Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/94632e-99d3-4c21-b67d-d6b730266e76/1/x111S1jZtLr51PwtigpCiiq0cts.roa
File: x111S1jZtLr51PwtigpCiiq0cts.roa (raw, json)
Hash identifier: qoOm9n8oan32LDwQxQqsYgqRemUqPAWR4KHzPZGTLr4=
Subject key identifier: C7:5D:75:4B:58:D9:B4:BA:F9:D4:FC:2D:8A:0A:42:8A:2A:B4:72:DB
Certificate issuer: /CN=7c9126732c2f0193bc3de4e8d3abc15f4baed62d
Certificate serial: 018CC425642C73396E9E01972399FAC12E50
Authority key identifier: 7C:91:26:73:2C:2F:01:93:BC:3D:E4:E8:D3:AB:C1:5F:4B:AE:D6:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fJEmcywvAZO8PeTo06vBX0uu1i0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/94632e-99d3-4c21-b67d-d6b730266e76/1/x111S1jZtLr51PwtigpCiiq0cts.roa
Signing time: Mon 01 Jan 2024 08:30:33 +0000
ROA not before: Mon 01 Jan 2024 08:30:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215927
IP address blocks: 5.252.11.0/24 maxlen: 24
5.252.10.0/23 maxlen: 23
5.252.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Mar 2024 10:40:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:64:2c:73:39:6e:9e:01:97:23:99:fa:c1:2e:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c9126732c2f0193bc3de4e8d3abc15f4baed62d
Validity
Not Before: Jan 1 08:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c75d754b58d9b4baf9d4fc2d8a0a428a2ab472db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:6c:a6:22:af:08:df:e6:b3:e9:a8:dc:cd:c9:
89:4b:9a:46:c4:e5:4b:c7:45:13:00:79:46:77:17:
20:40:e0:fa:71:74:c1:44:b1:22:b6:0b:6f:e9:41:
2a:6b:b5:af:ac:3c:37:a8:0a:96:7e:27:14:8a:78:
86:76:f2:49:d3:f9:7b:1c:d5:61:ac:29:5b:5e:74:
e6:b8:26:a0:72:93:a9:e4:ac:e8:20:eb:68:cd:21:
8b:4e:ab:2a:ad:46:fa:d4:3b:82:03:9b:f2:5b:39:
e3:9d:40:8e:81:67:c7:db:01:a2:ab:48:9b:78:9b:
df:ea:9c:b8:de:0d:dc:98:db:89:c1:2e:a6:01:0a:
49:d2:21:1e:bb:6c:2c:97:69:d9:a5:9b:fb:d5:a2:
ab:d2:f1:e7:50:74:e5:19:86:9c:ef:00:44:25:e9:
5c:d5:b0:2c:db:a7:f1:a1:84:ac:2c:a3:72:16:06:
1a:4f:49:61:52:25:0a:f0:5f:6e:05:1d:8d:d9:8b:
06:e8:0c:a9:ee:7e:a2:fa:d5:b4:c8:f5:5a:2c:89:
6d:13:5b:99:10:b6:61:25:99:22:8a:de:f8:ad:31:
67:03:3c:42:13:4e:45:f2:52:0b:83:da:1e:9c:b2:
04:be:df:54:f0:9b:97:81:0b:c1:e5:05:c8:68:52:
5e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:5D:75:4B:58:D9:B4:BA:F9:D4:FC:2D:8A:0A:42:8A:2A:B4:72:DB
X509v3 Authority Key Identifier:
keyid:7C:91:26:73:2C:2F:01:93:BC:3D:E4:E8:D3:AB:C1:5F:4B:AE:D6:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fJEmcywvAZO8PeTo06vBX0uu1i0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/94632e-99d3-4c21-b67d-d6b730266e76/1/x111S1jZtLr51PwtigpCiiq0cts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/94632e-99d3-4c21-b67d-d6b730266e76/1/fJEmcywvAZO8PeTo06vBX0uu1i0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.10.0/23
Signature Algorithm: sha256WithRSAEncryption
07:c7:2f:73:f4:60:00:15:82:72:81:ab:94:eb:d5:a9:01:b4:
8f:e4:2d:1d:81:36:78:5c:8d:1f:99:c2:b7:c2:f6:c1:b5:8c:
29:2a:c4:bb:a6:10:b0:2e:2b:2b:71:5c:24:71:6e:c9:80:98:
bc:c2:be:06:6a:c7:fc:6c:a6:ac:e4:47:a0:bf:67:1c:a2:fc:
1b:8b:19:e8:5c:89:07:0c:8e:11:8f:e4:53:13:f7:f5:8f:ce:
ee:82:22:32:04:25:ac:01:9a:ac:af:11:07:69:ea:5c:08:3e:
a2:2c:cb:da:89:86:b2:84:6a:7b:7a:9f:ef:b2:e7:60:c1:18:
1b:ea:8f:94:dc:1f:66:1b:f8:96:7d:7b:eb:b6:bc:4f:a0:f2:
64:21:9f:c3:b5:04:c3:0d:54:5e:e9:9a:93:c8:94:66:54:47:
f5:9a:e4:40:2a:6b:10:64:db:f8:01:3f:da:a0:a8:70:3a:27:
80:a8:81:39:fd:e6:f3:05:67:81:c9:b0:b3:ee:08:80:0e:d9:
ab:ba:5f:0f:b9:b4:34:4d:71:f3:02:27:ef:24:fa:7e:fc:20:
4a:28:84:33:c9:af:84:6c:64:7d:a7:9f:a5:c1:2c:1b:68:31:
3f:b4:b0:c7:a5:94:bc:88:94:ba:3f:ea:db:13:7a:7e:f7:41:
ad:d8:9e:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:28 2025 by rpki-client