Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/8d1167-0c4d-488f-9a83-c0177dfda847/1/U5SBMrd6cFBNmEkV-Xx0RPjyCl0.roa
File: U5SBMrd6cFBNmEkV-Xx0RPjyCl0.roa (raw, json)
Hash identifier: ze6LUGhonzzRq9043A45Ftuz9YSE65CZLXGjrmcA8Mo=
Subject key identifier: 53:94:81:32:B7:7A:70:50:4D:98:49:15:F9:7C:74:44:F8:F2:0A:5D
Certificate issuer: /CN=374f6f3e3cb973bac8a43f6c0b806b3d11c9adc3
Certificate serial: 01909C5EC40BEADD73B892BDA154FC99801D
Authority key identifier: 37:4F:6F:3E:3C:B9:73:BA:C8:A4:3F:6C:0B:80:6B:3D:11:C9:AD:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N09vPjy5c7rIpD9sC4BrPRHJrcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/8d1167-0c4d-488f-9a83-c0177dfda847/1/U5SBMrd6cFBNmEkV-Xx0RPjyCl0.roa
Signing time: Wed 10 Jul 2024 11:19:34 +0000
ROA not before: Wed 10 Jul 2024 11:19:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216074
IP address blocks: 5.22.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Sep 2024 23:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9c:5e:c4:0b:ea:dd:73:b8:92:bd:a1:54:fc:99:80:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=374f6f3e3cb973bac8a43f6c0b806b3d11c9adc3
Validity
Not Before: Jul 10 11:19:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53948132b77a70504d984915f97c7444f8f20a5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:67:11:26:39:a7:43:55:13:73:d7:1e:97:8b:
61:c1:4c:76:ad:61:88:15:08:8f:a3:a5:9b:2c:81:
09:23:aa:8d:73:87:f4:60:79:92:c6:3f:10:50:c0:
b0:6c:f0:53:93:83:05:d7:56:46:87:fd:97:a7:23:
55:be:56:81:58:10:14:79:fb:3d:79:92:ab:a9:49:
87:fe:4f:1a:82:b2:59:f6:43:52:2b:f5:fd:4a:fb:
f2:d0:e8:a3:0a:1c:8e:0a:3e:b8:e7:e8:bf:3d:e5:
59:b6:f4:6a:05:f5:52:b3:28:6b:b1:3e:aa:cc:cf:
90:1e:ee:31:47:b5:b3:88:01:3c:2a:9c:63:b1:34:
df:4e:36:48:5b:68:6f:6d:74:ea:cd:9c:b8:f3:10:
fa:51:b6:7e:0b:3d:22:dd:02:79:52:c4:59:83:a6:
71:f6:6b:71:7a:b2:18:b0:9b:08:18:5f:89:3f:5c:
bf:13:59:f1:34:a3:51:5e:ff:f7:0c:bf:27:5e:5c:
e4:5e:65:51:5a:f8:2a:c9:33:bd:20:43:48:7d:52:
20:bc:35:3d:02:da:2d:b4:86:01:2e:ce:9a:95:14:
64:f2:00:6f:02:89:fb:c8:34:92:e9:fa:3c:a6:ba:
d0:f9:81:ec:e9:69:c2:ff:1c:f7:bb:30:7b:51:19:
b1:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:94:81:32:B7:7A:70:50:4D:98:49:15:F9:7C:74:44:F8:F2:0A:5D
X509v3 Authority Key Identifier:
keyid:37:4F:6F:3E:3C:B9:73:BA:C8:A4:3F:6C:0B:80:6B:3D:11:C9:AD:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N09vPjy5c7rIpD9sC4BrPRHJrcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/8d1167-0c4d-488f-9a83-c0177dfda847/1/U5SBMrd6cFBNmEkV-Xx0RPjyCl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/8d1167-0c4d-488f-9a83-c0177dfda847/1/N09vPjy5c7rIpD9sC4BrPRHJrcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.22.203.0/24
Signature Algorithm: sha256WithRSAEncryption
59:9f:fc:7e:8b:13:16:de:14:31:47:73:a5:5c:8a:0a:a2:93:
e3:70:31:d0:37:d8:11:4c:97:91:6b:8a:0a:39:2f:c6:c7:a9:
1a:00:3f:23:5b:fb:e8:c4:72:c4:ef:04:89:83:97:eb:69:75:
99:b3:83:9b:69:84:0d:9b:01:e1:53:07:c0:6e:56:ea:a4:cb:
95:44:d8:cc:6f:3a:20:18:87:fa:05:ec:04:33:60:54:27:b2:
56:c8:74:44:b2:f8:af:2b:2c:d0:c9:c0:10:65:63:9e:78:85:
47:e2:25:09:8a:98:22:bd:6c:ac:99:5f:97:f7:6d:b8:95:14:
e1:44:c4:99:f7:26:29:7e:a7:da:2a:4f:de:c5:39:67:f8:11:
48:98:56:0d:bd:2d:f3:db:91:80:16:8c:33:42:00:19:04:48:
d7:a4:88:98:09:32:82:cb:59:5a:a3:d4:13:36:b5:2b:4f:57:
58:bb:7f:9b:87:8b:9b:53:68:c2:a7:32:a5:70:d1:07:35:bf:
de:7e:66:9f:7e:cc:35:4b:6d:75:9e:21:e1:84:b7:f3:fc:fb:
c2:3e:4c:20:1e:04:95:d0:bd:95:51:2c:9a:20:6d:2a:17:93:
e2:f9:96:08:fa:6b:08:45:ca:2e:23:e0:7b:d6:96:6d:a2:b1:
e8:16:06:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 6 01:50:17 2024 by rpki-client on console-ams.rpki-client.org