Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/gvNRMrC50aoFqW9wZ82Fsv8AlpU.roa
File: gvNRMrC50aoFqW9wZ82Fsv8AlpU.roa (raw, json)
Hash identifier: t5Rc6NMFI6u75PlM5XbpHxkaz3AtWm+hu+4pdXltOJM=
Subject key identifier: 82:F3:51:32:B0:B9:D1:AA:05:A9:6F:70:67:CD:85:B2:FF:00:96:95
Certificate issuer: /CN=5d86c47da6d9079347b60f04ed5c5557fe983eb8
Certificate serial: 0193B5FD163487E3027BF2E26F7E149D918D
Authority key identifier: 5D:86:C4:7D:A6:D9:07:93:47:B6:0F:04:ED:5C:55:57:FE:98:3E:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYbEfabZB5NHtg8E7VxVV_6YPrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/gvNRMrC50aoFqW9wZ82Fsv8AlpU.roa
Signing time: Wed 11 Dec 2024 13:51:22 +0000
ROA not before: Wed 11 Dec 2024 13:51:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5511
IP address blocks: 5.253.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:48:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b5:fd:16:34:87:e3:02:7b:f2:e2:6f:7e:14:9d:91:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d86c47da6d9079347b60f04ed5c5557fe983eb8
Validity
Not Before: Dec 11 13:51:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82f35132b0b9d1aa05a96f7067cd85b2ff009695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:92:16:0c:74:dd:e1:ef:de:31:bd:07:7e:d2:
67:77:af:a5:61:44:2a:40:65:d7:68:af:54:4d:f3:
b0:3f:82:5b:2f:ea:55:0d:7b:eb:c4:fa:f1:bf:27:
91:ff:f3:ed:78:ee:f9:02:e2:9b:90:eb:41:93:15:
5e:9c:30:ab:16:18:98:53:9d:cd:70:4e:c4:d4:7d:
43:a8:96:3e:d7:5e:51:c4:0c:c3:56:82:42:93:be:
bf:70:91:99:92:6d:32:de:62:21:7b:b4:88:57:61:
60:e4:7c:35:d7:e9:42:10:88:f6:2f:40:eb:e1:dd:
c7:09:0b:62:16:09:22:d0:f4:ac:3d:40:46:4e:8e:
a8:5f:2a:4a:0d:d1:ad:21:9c:5f:6c:00:74:59:44:
02:e8:0b:fe:0c:f5:7f:bb:3c:90:25:dd:f3:77:92:
75:49:08:a9:53:83:31:79:88:3c:6d:68:7c:c0:a7:
11:4e:2c:aa:6e:10:4d:7b:4a:11:c6:0a:7b:4c:9a:
f6:c3:73:b8:fc:ae:c0:c4:ed:6c:51:f8:59:c0:69:
52:72:74:fd:c2:fa:30:2e:2a:f4:ac:e1:4a:76:b1:
08:0f:6b:b8:9e:eb:ae:ae:7c:b3:53:cc:07:81:3b:
d5:d0:37:7d:76:d0:05:94:fb:1e:44:ce:66:35:17:
e3:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:F3:51:32:B0:B9:D1:AA:05:A9:6F:70:67:CD:85:B2:FF:00:96:95
X509v3 Authority Key Identifier:
keyid:5D:86:C4:7D:A6:D9:07:93:47:B6:0F:04:ED:5C:55:57:FE:98:3E:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYbEfabZB5NHtg8E7VxVV_6YPrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/gvNRMrC50aoFqW9wZ82Fsv8AlpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.190.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:3e:d1:b8:36:ad:05:8f:dd:d5:86:90:1a:23:8a:0b:10:ee:
c9:c3:f9:e0:b1:9a:3e:23:a8:cb:e0:89:a9:4c:a5:97:57:53:
91:99:60:9a:86:53:b5:53:ff:6e:95:15:c7:de:67:ec:e5:a1:
c1:54:2c:8a:dd:15:59:ca:6b:3e:13:7f:e1:d7:56:5d:b4:d1:
60:50:d3:da:50:be:38:43:58:54:b2:ee:ef:0f:58:c8:95:94:
14:02:8a:41:6c:74:e5:02:bb:76:16:44:29:d9:19:fd:55:8a:
ae:7c:c9:50:80:cd:ae:e0:a1:e3:25:6e:19:04:1e:8b:5e:10:
e4:02:57:e9:2d:a9:c3:87:21:4b:df:f4:f0:da:bb:40:a6:bf:
2c:7e:95:a6:60:a2:cf:aa:33:ec:19:f6:27:3d:5f:70:74:15:
77:ad:76:1e:ee:15:ea:77:4f:94:7b:fd:66:e2:01:10:9a:74:
6f:6d:7c:e6:11:a0:1b:96:a4:c5:18:6b:85:f0:9e:85:61:30:
66:41:38:33:14:d9:f8:1b:87:de:ed:72:56:37:2a:4c:52:3e:
12:cd:80:14:22:53:86:0c:d1:e0:9a:e5:7b:8c:59:63:ff:62:
a4:07:39:26:4e:c9:ef:41:b8:0a:4c:37:fd:fb:bb:32:3f:91:
c2:e5:6b:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 04:18:39 2025 by rpki-client