Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/dnW8FVpctb_dgrLgRRHALQ3_esM.roa
File: dnW8FVpctb_dgrLgRRHALQ3_esM.roa (raw, json)
Hash identifier: 0F2lvpknTXGp+fIw3A3VgwWUctHS10DF+xp1wSkFp4k=
Subject key identifier: 76:75:BC:15:5A:5C:B5:BF:DD:82:B2:E0:45:11:C0:2D:0D:FF:7A:C3
Certificate issuer: /CN=3938a81a44127741d949a355a47f3cb599389a78
Certificate serial: 0185706758A5450F834A0143AB939086E49A
Authority key identifier: 39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/dnW8FVpctb_dgrLgRRHALQ3_esM.roa
Signing time: Mon 02 Jan 2023 02:54:59 +0000
ROA not before: Mon 02 Jan 2023 02:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211285
IP address blocks: 5.183.24.0/23 maxlen: 24
5.183.26.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:58:a5:45:0f:83:4a:01:43:ab:93:90:86:e4:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3938a81a44127741d949a355a47f3cb599389a78
Validity
Not Before: Jan 2 02:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7675bc155a5cb5bfdd82b2e04511c02d0dff7ac3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:50:4f:54:dd:df:83:fd:cd:58:70:65:53:3b:
1b:f5:8a:b6:85:8d:d2:36:09:32:0e:85:f5:bf:17:
83:75:e8:6a:34:d0:e4:bd:e2:d9:60:33:07:10:54:
17:42:20:33:9c:8c:ec:ba:f1:94:e4:35:63:c2:af:
83:9f:03:43:45:fb:e9:87:9a:be:6d:14:d9:01:bb:
a8:0c:8f:58:4a:fb:8f:d1:86:fe:07:5b:4e:61:e8:
87:b1:96:3c:eb:ac:ad:7d:24:d5:58:b3:6e:f6:0d:
3c:e2:06:9d:99:d0:ea:a8:46:52:ba:3f:63:77:93:
60:5b:81:2a:e5:54:3f:d4:68:99:df:51:bf:26:e1:
cf:90:87:79:29:d8:af:78:fe:82:34:86:2e:8d:08:
58:ca:2d:d1:2a:dd:f0:ea:dd:67:7c:9b:7b:58:ca:
15:02:dc:87:3e:31:35:5c:f0:77:eb:84:82:0b:5c:
d0:00:89:76:db:3a:b6:62:cf:43:5b:25:2c:cf:61:
f3:d6:ea:88:dd:3d:d7:52:56:3c:ec:22:5d:4b:e5:
ad:dd:20:85:dd:de:36:06:4b:b1:c8:a8:bf:b5:49:
8d:94:45:23:dd:e7:d2:42:10:ce:ff:33:55:14:b2:
0d:71:2d:2d:14:0f:f3:8f:d0:aa:49:e7:63:40:f7:
e0:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:75:BC:15:5A:5C:B5:BF:DD:82:B2:E0:45:11:C0:2D:0D:FF:7A:C3
X509v3 Authority Key Identifier:
keyid:39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/dnW8FVpctb_dgrLgRRHALQ3_esM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.24.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:69:3a:6e:e7:29:22:67:f3:85:2c:c1:68:03:ce:83:ac:29:
9f:c1:17:16:25:f9:62:ce:66:d1:29:85:0e:76:18:61:20:ff:
56:66:69:c3:28:7f:2b:40:46:00:8d:4d:3b:d0:4c:84:5b:7a:
66:96:4a:4e:83:35:f5:d0:fb:f8:e3:10:77:eb:43:df:4f:77:
44:c3:6f:65:e7:f8:bd:10:a2:69:5a:8a:6e:ba:81:c1:69:98:
b2:30:ff:15:53:a4:dc:70:11:4b:cd:6e:b8:e2:41:68:8c:61:
23:5f:dd:81:b3:77:a5:ba:00:37:33:62:c3:6f:50:9d:3e:72:
7e:1a:8f:37:6e:6f:f4:77:9b:9d:73:b9:1f:6f:2e:0d:4d:a4:
b6:af:62:1b:67:4f:4c:26:7d:60:b1:94:c6:72:b8:5d:4d:23:
42:ad:d6:7c:ab:b9:1e:04:a0:46:68:38:34:2c:55:79:0c:db:
1f:df:78:bc:91:a0:55:38:a2:ef:74:e4:2f:b2:dc:7f:7a:af:
cd:3d:af:5c:44:56:45:96:68:00:f5:6e:bc:ac:de:f5:a0:9c:
eb:6e:0b:d0:70:00:5d:a2:58:57:8b:f7:54:d7:f5:d0:32:a6:
2e:bd:95:de:fc:3a:93:f5:79:fc:fe:67:60:e8:23:c3:8d:97:
19:5e:4a:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:56 2024 by rpki-client on console-fra.rpki-client.org