Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/3iR5SPZsrrjRac1SXY-nlt9LKuw.roa
File: 3iR5SPZsrrjRac1SXY-nlt9LKuw.roa (raw, json)
Hash identifier: rW9Oznd7U8XXEBrFJPchXrlj1hrVoz8liG4unBhjs00=
Subject key identifier: DE:24:79:48:F6:6C:AE:B8:D1:69:CD:52:5D:8F:A7:96:DF:4B:2A:EC
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018E95D89E26D8552E70926CABBFACC989BF
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/3iR5SPZsrrjRac1SXY-nlt9LKuw.roa
Signing time: Sun 31 Mar 2024 18:49:45 +0000
ROA not before: Sun 31 Mar 2024 18:49:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 5.134.84.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Apr 2024 13:11:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:95:d8:9e:26:d8:55:2e:70:92:6c:ab:bf:ac:c9:89:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Mar 31 18:49:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=de247948f66caeb8d169cd525d8fa796df4b2aec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:85:14:36:6c:be:8b:2a:94:bc:2f:9b:3b:99:
cc:26:4f:06:1a:dd:93:77:49:f8:10:94:cd:9e:0b:
04:d8:1f:e4:8c:3a:b3:12:be:bd:e1:b5:4d:66:e0:
f9:45:02:73:f6:be:ee:1e:3c:15:d1:13:63:3b:94:
a3:10:fd:fa:06:fa:c1:2f:2a:72:39:2e:ca:18:fb:
58:c9:50:10:a5:17:13:fe:fc:df:8b:f2:4e:23:3d:
0e:ee:8e:cc:e9:20:b4:44:4c:34:2e:57:3c:44:3f:
84:0b:e3:b2:6f:f9:9a:00:79:95:a2:79:e4:90:f6:
aa:81:8f:de:ec:9e:bb:0c:65:0c:87:3f:ec:8c:02:
8a:82:46:a9:f8:ad:b0:57:05:49:82:ae:d8:0e:c4:
98:9d:b5:c2:08:a0:3f:16:f8:89:17:bc:ec:a4:69:
34:05:c6:f3:9a:2c:f6:ec:3e:64:79:fc:01:47:5d:
88:1d:56:38:43:58:1d:40:5a:44:11:ca:ff:90:dd:
ae:ac:71:94:01:d1:16:c8:4a:97:d5:6a:f8:2d:e2:
3d:2e:97:d5:ae:8e:87:5d:99:ef:91:f1:70:79:61:
0c:49:5c:f2:aa:5e:40:05:c4:f7:d5:17:0f:f9:14:
67:78:7b:08:7e:b9:c7:b0:4b:de:bb:4a:4e:d7:df:
09:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:24:79:48:F6:6C:AE:B8:D1:69:CD:52:5D:8F:A7:96:DF:4B:2A:EC
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/3iR5SPZsrrjRac1SXY-nlt9LKuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.84.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:17:d7:e8:80:bc:1d:16:0f:50:c4:7d:72:61:07:ae:90:9a:
22:3c:df:6e:a0:71:8c:3b:d1:61:e5:af:33:79:a9:c6:c5:4b:
d8:e6:42:c1:02:ce:09:9b:f8:94:2d:cb:d0:a8:94:7c:8d:ca:
4f:a8:d3:6e:28:4e:25:f4:61:62:a2:c2:d8:a8:fa:4f:6a:80:
0f:e9:54:60:b2:cb:71:8b:47:50:d4:39:b6:00:39:b4:a9:6f:
25:dc:08:10:66:96:47:59:72:78:08:f7:37:f4:a9:69:5f:8d:
63:f4:11:e9:83:19:7b:f8:32:e7:3f:2e:e4:d5:23:51:34:11:
35:19:50:96:f7:b7:d9:75:48:82:26:2c:1f:a8:94:d9:ca:16:
4c:7e:21:a7:40:81:35:50:d5:1d:62:4f:e5:1a:72:c1:ce:b0:
44:75:1e:22:94:09:8c:91:ed:5d:b5:d0:5a:f2:3f:f7:cb:04:
76:92:1a:23:de:99:82:f5:eb:7b:85:45:e0:4d:81:b9:fc:93:
26:ba:83:99:4c:78:9b:82:3c:ff:7e:d7:af:ea:fd:43:8d:03:
7c:12:bc:c0:8d:ed:b3:af:08:43:b8:ae:c8:17:5a:88:0f:f8:
60:3f:7e:e2:dd:04:f5:78:b9:52:8d:77:d0:f8:43:c1:ea:29:
e2:bc:91:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 5 15:50:51 2024 by rpki-client on console-ams.rpki-client.org