Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/SZ_8t7P8OaEIgkI1ho5eRC1gXx4.roa
File: SZ_8t7P8OaEIgkI1ho5eRC1gXx4.roa (raw, json)
Hash identifier: RT/J3UJns0SmbnglAqMmCBjEwiLFSJD9XUg+ikiEXjM=
Subject key identifier: 49:9F:FC:B7:B3:FC:39:A1:08:82:42:35:86:8E:5E:44:2D:60:5F:1E
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 01912243A9C1229361A7482E10612F97DB24
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/SZ_8t7P8OaEIgkI1ho5eRC1gXx4.roa
Signing time: Mon 05 Aug 2024 11:19:05 +0000
ROA not before: Mon 05 Aug 2024 11:19:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201631
IP address blocks: 5.42.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:48:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:22:43:a9:c1:22:93:61:a7:48:2e:10:61:2f:97:db:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 5 11:19:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=499ffcb7b3fc39a108824235868e5e442d605f1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:cd:b4:86:c7:49:03:a6:85:31:7f:3f:bb:7a:
a2:2f:72:41:90:dc:38:e6:dc:a0:14:7e:f1:10:b5:
af:4f:7e:0c:f6:31:20:9a:c3:03:21:b9:a1:f7:67:
ac:dd:d6:43:bd:a9:e6:cc:71:98:e6:55:83:b2:7c:
ab:ee:38:ec:0e:5a:5b:87:e1:83:e7:e2:b0:50:28:
75:26:98:cd:c6:49:57:12:c8:d9:46:bf:a2:db:46:
37:0b:c4:af:48:c9:22:39:a5:4c:29:35:05:01:65:
7b:58:ee:a2:07:30:5a:83:20:d0:33:97:c1:f5:66:
b4:dc:86:e1:73:66:d6:54:bf:38:55:f7:6b:b9:7b:
c2:28:a3:e7:a6:e5:0f:ec:5d:45:8b:aa:03:70:b3:
7e:db:92:c2:0e:21:69:f5:e5:d1:13:51:50:bd:1c:
73:85:5b:38:a3:cf:0f:2f:3e:97:7b:bb:63:59:78:
b3:c7:33:1b:38:fa:f8:a5:5f:be:28:71:16:7a:ec:
ea:2b:89:65:b3:7d:7b:6c:13:1a:d8:a0:74:5e:a0:
60:7c:25:75:9f:59:27:c0:04:b9:12:38:7e:a5:07:
e5:67:03:cd:cb:c2:4c:90:9a:eb:4d:f0:45:8d:86:
ef:51:f5:c4:2e:77:dd:99:d1:92:2d:b6:ed:72:9f:
26:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:9F:FC:B7:B3:FC:39:A1:08:82:42:35:86:8E:5E:44:2D:60:5F:1E
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/SZ_8t7P8OaEIgkI1ho5eRC1gXx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.219.0/24
Signature Algorithm: sha256WithRSAEncryption
86:da:01:99:88:a6:9a:18:41:dd:43:4b:c7:26:df:8b:22:6b:
ed:f4:03:69:bd:c0:44:a5:5e:2e:37:a9:ce:03:97:4d:a5:04:
81:5d:db:04:30:e7:ea:aa:22:15:45:cc:67:8a:d4:c5:09:83:
55:6b:e2:a5:aa:4c:e9:06:b7:6f:ed:cb:fa:bf:31:14:cb:1c:
2e:c4:cb:ed:aa:8d:c0:ff:01:e6:45:d5:7e:e8:06:10:04:8d:
e9:a4:12:07:61:12:fd:f2:cc:06:ca:6d:1c:fd:44:8b:89:ea:
3c:7f:8b:7a:0e:0e:3a:12:26:c2:09:a2:69:59:c3:e6:ec:b5:
1a:85:57:ca:83:bd:9e:1c:20:04:b1:24:d1:ce:6a:9d:65:49:
fc:59:3f:49:9e:6d:5c:43:2c:9f:40:e9:7f:a1:c2:5f:bc:5c:
24:da:31:d7:3d:00:6d:1e:45:0e:ec:d2:92:f5:a3:d9:71:8c:
f8:a7:39:bb:24:07:3d:82:68:96:d1:61:5b:b0:d9:b8:64:80:
48:92:88:9c:61:27:a0:e8:f0:c1:62:5a:ad:5f:f6:41:3e:27:
e9:11:10:83:4d:9f:70:e5:be:ff:59:b3:a0:10:36:38:42:6f:
a8:3b:cc:bb:48:da:cf:1d:c1:59:57:39:04:b1:e8:f3:0b:06:
13:c7:58:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:41 2025 by rpki-client