Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/yhnuPHb4IA20e2ogk3sGYxUcTNg.roa
File: yhnuPHb4IA20e2ogk3sGYxUcTNg.roa (raw, json)
Hash identifier: z/0nCEYeGrG0Qp9wWVv5W8nQGfE93XJMQNq0Hcqq7dg=
Subject key identifier: CA:19:EE:3C:76:F8:20:0D:B4:7B:6A:20:93:7B:06:63:15:1C:4C:D8
Certificate issuer: /CN=96062f5ddb18f96d78492b3538d7745cc4714a26
Certificate serial: 018A6B2EA7C40061FB7731299CAABC032490
Authority key identifier: 96:06:2F:5D:DB:18:F9:6D:78:49:2B:35:38:D7:74:5C:C4:71:4A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgYvXdsY-W14SSs1ONd0XMRxSiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/yhnuPHb4IA20e2ogk3sGYxUcTNg.roa
Signing time: Wed 06 Sep 2023 15:48:54 +0000
ROA not before: Wed 06 Sep 2023 15:48:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210352
IP address blocks: 5.42.64.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6b:2e:a7:c4:00:61:fb:77:31:29:9c:aa:bc:03:24:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96062f5ddb18f96d78492b3538d7745cc4714a26
Validity
Not Before: Sep 6 15:48:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca19ee3c76f8200db47b6a20937b0663151c4cd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:fc:fe:66:89:0e:2e:6d:44:7c:df:92:e3:49:
ab:34:06:2d:06:52:ae:3d:cb:95:1f:39:3c:29:7e:
a2:b1:a3:9b:34:2f:11:36:29:e8:72:ac:0d:f0:cf:
0b:05:b1:f2:ae:72:73:c3:d7:50:83:91:b8:e5:ab:
2d:6d:10:43:c4:33:29:bc:51:f3:6d:00:18:7d:8c:
f9:6f:a3:c9:41:10:d2:5c:8a:37:73:a1:54:7e:6f:
58:65:d4:6a:53:92:c9:e7:aa:cb:6d:ca:78:b9:50:
3e:45:f2:f3:03:55:55:82:f1:bf:ef:9c:00:83:c4:
ab:06:02:3b:77:42:94:53:df:83:f5:a8:b0:c8:e4:
95:62:2a:d1:aa:b8:cf:da:a5:47:9c:af:13:7a:9d:
be:74:b0:e0:15:38:fd:0e:2b:8b:84:96:cd:6f:c2:
80:0b:b0:66:7e:1c:14:8b:78:43:d7:2b:1b:9f:ce:
de:6e:94:78:ea:84:88:36:ad:5e:af:8a:d1:db:d2:
06:1d:e9:ce:5a:b3:54:08:49:94:1e:ad:20:df:0e:
52:a2:b4:45:50:53:62:b6:34:0e:ec:44:33:b1:f8:
0b:05:3d:38:1f:d7:e1:ef:07:9f:cf:71:f8:63:05:
05:e6:bc:66:fd:45:19:6d:f7:9b:93:41:a1:01:0a:
0b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:19:EE:3C:76:F8:20:0D:B4:7B:6A:20:93:7B:06:63:15:1C:4C:D8
X509v3 Authority Key Identifier:
keyid:96:06:2F:5D:DB:18:F9:6D:78:49:2B:35:38:D7:74:5C:C4:71:4A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgYvXdsY-W14SSs1ONd0XMRxSiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/yhnuPHb4IA20e2ogk3sGYxUcTNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/lgYvXdsY-W14SSs1ONd0XMRxSiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.64.0/22
Signature Algorithm: sha256WithRSAEncryption
18:16:4d:da:bf:6d:cb:02:e7:c2:d2:db:2f:4b:b5:34:17:cd:
4f:01:5c:17:7a:98:96:6b:ab:61:ae:f3:a8:8d:49:cf:23:89:
32:0b:80:22:3b:57:70:f6:2b:75:7d:c6:33:d9:67:1d:cf:64:
f8:a5:6c:de:bf:00:d5:a0:c3:05:f2:85:eb:29:fd:0f:61:1d:
95:5d:e8:ef:4e:63:9d:7b:ea:8f:20:f0:5d:24:dc:87:78:99:
55:56:7c:85:8f:c4:d1:bd:59:7b:b6:d6:50:cf:57:31:b1:92:
ee:8c:b4:90:22:77:15:ba:06:a1:22:a6:2e:57:e5:b2:d6:3e:
61:92:8f:63:e2:d7:e7:6d:64:96:47:9c:ec:25:21:ed:bb:f3:
e9:a0:d0:c7:39:1b:36:08:2e:f1:a8:ac:94:e8:8c:a8:55:5c:
11:e7:cb:80:4d:9b:79:cd:40:74:0c:8d:4d:b0:87:c5:5b:e2:
5d:e3:18:9d:74:0e:c3:d5:33:a4:dd:c8:7c:f5:b2:58:d7:52:
d7:8e:37:81:4a:d0:3e:3d:44:1e:c1:a0:4f:e0:9c:d3:31:6e:
c1:88:3c:03:aa:99:28:12:50:2a:53:30:32:f0:fe:7a:7f:ba:
d2:90:54:2e:3d:70:f5:ae:ad:73:02:19:d6:e0:8b:20:2f:d5:
e8:61:76:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:22 2024 by rpki-client on console-ams.rpki-client.org