Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/9b893e-7b0c-41aa-a951-90c3afc7c947/1/5_cJ4zMvu_aq4i0E6KwhIMPN1rg.roa
File: 5_cJ4zMvu_aq4i0E6KwhIMPN1rg.roa (raw, json)
Hash identifier: brnS0ldvufOtJeXfn2J91L2h0HnInSgq0v+4b42Fxpg=
Subject key identifier: E7:F7:09:E3:33:2F:BB:F6:AA:E2:2D:04:E8:AC:21:20:C3:CD:D6:B8
Certificate issuer: /CN=5ed99d49c4b0e46b2786842731e153485c8ac48b
Certificate serial: 018570305302BE52212048C7D9CC2F89E3AD
Authority key identifier: 5E:D9:9D:49:C4:B0:E4:6B:27:86:84:27:31:E1:53:48:5C:8A:C4:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XtmdScSw5GsnhoQnMeFTSFyKxIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/9b893e-7b0c-41aa-a951-90c3afc7c947/1/5_cJ4zMvu_aq4i0E6KwhIMPN1rg.roa
Signing time: Mon 02 Jan 2023 01:54:53 +0000
ROA not before: Mon 02 Jan 2023 01:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1836
IP address blocks: 194.150.160.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:53:02:be:52:21:20:48:c7:d9:cc:2f:89:e3:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ed99d49c4b0e46b2786842731e153485c8ac48b
Validity
Not Before: Jan 2 01:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7f709e3332fbbf6aae22d04e8ac2120c3cdd6b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:52:5d:23:10:5a:ee:bc:71:5e:db:da:89:ac:
6d:28:0a:99:dc:f8:f0:aa:d7:c5:7f:8b:a5:46:5e:
fa:a5:d6:f4:f0:99:f2:65:16:ba:8f:a0:d8:a1:e7:
f0:90:1f:f3:31:45:3f:8d:75:12:f3:89:0c:ed:1c:
73:1c:d3:70:48:7f:d5:39:a0:46:7e:04:a5:3a:9c:
ce:b0:34:93:4a:7d:0e:46:45:70:33:fa:ee:e2:db:
f0:69:7b:83:24:1e:55:de:c9:9a:f2:85:03:6b:79:
0e:25:f8:f7:17:92:8f:74:b9:44:52:50:17:e4:80:
bf:20:53:18:5d:52:1d:fc:66:5e:91:e9:d6:15:8a:
cf:a5:b8:ba:3f:17:78:99:47:49:19:36:99:db:00:
da:b1:f9:00:91:54:f8:13:6f:6d:69:28:60:06:5f:
ac:fc:3e:aa:27:2c:61:d7:69:c3:6b:82:db:d7:52:
b4:34:c7:00:9e:74:1e:e2:7e:f5:cb:27:3f:15:c6:
cd:25:9b:ac:10:0e:96:c0:47:ab:d0:61:14:dd:cd:
01:32:9a:0d:7e:0c:55:e5:11:81:db:2d:dc:4c:ed:
f1:be:9f:ad:62:8d:d0:34:14:f9:b5:b0:f7:e5:1e:
25:d5:f3:c9:8a:89:98:47:8b:35:cd:76:46:2c:85:
45:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:F7:09:E3:33:2F:BB:F6:AA:E2:2D:04:E8:AC:21:20:C3:CD:D6:B8
X509v3 Authority Key Identifier:
keyid:5E:D9:9D:49:C4:B0:E4:6B:27:86:84:27:31:E1:53:48:5C:8A:C4:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XtmdScSw5GsnhoQnMeFTSFyKxIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/9b893e-7b0c-41aa-a951-90c3afc7c947/1/5_cJ4zMvu_aq4i0E6KwhIMPN1rg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/9b893e-7b0c-41aa-a951-90c3afc7c947/1/XtmdScSw5GsnhoQnMeFTSFyKxIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.160.0/23
Signature Algorithm: sha256WithRSAEncryption
54:84:d7:85:dd:69:f1:7b:a4:f8:3c:2c:82:34:42:ab:f0:41:
d6:52:d0:4e:e9:ec:86:ee:9d:a5:47:29:ca:ae:ff:2a:56:4f:
55:90:96:46:91:dc:79:d8:11:3f:60:2f:4c:86:e8:cc:f5:dd:
20:60:ca:da:a7:7d:cc:9d:b4:ee:10:cd:0a:a2:c8:86:0c:d5:
5e:93:bd:ac:d5:b1:66:3a:d1:dd:4e:75:b8:d1:40:91:6c:4c:
39:42:43:8c:e9:8f:be:88:e2:17:0f:b8:07:1f:25:8b:5a:22:
de:cc:f7:bf:67:ae:9a:1d:26:e9:86:ab:92:63:b0:36:cb:b4:
03:72:55:17:9d:65:89:1f:d8:0a:0e:60:3a:42:d0:1b:61:e5:
33:b7:cb:71:bf:5a:c7:41:6f:e1:65:f8:a6:9d:ea:5c:a5:94:
5e:19:94:9d:15:41:b3:60:f3:56:03:14:7b:38:ff:cf:c2:1b:
b4:b3:86:49:b4:64:13:d9:8a:8c:69:09:f4:1e:4f:76:9b:43:
bb:85:72:42:e8:40:cf:a7:78:e9:bf:e4:98:8c:c4:01:a4:d2:
0e:bd:99:54:0e:05:68:86:42:b0:b8:f6:c3:8d:85:cb:5b:bb:
92:94:34:59:eb:a6:55:2e:9a:ea:f0:5a:f9:93:94:5f:c5:75:
51:75:eb:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:56 2024 by rpki-client on console-fra.rpki-client.org