Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/0e7ed3-48cb-4afe-8d15-dffe17f3db54/1/CW9fUlNCRj3Kip6gRJWYZ1YpN7I.roa
File: CW9fUlNCRj3Kip6gRJWYZ1YpN7I.roa (raw, json)
Hash identifier: Kp6CtTsfrLxStZqRkCym4w7p2K/VWL7P/p3Nsvo/plg=
Subject key identifier: 09:6F:5F:52:53:42:46:3D:CA:8A:9E:A0:44:95:98:67:56:29:37:B2
Certificate issuer: /CN=9812e491aaa655b6324dbcc0cff00a8d63191076
Certificate serial: 01894F3E53323D20BE2C5729C3B52E8B8AC2
Authority key identifier: 98:12:E4:91:AA:A6:55:B6:32:4D:BC:C0:CF:F0:0A:8D:63:19:10:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mBLkkaqmVbYyTbzAz_AKjWMZEHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/0e7ed3-48cb-4afe-8d15-dffe17f3db54/1/CW9fUlNCRj3Kip6gRJWYZ1YpN7I.roa
Signing time: Thu 13 Jul 2023 12:33:51 +0000
ROA not before: Thu 13 Jul 2023 12:33:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 37002
IP address blocks: 5.183.212.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4f:3e:53:32:3d:20:be:2c:57:29:c3:b5:2e:8b:8a:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9812e491aaa655b6324dbcc0cff00a8d63191076
Validity
Not Before: Jul 13 12:33:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=096f5f525342463dca8a9ea044959867562937b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:3f:fe:d7:e5:52:aa:34:8f:95:1b:00:71:67:
be:51:01:bb:f0:c2:9e:3a:25:9e:c1:dd:fe:bc:08:
f8:47:0f:bb:df:3f:41:6e:c6:96:86:2a:e7:98:d0:
e5:f7:d6:2e:e0:42:e7:6c:1a:d5:a9:c1:3a:c8:07:
ed:57:4a:71:aa:99:a3:b9:6a:fc:cb:28:7e:e9:34:
cc:d9:70:c9:a8:82:bd:1e:1b:c9:5a:e3:1b:c8:65:
ab:59:d4:87:6d:79:b1:11:a5:f0:5b:6a:6e:4f:70:
ec:9a:d7:2b:85:a0:4f:81:94:65:ba:32:ec:dc:5c:
1a:57:01:e4:1e:91:0d:d0:50:13:8e:7b:0c:03:b4:
e4:5d:5e:02:7e:e7:dc:3e:52:b8:a9:6f:9e:ae:37:
2b:00:1b:69:7d:4f:c9:66:71:b1:0a:dd:28:19:d6:
a4:b7:80:75:61:0f:8f:59:3f:6c:72:dd:41:6b:c5:
d3:9d:ed:8b:64:28:03:67:23:82:da:cf:8a:c5:a3:
0a:4b:28:a3:c7:a3:80:4e:33:a6:b0:3c:2a:a0:66:
65:f3:9f:17:75:09:d0:8d:50:4e:1f:5e:53:ff:5f:
fe:b3:fc:2a:cf:be:6c:3b:bb:54:a3:80:55:5b:0a:
b1:ec:30:da:3d:47:bb:f5:ca:2a:e2:64:74:18:ab:
20:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:6F:5F:52:53:42:46:3D:CA:8A:9E:A0:44:95:98:67:56:29:37:B2
X509v3 Authority Key Identifier:
keyid:98:12:E4:91:AA:A6:55:B6:32:4D:BC:C0:CF:F0:0A:8D:63:19:10:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mBLkkaqmVbYyTbzAz_AKjWMZEHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/0e7ed3-48cb-4afe-8d15-dffe17f3db54/1/CW9fUlNCRj3Kip6gRJWYZ1YpN7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/0e7ed3-48cb-4afe-8d15-dffe17f3db54/1/mBLkkaqmVbYyTbzAz_AKjWMZEHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.212.0/22
Signature Algorithm: sha256WithRSAEncryption
14:1e:83:5a:8e:b8:2c:88:26:8b:0f:54:93:12:b9:c7:cc:5b:
87:f0:2f:92:6f:06:9d:31:9e:9b:66:4e:23:77:b1:a4:ae:3f:
2b:97:ad:0c:46:43:42:93:a8:e0:f6:fe:dd:69:e0:e0:c0:3f:
4a:a9:d8:21:54:0e:fc:ac:29:3a:99:57:da:13:52:4d:55:d8:
4f:6e:11:bc:d2:b0:bb:96:cf:a9:bc:67:3b:48:29:9a:92:71:
5a:7f:70:89:c7:d1:b5:cf:1e:a8:62:6c:1a:19:10:66:d2:ea:
d8:f2:8b:e9:ff:75:02:3c:bf:1c:e2:a8:46:dc:9f:f9:69:da:
38:e5:1c:d5:b1:6b:ef:9a:22:d3:5a:00:bb:87:4d:51:a3:7a:
dd:ad:0d:be:87:6b:8e:94:8b:e2:65:90:86:9c:d1:99:7b:22:
8c:fd:4a:90:84:6e:5a:81:ba:ed:d3:c1:90:a7:72:cd:3c:23:
d2:a7:d3:72:f8:cd:b9:4a:20:b1:24:32:1f:43:25:64:57:14:
fb:d9:5f:68:11:7b:a8:3a:3f:f4:98:5e:5d:b4:31:63:99:82:
7d:43:94:9f:46:f6:2a:4c:af:81:28:2b:e2:73:75:6e:8b:1d:
a1:64:ff:46:cb:e9:5d:43:f0:3c:4f:be:86:d7:b4:68:0c:6f:
e8:dc:02:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:25 2024 by rpki-client on console-ams.rpki-client.org