Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/5Jl6CwIW_SiDmXQ1D8SHBFbyVpY.roa
File: 5Jl6CwIW_SiDmXQ1D8SHBFbyVpY.roa (raw, json)
Hash identifier: tgxqK6orIGz9soi5DD6yj2dkT7PX9jrLsqYdPPDS/j0=
Subject key identifier: E4:99:7A:0B:02:16:FD:28:83:99:74:35:0F:C4:87:04:56:F2:56:96
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018846AD089470BB44CC1BBDDC5959E252BB
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/5Jl6CwIW_SiDmXQ1D8SHBFbyVpY.roa
Signing time: Tue 23 May 2023 03:35:24 +0000
ROA not before: Tue 23 May 2023 03:35:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 89.40.70.0/24 maxlen: 24
217.19.4.0/24 maxlen: 24
62.192.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 May 2023 09:37:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:46:ad:08:94:70:bb:44:cc:1b:bd:dc:59:59:e2:52:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: May 23 03:35:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4997a0b0216fd28839974350fc4870456f25696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:17:7f:60:cd:e2:2e:8c:ff:c9:e4:67:35:6f:
36:58:82:ac:f5:44:1a:0a:0a:ff:1d:5e:71:04:61:
cb:95:e2:89:c0:bb:26:f0:fa:68:70:5e:6b:38:08:
ac:f0:d7:f4:70:9c:0b:de:33:5b:a0:c1:55:17:d7:
08:9e:a3:21:65:5c:bc:b7:59:0b:42:95:fa:25:53:
d0:a3:95:bb:32:e7:e9:38:a6:04:8c:42:1d:06:e5:
ef:04:97:e4:41:fc:15:25:41:e9:89:7c:4a:f9:59:
79:77:ba:75:e1:40:73:22:cd:40:bd:6e:0c:d3:a6:
92:0b:9c:c4:bb:83:87:2c:e5:49:cc:9e:f4:89:47:
98:7e:9f:79:92:15:5a:74:eb:fe:34:63:c8:47:64:
fc:8a:40:70:ae:9a:15:66:c8:a5:31:8b:4c:1f:39:
0e:c2:df:b0:9e:70:05:4c:10:8b:9f:eb:f6:94:14:
17:d6:55:0d:d1:55:4a:b7:0c:c0:bb:7c:5c:7c:8b:
c2:f4:66:16:80:84:e4:98:f2:b9:69:ca:5a:79:d5:
7d:13:c0:1d:35:d8:a4:c9:6c:f3:9a:2a:63:fe:08:
96:f4:7b:f5:93:64:01:3e:01:1c:33:9c:07:e0:46:
c0:72:66:1f:d1:61:2b:83:29:77:5a:04:84:07:de:
bb:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:99:7A:0B:02:16:FD:28:83:99:74:35:0F:C4:87:04:56:F2:56:96
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/5Jl6CwIW_SiDmXQ1D8SHBFbyVpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.152.0/24
89.40.70.0/24
217.19.4.0/24
Signature Algorithm: sha256WithRSAEncryption
59:aa:48:6d:d3:5b:08:38:b8:c5:55:77:40:be:d2:de:8d:a0:
00:f9:71:0b:10:14:94:9d:c3:32:f4:a1:b7:de:68:d8:67:36:
40:13:ca:e3:52:79:80:4d:a9:38:49:54:e8:84:1f:50:cd:f3:
82:fa:c7:a3:7d:eb:33:a2:50:01:6d:7a:82:9b:62:1b:07:9c:
55:99:41:e9:4b:8e:23:1e:94:0f:67:9c:07:92:7c:8a:6b:81:
b2:14:b3:a9:03:3e:77:50:7b:fa:98:f7:12:d8:32:1d:b3:f4:
e2:97:29:78:7c:74:77:bd:31:0a:16:d6:14:8f:b4:46:18:c9:
49:dd:09:3f:40:a9:40:1f:51:2f:0c:af:f3:f1:c6:39:3b:59:
8c:69:b7:6a:fe:b6:9e:ad:f3:84:44:0e:5a:ea:1f:3b:c3:11:
48:07:a5:d6:51:04:0f:0b:de:92:fc:23:96:fb:ec:3e:c9:f6:
bc:96:ea:b5:11:87:66:e9:6a:69:db:f6:9c:21:c6:62:df:60:
3f:63:30:2f:1c:3d:a4:7e:eb:1a:fd:b2:5a:a9:a1:ae:d8:4b:
a2:8c:bf:c0:d1:85:b9:c2:1a:fa:b2:cb:20:f5:10:2a:9e:5e:
6c:fd:28:13:06:c4:d9:0d:4f:f4:b0:2b:bd:d2:83:fb:09:c3:
23:4d:65:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org