Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7b8513-f189-4330-b6f0-d0d258e4b435/1/m7LQORtA4nDAUkgpGW50UtozbZI.roa
File: m7LQORtA4nDAUkgpGW50UtozbZI.roa (raw, json)
Hash identifier: Lr9aAe8OugZsi+NvLJdic/NNZeKyxh/GQDSFR+HSRxo=
Subject key identifier: 9B:B2:D0:39:1B:40:E2:70:C0:52:48:29:19:6E:74:52:DA:33:6D:92
Certificate issuer: /CN=4bf3fb8ff8ddafda89db39705f78f6418efd1fed
Certificate serial: 01856F549F3E0995C58E13B64A74260CC65B
Authority key identifier: 4B:F3:FB:8F:F8:DD:AF:DA:89:DB:39:70:5F:78:F6:41:8E:FD:1F:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S_P7j_jdr9qJ2zlwX3j2QY79H-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7b8513-f189-4330-b6f0-d0d258e4b435/1/m7LQORtA4nDAUkgpGW50UtozbZI.roa
Signing time: Sun 01 Jan 2023 21:54:54 +0000
ROA not before: Sun 01 Jan 2023 21:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 55497
IP address blocks: 5.42.160.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:9f:3e:09:95:c5:8e:13:b6:4a:74:26:0c:c6:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bf3fb8ff8ddafda89db39705f78f6418efd1fed
Validity
Not Before: Jan 1 21:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9bb2d0391b40e270c0524829196e7452da336d92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:db:26:c0:cb:a0:81:32:0c:b6:52:13:d7:07:
ca:0a:4b:fd:12:c6:8a:fd:a6:48:33:47:f1:1a:ed:
4b:68:e7:7b:b7:72:47:f0:fc:ac:54:9b:e2:76:14:
3a:f0:8f:2d:9b:b2:24:a3:09:ed:ea:3d:73:cc:88:
2c:bb:91:7c:76:45:60:ed:d2:94:20:e3:cd:0d:74:
63:1f:9c:1b:37:a9:85:f8:e5:16:c1:81:66:d9:5a:
47:32:06:21:4b:10:9b:ab:e2:4d:fd:ba:c6:83:34:
f8:c4:1d:21:09:7d:5b:3e:5e:7a:78:9f:4e:06:29:
64:26:48:6d:0a:c5:3d:c4:9f:f3:1e:bf:f4:63:a8:
14:a1:1c:4c:21:f8:bd:c2:69:46:34:c5:18:e6:1e:
cd:af:c3:db:25:81:c9:5f:9a:db:54:85:c1:2d:57:
fb:08:ef:2b:d0:13:95:f2:a4:bf:1f:36:52:f5:55:
b2:c1:39:0c:81:d7:4c:a1:58:c3:e7:7a:cd:51:9b:
82:e2:55:c9:78:af:44:21:e4:a0:78:8e:b9:b4:bd:
8c:09:28:3f:6e:d6:55:b9:4d:81:89:e1:d3:e5:0c:
fe:a6:cf:83:32:33:47:6a:75:eb:b8:42:92:b6:74:
50:8a:51:35:53:3d:d8:3b:c4:32:7b:71:cf:bc:d8:
72:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:B2:D0:39:1B:40:E2:70:C0:52:48:29:19:6E:74:52:DA:33:6D:92
X509v3 Authority Key Identifier:
keyid:4B:F3:FB:8F:F8:DD:AF:DA:89:DB:39:70:5F:78:F6:41:8E:FD:1F:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S_P7j_jdr9qJ2zlwX3j2QY79H-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7b8513-f189-4330-b6f0-d0d258e4b435/1/m7LQORtA4nDAUkgpGW50UtozbZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7b8513-f189-4330-b6f0-d0d258e4b435/1/S_P7j_jdr9qJ2zlwX3j2QY79H-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.160.0/21
Signature Algorithm: sha256WithRSAEncryption
4f:cc:2e:33:82:eb:88:37:10:e2:9d:5b:54:57:a7:7e:3e:d1:
ce:e2:94:4f:1f:d0:db:17:4c:03:e3:61:24:18:1d:08:b2:e8:
38:23:5f:b4:9e:11:5c:58:92:21:9f:ae:d8:6f:74:e2:c5:20:
7a:10:6f:69:67:45:4e:6a:ee:ad:1a:6a:fe:b6:0a:a0:38:a0:
96:c0:a4:73:5e:ae:d6:a8:60:32:88:d9:a0:1d:5f:b6:ef:2e:
0e:90:bc:e9:0f:58:a4:9a:ec:79:be:e2:54:58:da:cc:a9:cb:
a0:fd:de:30:d0:8c:02:df:01:65:71:c6:79:55:0b:7b:50:85:
71:57:73:80:fa:0e:57:fe:52:bf:d5:6c:33:88:8a:fd:72:c0:
8d:b9:d1:8a:e8:4f:d7:5f:e7:b4:05:39:05:42:bb:0b:5f:4d:
fa:cc:46:5c:54:38:c0:cd:27:1d:4f:dd:78:05:3a:5c:a8:1b:
ab:06:da:53:41:c4:98:2e:79:a4:69:24:2a:c9:3a:f2:36:b1:
b2:ae:8e:c0:b4:4e:65:2f:f6:5d:91:ff:8e:bd:d7:8d:b2:d9:
15:26:e6:8f:cd:74:2c:72:f2:d6:2f:7c:14:0d:3d:57:01:f8:
52:d7:28:34:7a:ca:2d:03:28:d7:99:3d:c9:8b:ef:4c:2f:97:
8b:a9:b1:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:45 2024 by rpki-client on console-fra.rpki-client.org