Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/8d1167-0c4d-488f-9a83-c0177dfda847/1/j16j7WNUYDnBHM8sDaDMRKbSxr8.roa
File: j16j7WNUYDnBHM8sDaDMRKbSxr8.roa (raw, json)
Hash identifier: DAskydYOCNa1CK/bpArOD4zL53toegP3X5fbrkCjd8U=
Subject key identifier: 8F:5E:A3:ED:63:54:60:39:C1:1C:CF:2C:0D:A0:CC:44:A6:D2:C6:BF
Certificate issuer: /CN=374f6f3e3cb973bac8a43f6c0b806b3d11c9adc3
Certificate serial: 018F83FB2245BDFCD090FC492CCB5CD4100F
Authority key identifier: 37:4F:6F:3E:3C:B9:73:BA:C8:A4:3F:6C:0B:80:6B:3D:11:C9:AD:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N09vPjy5c7rIpD9sC4BrPRHJrcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/8d1167-0c4d-488f-9a83-c0177dfda847/1/j16j7WNUYDnBHM8sDaDMRKbSxr8.roa
Signing time: Fri 17 May 2024 00:37:04 +0000
ROA not before: Fri 17 May 2024 00:37:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215671
IP address blocks: 5.22.200.0/24 maxlen: 24
5.22.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 May 2024 06:45:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:83:fb:22:45:bd:fc:d0:90:fc:49:2c:cb:5c:d4:10:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=374f6f3e3cb973bac8a43f6c0b806b3d11c9adc3
Validity
Not Before: May 17 00:37:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8f5ea3ed63546039c11ccf2c0da0cc44a6d2c6bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:dc:87:6b:de:89:b9:13:e6:8a:29:31:ef:f0:
d5:c7:a2:52:30:70:f5:3d:13:43:88:75:e4:64:8c:
3d:4a:1e:c8:85:be:d6:54:6c:95:c4:98:08:e7:cd:
d3:10:c4:4b:61:a0:b6:a5:c2:e8:71:87:fc:ca:d3:
d9:27:ed:66:b5:f4:a7:f0:a0:51:a8:a5:c9:93:11:
30:d2:f5:57:01:67:b3:80:98:a7:71:8c:c9:98:be:
ec:a5:9c:e5:de:69:dc:89:37:f5:2a:eb:f0:92:7e:
d7:62:37:1e:82:60:24:db:06:10:e2:7a:41:29:ba:
3b:4f:52:a6:71:d4:40:20:2c:bc:dc:3c:16:e1:43:
8a:3d:84:ad:25:76:ec:5d:97:6c:f4:22:d6:d6:0b:
e7:70:07:90:e8:fc:e6:c4:a9:53:2f:5a:b8:3a:fb:
62:a2:36:8f:fc:38:68:2f:ac:5b:f6:d8:3b:11:29:
5c:f0:30:2e:22:a9:41:f1:83:60:3f:d5:ed:38:95:
8e:b6:75:f0:0d:ff:da:15:48:a6:08:6c:aa:3e:ff:
56:98:33:83:ff:24:b2:b5:c1:02:40:73:b3:a9:37:
1e:44:2e:cf:2c:8d:ba:83:5d:78:d9:34:b4:f3:89:
1f:7d:3c:21:b7:fe:03:38:61:6d:bb:aa:98:e3:90:
ec:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:5E:A3:ED:63:54:60:39:C1:1C:CF:2C:0D:A0:CC:44:A6:D2:C6:BF
X509v3 Authority Key Identifier:
keyid:37:4F:6F:3E:3C:B9:73:BA:C8:A4:3F:6C:0B:80:6B:3D:11:C9:AD:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N09vPjy5c7rIpD9sC4BrPRHJrcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/8d1167-0c4d-488f-9a83-c0177dfda847/1/j16j7WNUYDnBHM8sDaDMRKbSxr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/8d1167-0c4d-488f-9a83-c0177dfda847/1/N09vPjy5c7rIpD9sC4BrPRHJrcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.22.200.0/23
Signature Algorithm: sha256WithRSAEncryption
01:74:d4:6f:b3:e2:79:4a:b7:7e:05:fb:bf:05:aa:89:90:ed:
3f:4c:9c:3c:73:9a:8f:22:80:a7:30:0d:a2:6c:b9:55:95:22:
9a:75:aa:92:b8:17:f1:ce:6a:0b:43:f0:83:da:b2:3f:af:5b:
6e:e0:a6:09:35:c3:49:a3:b5:e2:b8:f7:97:ad:dc:08:35:e0:
1b:2c:92:05:bb:45:a2:58:65:a3:f1:b6:30:46:99:68:8a:90:
da:7b:07:a2:09:8f:f9:f7:0d:4e:54:bf:7e:78:5b:d9:0c:a1:
6d:88:5f:23:e0:25:1a:94:b1:f8:65:5a:3a:c8:f0:e4:5f:c9:
f9:53:5e:3f:c2:ef:eb:c0:4a:3a:f0:b3:c2:cb:1b:75:87:3a:
db:b4:9a:d3:d5:32:f7:3b:4b:5a:76:5e:0f:b6:0b:02:bb:3f:
f5:12:60:a3:e1:04:f7:c2:20:27:04:d9:d3:f8:5e:cb:22:52:
4b:34:1e:35:47:d3:27:4f:ac:df:1d:57:09:42:96:56:22:4b:
e5:f9:77:5f:9f:99:30:7b:45:7c:e8:d4:65:e8:d9:db:50:02:
42:79:9d:13:45:b3:08:14:e6:a0:2f:76:31:64:cc:4f:25:b7:
e6:1e:69:5a:d3:92:c4:9b:59:25:6c:a0:da:01:3a:be:e4:ec:
05:d5:91:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:25 2024 by rpki-client on console-ams.rpki-client.org