Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/94632e-99d3-4c21-b67d-d6b730266e76/1/U_nC2TErC1HG7Sy4OkDG1XGp0Io.roa
File: U_nC2TErC1HG7Sy4OkDG1XGp0Io.roa (raw, json)
Hash identifier: THsNcOOcoJPUDOWlayCIe2ny1cn2yjT0/5pjEeuEh6k=
Subject key identifier: 53:F9:C2:D9:31:2B:0B:51:C6:ED:2C:B8:3A:40:C6:D5:71:A9:D0:8A
Certificate issuer: /CN=7c9126732c2f0193bc3de4e8d3abc15f4baed62d
Certificate serial: 018C629CDE20593EB69069CEAC6F5D8430C4
Authority key identifier: 7C:91:26:73:2C:2F:01:93:BC:3D:E4:E8:D3:AB:C1:5F:4B:AE:D6:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fJEmcywvAZO8PeTo06vBX0uu1i0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/94632e-99d3-4c21-b67d-d6b730266e76/1/U_nC2TErC1HG7Sy4OkDG1XGp0Io.roa
Signing time: Wed 13 Dec 2023 09:58:16 +0000
ROA not before: Wed 13 Dec 2023 09:58:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 5.252.8.0/23 maxlen: 23
5.252.8.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:62:9c:de:20:59:3e:b6:90:69:ce:ac:6f:5d:84:30:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c9126732c2f0193bc3de4e8d3abc15f4baed62d
Validity
Not Before: Dec 13 09:58:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53f9c2d9312b0b51c6ed2cb83a40c6d571a9d08a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:38:96:28:8b:52:d0:06:bd:fc:59:8e:cc:19:
df:23:0e:00:8e:06:7e:10:1a:f3:89:88:94:67:11:
da:09:28:5d:2f:ce:3e:bc:ae:92:ab:0d:81:ad:c0:
c6:2a:7a:1e:00:e3:22:83:53:a4:d5:3c:76:ee:ed:
bf:49:d0:55:99:f8:cd:9a:14:c0:dd:7c:e2:7b:34:
30:41:79:b5:45:92:f0:47:94:de:64:43:6d:61:77:
2b:6c:e0:57:4d:f6:ef:1a:61:d4:fd:e6:81:86:13:
bc:29:79:59:54:75:d2:99:4f:b1:99:51:43:4b:14:
66:34:be:aa:0f:72:05:7d:c1:a2:a7:f6:d1:17:59:
36:84:ec:27:07:3c:7f:69:39:65:38:53:2b:cb:62:
75:bf:5a:26:97:44:d9:6c:6f:7b:c4:af:b5:e9:09:
d2:c0:7d:6d:1a:26:09:21:08:88:5e:8c:11:4f:1e:
36:e8:10:9b:0b:18:41:65:6a:84:91:2f:bd:13:c8:
0f:18:11:85:62:c8:2a:e3:29:6c:4a:4f:cb:3c:92:
d6:05:ce:13:bb:dd:68:22:1b:76:2c:95:1c:f4:25:
4a:f8:6f:76:34:96:11:fa:5f:98:69:cc:ab:c7:5e:
cd:e5:7c:cf:8d:6a:bd:74:d1:8d:e0:74:5b:18:c7:
83:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:F9:C2:D9:31:2B:0B:51:C6:ED:2C:B8:3A:40:C6:D5:71:A9:D0:8A
X509v3 Authority Key Identifier:
keyid:7C:91:26:73:2C:2F:01:93:BC:3D:E4:E8:D3:AB:C1:5F:4B:AE:D6:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fJEmcywvAZO8PeTo06vBX0uu1i0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/94632e-99d3-4c21-b67d-d6b730266e76/1/U_nC2TErC1HG7Sy4OkDG1XGp0Io.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/94632e-99d3-4c21-b67d-d6b730266e76/1/fJEmcywvAZO8PeTo06vBX0uu1i0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.8.0/22
Signature Algorithm: sha256WithRSAEncryption
31:39:98:f3:4d:e4:a1:05:bb:b5:73:56:95:75:98:31:42:9e:
8b:67:41:88:d1:85:bd:5a:b8:97:de:f9:58:be:2a:65:d5:39:
f8:6c:7c:43:25:23:7b:28:5c:83:ec:83:7f:f9:59:ab:c0:c1:
fd:b8:c9:86:96:1d:0e:59:a9:a9:8e:a8:e6:be:44:ac:0f:cd:
8d:35:41:62:f1:7f:b3:fc:b2:dc:8b:15:02:04:2f:65:13:18:
37:e7:07:e2:e1:a0:73:72:17:ce:12:64:e4:b6:77:e7:44:1e:
e8:51:4f:e1:e6:a1:72:f8:73:a3:81:61:c2:80:c9:6f:a5:fc:
7b:f5:4a:e6:18:30:84:43:b2:2d:d5:e0:27:77:3d:e5:cf:36:
0f:61:cd:3d:3f:4d:14:18:a2:07:22:7b:cd:e2:92:bc:89:a5:
be:26:26:17:34:79:b8:38:64:6d:3f:d1:4c:37:f3:25:57:5b:
63:46:80:be:fa:65:d5:42:56:5d:eb:05:83:a8:6e:56:af:83:
e0:b0:c6:90:14:95:28:c9:19:ff:dd:7c:0d:f2:f8:6d:00:c6:
af:8c:4f:db:5c:82:d0:14:fb:f4:1e:e2:c4:f9:47:d3:bc:79:
d7:8e:df:12:bb:0f:bd:ba:46:a3:9e:20:30:60:d6:be:3a:3d:
f5:48:9a:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:48 2024 by rpki-client on console-ams.rpki-client.org