Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/rhkCRwnjaO0PG4EPTt6R1o-ITrs.roa
File: rhkCRwnjaO0PG4EPTt6R1o-ITrs.roa (raw, json)
Hash identifier: hoDvfhmIkeTq4YqBhDk5jiEJ2EFGnk1Q6LbxDUzEq5M=
Subject key identifier: AE:19:02:47:09:E3:68:ED:0F:1B:81:0F:4E:DE:91:D6:8F:88:4E:BB
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEEB49B7DA1C45020BC4DC290139BD5
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/rhkCRwnjaO0PG4EPTt6R1o-ITrs.roa
Signing time: Sun 01 Jan 2023 06:04:43 +0000
ROA not before: Sun 01 Jan 2023 06:04:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29007
IP address blocks: 5.226.128.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:b4:9b:7d:a1:c4:50:20:bc:4d:c2:90:13:9b:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae19024709e368ed0f1b810f4ede91d68f884ebb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:de:8c:d6:57:17:53:49:e4:38:93:a4:1a:f9:
3e:98:82:4b:0a:f0:fa:12:1b:2f:d6:78:bf:30:ed:
1a:cd:92:3e:81:82:07:23:3c:38:49:3f:5f:ad:5a:
e6:d3:65:c2:8c:9f:da:9f:20:6f:34:88:da:00:b0:
96:2a:fd:d9:52:1f:d6:63:95:78:b5:5d:8e:29:cd:
7e:a5:25:5e:29:d7:56:e2:8e:ce:9c:b5:8d:30:1b:
db:32:93:6c:8e:de:36:b0:a3:f1:81:32:ee:c3:38:
1d:da:f4:8e:e4:ed:da:1c:f4:a1:ad:f6:2b:bf:97:
64:3a:d0:d1:6a:d8:4b:2e:78:a0:4a:35:5f:5e:0f:
78:1e:8e:66:b8:d4:b9:c5:98:ad:a0:24:a9:a9:87:
c8:77:5c:2a:a5:83:f1:51:ea:7f:a3:58:a3:e1:cf:
1a:b5:4c:b6:e3:f3:b9:86:72:15:09:1e:33:9f:86:
f5:50:af:15:fd:76:a8:4c:eb:6d:9a:9a:0d:77:e3:
6e:82:c9:fc:36:1c:f9:4a:91:d7:4c:00:54:c3:bd:
08:97:74:96:8a:9b:81:cf:08:05:d0:10:41:a0:67:
2e:ba:5c:f2:77:50:ca:8a:0e:e4:9e:bc:2a:f7:9c:
a9:92:3f:1c:dd:3f:f4:45:66:05:72:b3:52:c5:d8:
06:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:19:02:47:09:E3:68:ED:0F:1B:81:0F:4E:DE:91:D6:8F:88:4E:BB
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/rhkCRwnjaO0PG4EPTt6R1o-ITrs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.128.0/22
Signature Algorithm: sha256WithRSAEncryption
05:c7:31:8c:88:da:69:1a:3b:97:93:ef:a9:e2:28:ee:3f:7b:
7a:5a:d2:ad:7f:5d:5a:ee:6f:97:98:82:24:c4:47:93:fa:cd:
f0:76:2b:b1:29:21:56:03:79:98:ab:24:45:6b:d2:85:f2:47:
9d:78:92:d0:43:df:16:fb:c1:8e:24:a4:70:84:9f:ee:c0:b0:
ab:68:f4:9b:40:0c:a9:0c:83:ee:20:f3:ae:d6:04:69:88:ed:
52:f7:21:fa:2c:99:c7:1b:9f:a8:f7:5b:2e:68:19:06:f6:55:
34:bb:4f:d0:74:29:d9:04:e0:52:69:f8:60:2e:a9:cc:b9:55:
e6:45:d7:c5:34:69:00:6f:ba:eb:4d:7f:19:cc:07:fb:c0:de:
05:c7:f5:ed:39:6b:36:ca:8e:8a:13:08:2f:60:de:f8:15:a6:
30:c5:03:e4:2d:03:f3:2a:19:5b:e9:24:11:a2:5e:b2:f0:a5:
20:02:04:f9:25:85:59:25:d6:05:bb:4e:18:92:49:9e:8c:26:
57:0d:81:fd:63:b4:85:1e:ea:cd:5c:57:87:e6:fc:75:8e:39:
8d:56:2b:0a:3b:53:8a:85:bd:6c:b3:e7:e5:f4:8f:b6:6a:48:
eb:92:22:59:e6:27:10:1e:d3:2a:6a:0b:81:7a:0d:aa:e9:bd:
cb:7b:1e:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org