Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/5-dn4SjeefAwGLrfSI_SFuiTgHY.roa
File: 5-dn4SjeefAwGLrfSI_SFuiTgHY.roa (raw, json)
Hash identifier: rkFC0eBRH5MVMbYwOyF0kXA91f3tnBa1LdenyA6UKjo=
Subject key identifier: E7:E7:67:E1:28:DE:79:F0:30:18:BA:DF:48:8F:D2:16:E8:93:80:76
Certificate issuer: /CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Certificate serial: 01910DAC0B9FA5B6B7082956646EE9689620
Authority key identifier: C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/5-dn4SjeefAwGLrfSI_SFuiTgHY.roa
Signing time: Thu 01 Aug 2024 11:21:04 +0000
ROA not before: Thu 01 Aug 2024 11:21:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214570
IP address blocks: 185.254.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 03 Aug 2024 12:48:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:0d:ac:0b:9f:a5:b6:b7:08:29:56:64:6e:e9:68:96:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Validity
Not Before: Aug 1 11:21:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7e767e128de79f03018badf488fd216e8938076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:86:db:fe:7b:55:1b:32:79:27:93:70:af:a9:
95:64:58:58:ba:df:8a:e2:48:a9:41:49:1c:63:4a:
48:b9:a7:65:0e:5b:7e:a4:ef:55:d1:8a:6c:78:38:
27:ee:ce:a9:ec:3b:cf:f6:8a:e4:eb:01:a1:e1:6f:
c5:80:e1:1d:ad:57:2d:ad:0b:9b:65:11:c7:9e:8b:
21:4e:1a:b2:37:14:68:e9:60:99:5f:6e:07:9c:bc:
e7:03:43:c3:f9:aa:1f:46:73:44:e7:91:6f:b5:16:
63:58:ff:9c:15:6f:57:69:22:48:da:0c:99:a8:92:
66:25:f6:93:97:2d:71:a8:95:98:98:a0:5d:8e:6e:
de:5a:e4:3a:6f:0c:ac:15:f2:21:3c:6e:4f:00:5e:
6e:ce:4e:69:90:e4:65:7e:5e:29:80:67:72:a5:b3:
a0:d5:8e:6f:7c:7a:81:9f:1e:96:fa:73:03:e6:06:
5c:6c:82:de:8c:a9:e6:36:e6:7f:57:8c:0c:9a:2c:
22:03:b4:2c:e2:91:42:09:82:6b:e1:ce:df:e0:62:
60:28:3c:83:44:b6:65:31:99:28:73:90:5d:03:cb:
4a:e4:e6:b8:44:58:42:1e:e2:52:a2:44:03:fa:81:
0a:72:b1:88:eb:cb:7e:48:33:98:26:ae:e8:0d:2f:
3d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:E7:67:E1:28:DE:79:F0:30:18:BA:DF:48:8F:D2:16:E8:93:80:76
X509v3 Authority Key Identifier:
keyid:C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/5-dn4SjeefAwGLrfSI_SFuiTgHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.165.0/24
Signature Algorithm: sha256WithRSAEncryption
32:68:13:7c:66:76:06:fc:b8:4b:83:83:a8:e3:43:f7:18:02:
b8:e7:1a:84:87:22:dc:31:cc:85:c9:b1:d3:fc:47:72:1e:c6:
10:60:2a:80:bb:7b:9b:5f:f7:9d:c5:2e:f9:fc:f6:57:4a:c6:
16:f2:d4:0a:8a:ab:a2:1e:ae:86:0e:c5:55:14:40:94:77:4e:
5d:ea:e5:f6:b9:65:d6:a7:df:d2:a3:e6:aa:76:5b:d3:dc:c9:
c2:2f:59:19:3f:82:ab:41:53:d1:05:3c:87:94:4e:6e:3e:7d:
32:2d:ea:6f:85:7e:21:8b:77:6a:31:8d:7a:bf:d9:19:2e:40:
49:15:4e:98:f0:72:73:de:5d:6c:93:33:84:ef:35:ed:6a:1b:
e6:0e:7d:37:93:33:6c:20:73:8d:a4:0c:7a:7d:4a:cc:22:be:
b1:97:c9:91:ba:5c:ac:31:e2:14:b9:ab:d1:a7:0d:eb:6b:64:
85:0d:c5:9f:26:5c:25:0c:31:1a:8e:85:81:98:3d:81:e9:b0:
e5:6a:5f:2b:5b:fd:ce:20:3c:cb:0d:51:66:ca:30:3f:3b:53:
57:3d:58:49:b1:d1:48:77:dd:48:e9:2d:cf:a9:22:45:70:00:
1c:f0:80:bf:64:4f:0f:89:61:a9:e0:c4:45:3f:28:d9:62:7a:
2b:57:1a:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 3 15:18:46 2024 by rpki-client on console-ams.rpki-client.org