Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/8d1167-0c4d-488f-9a83-c0177dfda847/1/u5x60IW7dqAGs6c_QgIi9vZvzsQ.roa
File: u5x60IW7dqAGs6c_QgIi9vZvzsQ.roa (raw, json)
Hash identifier: fI1lsmzcVuVKn5r3rZMXuYJJ1kD+rRttaFApbcUYom4=
Subject key identifier: BB:9C:7A:D0:85:BB:76:A0:06:B3:A7:3F:42:02:22:F6:F6:6F:CE:C4
Certificate issuer: /CN=374f6f3e3cb973bac8a43f6c0b806b3d11c9adc3
Certificate serial: 018D7076A6CE05F942DB2F329ABB37C98889
Authority key identifier: 37:4F:6F:3E:3C:B9:73:BA:C8:A4:3F:6C:0B:80:6B:3D:11:C9:AD:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N09vPjy5c7rIpD9sC4BrPRHJrcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/8d1167-0c4d-488f-9a83-c0177dfda847/1/u5x60IW7dqAGs6c_QgIi9vZvzsQ.roa
Signing time: Sat 03 Feb 2024 19:34:00 +0000
ROA not before: Sat 03 Feb 2024 19:34:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210392
IP address blocks: 5.22.200.0/24 maxlen: 24
5.22.201.0/24 maxlen: 24
5.22.202.0/24 maxlen: 24
5.22.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Feb 2024 01:20:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:70:76:a6:ce:05:f9:42:db:2f:32:9a:bb:37:c9:88:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=374f6f3e3cb973bac8a43f6c0b806b3d11c9adc3
Validity
Not Before: Feb 3 19:34:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb9c7ad085bb76a006b3a73f420222f6f66fcec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:42:9f:74:cf:da:5e:37:7f:87:3e:10:c7:62:
81:6c:13:be:06:77:ff:a2:34:52:77:2c:38:14:2e:
2c:e0:d6:d1:74:be:a2:c7:09:d5:30:38:23:ef:e2:
81:a0:2a:d7:a6:d8:bc:81:b0:10:ba:8b:bb:9d:56:
78:d5:7d:74:c3:7c:3f:77:69:96:43:01:ac:c1:79:
ab:f1:fe:89:8b:10:a7:8e:cf:94:7e:56:e2:3c:b0:
b7:9e:85:6c:0b:a6:0a:54:62:5e:ee:4d:36:f3:c4:
d5:7a:66:7f:0f:28:17:43:4a:93:82:91:4e:09:b5:
69:25:37:da:27:e2:eb:fd:80:2c:35:d8:db:15:90:
a2:01:eb:a7:cc:fb:27:c9:33:40:f2:05:38:ae:d6:
b9:4c:8f:67:96:36:2f:19:59:fc:cd:7e:2f:88:0b:
51:c8:c8:02:ad:3e:43:03:b2:c2:19:3d:09:79:9c:
d2:40:ee:cf:9c:be:1d:6a:7c:8a:ca:5e:02:ea:5c:
3a:5e:af:a3:08:e1:73:c2:96:47:c7:f7:c9:00:2d:
a8:4a:11:74:63:f3:9e:2c:3b:af:61:f0:fe:37:44:
1c:1e:ca:c5:50:fd:03:03:50:09:fa:ef:7f:07:52:
33:b3:64:24:d3:eb:37:ea:f3:33:3e:60:a9:21:69:
24:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:9C:7A:D0:85:BB:76:A0:06:B3:A7:3F:42:02:22:F6:F6:6F:CE:C4
X509v3 Authority Key Identifier:
keyid:37:4F:6F:3E:3C:B9:73:BA:C8:A4:3F:6C:0B:80:6B:3D:11:C9:AD:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N09vPjy5c7rIpD9sC4BrPRHJrcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/8d1167-0c4d-488f-9a83-c0177dfda847/1/u5x60IW7dqAGs6c_QgIi9vZvzsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/8d1167-0c4d-488f-9a83-c0177dfda847/1/N09vPjy5c7rIpD9sC4BrPRHJrcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.22.200.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:ff:ed:4e:bc:20:72:7b:85:88:0c:c1:ee:9c:03:fb:fd:b0:
97:16:b4:5a:47:9e:56:44:b2:80:49:2e:c8:87:0c:80:2d:f5:
af:50:87:b5:b5:26:73:64:ba:69:bb:6e:15:ec:58:0e:a0:1b:
30:26:42:83:52:c3:61:af:57:38:20:c6:66:48:f6:15:f5:e1:
6e:df:63:1f:31:b1:d0:c4:2b:39:ab:9d:e2:75:8b:7d:11:8c:
1a:2f:b6:53:06:e5:97:9b:f6:4b:0c:b2:04:1b:c3:a7:a4:7f:
37:e8:2d:56:2f:73:75:a7:fc:e0:b3:b6:92:a2:7c:71:82:1d:
08:80:78:f7:0a:eb:29:a4:bf:16:e4:4f:92:30:62:69:5d:2a:
87:f4:b5:82:03:cf:24:30:c4:e1:71:ac:4d:15:7c:da:93:23:
78:f6:f9:05:ae:18:50:19:6c:59:17:33:c9:76:6f:89:47:92:
da:9d:ba:a4:7c:de:29:f8:9a:ff:2f:cf:c8:50:ea:5e:5b:54:
f7:55:ca:e4:e7:47:32:2d:ec:67:3e:96:73:8e:87:d8:35:b9:
bf:3a:ca:bc:05:5e:df:c9:cf:dd:c5:68:56:a1:fc:ea:6d:d7:
a6:0c:e3:45:6d:02:5e:bb:78:76:15:38:47:6c:f2:80:ea:2d:
45:86:d7:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:25 2024 by rpki-client on console-ams.rpki-client.org