Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/5K5evFp9LpLCFC1BfFkybN5UsU0.roa
File: 5K5evFp9LpLCFC1BfFkybN5UsU0.roa (raw, json)
Hash identifier: 9k25nzu0sEcHMgJBdnYQLQTwG74VotGutCePW+y5yrA=
Subject key identifier: E4:AE:5E:BC:5A:7D:2E:92:C2:14:2D:41:7C:59:32:6C:DE:54:B1:4D
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 0189F44E207CDDA4F001AAB32B60AEE9B136
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/5K5evFp9LpLCFC1BfFkybN5UsU0.roa
Signing time: Mon 14 Aug 2023 13:48:28 +0000
ROA not before: Mon 14 Aug 2023 13:48:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206264
IP address blocks: 85.92.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Sep 2023 03:54:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f4:4e:20:7c:dd:a4:f0:01:aa:b3:2b:60:ae:e9:b1:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Aug 14 13:48:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4ae5ebc5a7d2e92c2142d417c59326cde54b14d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d6:95:e1:4d:4d:c8:08:03:de:da:61:51:6c:
a3:99:b1:19:92:d5:2f:d8:37:7b:51:3c:43:80:00:
92:a2:06:45:bf:80:fc:a6:3a:19:d0:4e:91:ac:de:
e8:bf:e9:11:c0:2c:30:30:4d:2b:d1:ad:47:12:c5:
fb:db:ad:49:cf:70:17:2c:81:42:15:a2:6a:b0:68:
27:91:7d:4a:40:1b:28:4b:f4:c4:28:84:51:1f:36:
4c:44:57:2d:07:c0:2b:ea:58:70:f8:c9:1d:52:e6:
bb:b7:d9:a6:4a:1a:88:fc:b0:3a:35:4b:23:0a:85:
97:af:9f:ac:f6:7e:aa:28:92:2b:71:d6:ab:7f:9f:
57:36:20:06:8e:0f:08:7d:00:75:a3:5e:93:37:fb:
f1:01:a8:88:de:63:27:7c:6b:1e:e9:66:e2:9c:b6:
44:a8:0b:30:2b:5e:24:0c:29:cc:da:3a:7e:25:25:
79:7f:1b:cd:e0:0c:65:c3:08:20:3b:28:b7:ac:2d:
d4:ce:04:4c:d2:e6:08:9e:a7:fa:54:90:71:87:66:
db:22:98:13:3d:c3:d7:30:4c:ea:49:7e:be:04:37:
b6:f1:db:2a:5b:7d:88:9e:4c:79:8f:50:21:a3:72:
d3:b5:6d:f9:32:8b:7b:51:23:d2:84:ce:1a:e2:8a:
6f:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:AE:5E:BC:5A:7D:2E:92:C2:14:2D:41:7C:59:32:6C:DE:54:B1:4D
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/5K5evFp9LpLCFC1BfFkybN5UsU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.92.115.0/24
Signature Algorithm: sha256WithRSAEncryption
37:0e:64:45:12:66:cf:bb:d0:36:85:a0:be:51:b4:6e:cb:9c:
08:f7:75:a9:42:8a:98:0c:cd:44:c7:ea:c0:e4:30:b3:37:9f:
bf:b4:24:dc:f5:66:40:86:b9:e9:48:ef:fd:7a:0a:7d:9d:3e:
50:b0:75:83:08:d7:1d:69:b0:35:7b:fe:e2:35:36:cf:4f:a9:
08:2b:34:37:b1:f8:89:37:d1:eb:91:d3:82:b5:97:bb:79:f5:
12:86:41:d2:8e:a0:b4:ce:42:9f:89:c7:48:02:d9:30:b0:d5:
b9:df:2e:55:17:6a:6b:58:80:f3:0e:c5:10:51:9d:49:82:5b:
77:d8:6e:30:5e:80:bf:d5:18:f8:ad:22:f1:b4:df:92:b2:4f:
72:05:d8:ef:67:5c:32:10:ee:b4:76:9f:3a:57:84:0d:c2:33:
6d:6b:dd:82:20:e3:9f:0b:1c:db:68:dc:d6:7e:d9:c8:86:5d:
3d:a2:1f:c2:e3:d7:06:31:af:0b:be:60:4f:3c:1f:e0:21:de:
fa:45:01:c5:2e:fe:a2:99:8a:92:5f:9e:c1:e3:3b:d5:77:ff:
ef:a3:3f:5e:e9:f9:a5:98:0e:3b:97:92:b5:33:fd:d9:2a:8b:
d1:93:24:70:8f:38:db:c8:dc:fa:79:ad:4c:85:3b:2d:85:35:
33:c4:6b:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:50 2024 by rpki-client on console-fra.rpki-client.org