:7f:
6d:91:4d:0d:42:a1:11:c3:7f:75:52:9e:f7:09:a0:47:a2:1e:
9e:23:78:0f:02:ab:62:d7:16:72:d0:c6:f4:df:f8:41:95:ab:
1f:42:ae:40:82:d2:b8:5b:c5:84:00:90:92:91:f3:6f:90:8a:
a4:b1:ac:62:1f:da:ed:b7:a0:dc:8a:e2:67:ef:81:b7:82:1b:
32:64:81:d8:32:d1:0e:9c:3f:f0:b5:50:65:b4:39:64:7d:cd:
94:f0:dd:8b:ed:d7:b8:aa:2e:42:6b:17:32:6c:fd:15:dd:a4:
d8:d8:de:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:05 2024 by rpki-client on console-fra.rpki-client.org