Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/KtV5vQjNJ72lm2KwE2FLAOrUgMI.roa
File: KtV5vQjNJ72lm2KwE2FLAOrUgMI.roa (raw, json)
Hash identifier: 1SbzGJhCdNEaZEV8caZqnzuxWsVZMah6Lax2tl4KqYA=
Subject key identifier: 2A:D5:79:BD:08:CD:27:BD:A5:9B:62:B0:13:61:4B:00:EA:D4:80:C2
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 0188AF76E605EE11658F604AABDB158A2537
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/KtV5vQjNJ72lm2KwE2FLAOrUgMI.roa
Signing time: Mon 12 Jun 2023 11:56:24 +0000
ROA not before: Mon 12 Jun 2023 11:56:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56466
IP address blocks: 5.200.64.0/19 maxlen: 24
5.200.80.0/20 maxlen: 20
89.235.77.0/24 maxlen: 24
31.24.200.0/21 maxlen: 21
87.247.179.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:af:76:e6:05:ee:11:65:8f:60:4a:ab:db:15:8a:25:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Jun 12 11:56:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ad579bd08cd27bda59b62b013614b00ead480c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2c:62:b2:af:2e:d8:3a:69:82:ca:f4:51:dd:
b9:eb:2e:af:10:a8:8b:00:a9:0c:ff:00:9d:91:82:
ae:e6:b4:cf:a9:a4:94:b6:c7:bb:c7:b9:aa:29:d7:
0d:b2:52:15:9c:cf:96:76:37:a8:24:65:6a:08:18:
9b:6e:0f:59:41:1f:10:3e:80:66:c6:9e:75:7e:02:
df:d9:09:a0:ca:fb:9b:3c:9a:a8:b5:48:5c:ea:53:
92:af:7a:d7:a9:de:53:21:51:1d:28:bf:52:1f:66:
bb:dd:96:3c:41:48:c7:03:56:d7:66:30:c1:20:91:
6b:b5:7d:31:6a:21:20:61:73:b8:58:66:2b:44:83:
b7:e8:66:99:c0:6a:67:dc:39:c9:5e:35:9b:3c:a8:
dc:7f:38:5d:ec:f5:4d:47:8b:ad:99:df:77:e1:06:
2a:18:06:2c:0f:da:80:a1:fa:ac:5e:6a:68:81:59:
16:15:bd:aa:19:54:b6:92:e3:f5:34:f6:c0:98:93:
7f:76:08:59:99:5d:65:34:01:70:d6:fe:6f:bd:29:
5f:e0:14:4b:22:4e:6d:98:62:af:8e:58:53:00:1c:
0f:2a:17:da:4f:7f:55:09:1b:6a:a5:90:03:cb:9a:
25:f3:7f:7e:30:63:17:94:3e:2f:a8:10:a7:93:ec:
02:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:D5:79:BD:08:CD:27:BD:A5:9B:62:B0:13:61:4B:00:EA:D4:80:C2
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/KtV5vQjNJ72lm2KwE2FLAOrUgMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.200.64.0/19
31.24.200.0/21
87.247.179.0/24
89.235.77.0/24
Signature Algorithm: sha256WithRSAEncryption
25:97:b9:b6:25:72:23:a9:73:3d:a5:5d:cb:6d:5e:c6:5f:b5:
fa:c5:0c:5e:25:a1:b4:19:c7:b5:7c:96:cb:f9:05:18:20:93:
78:35:03:43:14:76:6c:30:07:34:e8:43:87:b5:65:f4:b6:e1:
93:9c:c0:8d:02:d8:fb:0b:c7:c3:17:8a:38:63:41:2a:ce:67:
20:99:ad:49:bb:4b:8d:3b:88:91:be:20:8f:b0:68:d2:c7:a1:
10:22:f9:c4:a8:f3:db:bf:60:41:39:23:c5:50:d7:0b:65:79:
a3:75:b8:c8:f0:84:3a:d3:e5:48:f8:f3:96:ce:3f:79:f9:36:
82:f9:ac:c4:c9:b6:48:1a:95:ef:d1:06:dd:1a:20:3d:d1:7f:
bb:12:29:39:88:be:64:ad:43:a7:8c:f1:d2:8c:a1:5d:86:43:
48:9d:76:43:29:14:35:a3:cc:43:fb:93:d6:f8:a4:bb:ca:e3:
48:04:6c:64:b9:bd:36:fc:2b:5d:27:95:39:42:80:81:eb:b1:
36:89:49:f2:58:38:63:c3:b9:bc:fe:dc:67:bf:a8:c6:7e:f3:
67:4f:2d:4a:4f:37:17:0f:52:f1:e5:ed:49:33:91:d6:e1:4d:
48:18:8a:6f:3b:f1:01:df:d4:b5:56:19:09:69:83:14:6f:3d:
33:e8:de:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:06 2024 by rpki-client on console-ams.rpki-client.org