Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/5PKBFd4z5AqMY36QcknhX3rmaE4.roa
File: 5PKBFd4z5AqMY36QcknhX3rmaE4.roa (raw, json)
Hash identifier: ACjkxB2GPJ0MhQMQ+t6x4rVTK+7cko/nJcsZssKNA30=
Subject key identifier: E4:F2:81:15:DE:33:E4:0A:8C:63:7E:90:72:49:E1:5F:7A:E6:68:4E
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 0185714C3C5B81A5FBEDB447F4AB6A83206A
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/5PKBFd4z5AqMY36QcknhX3rmaE4.roa
Signing time: Mon 02 Jan 2023 07:04:59 +0000
ROA not before: Mon 02 Jan 2023 07:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8562
IP address blocks: 188.172.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:3c:5b:81:a5:fb:ed:b4:47:f4:ab:6a:83:20:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 2 07:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4f28115de33e40a8c637e907249e15f7ae6684e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:30:5b:96:eb:d4:b7:30:05:af:29:e2:80:9f:
63:ed:b2:00:58:e1:f6:7d:12:76:a9:f0:31:fe:91:
c2:8a:91:31:86:ec:c9:42:c0:64:45:ce:a5:e5:90:
7d:a9:16:f7:3d:f6:40:70:57:cc:9c:24:9f:2b:19:
34:0a:f6:58:81:e5:11:88:64:3a:71:29:0f:98:6b:
3e:c3:62:14:3d:a8:88:4d:46:35:2d:3f:08:af:4f:
1b:58:e0:74:5b:1f:80:eb:fc:2b:f6:bb:72:8a:03:
0c:5e:af:c3:a1:8d:bc:2c:49:76:e2:5e:ad:2e:d8:
f8:84:a3:88:b9:7d:17:45:b8:76:f8:a6:3f:5a:65:
96:97:dd:c2:96:7c:40:df:ef:57:12:52:2e:0d:0e:
8b:be:61:10:a9:1d:53:63:f4:82:fc:10:bd:8a:1c:
bf:6d:f2:72:b9:7b:31:af:f6:26:4f:da:cf:18:6f:
3c:9e:e4:45:be:cd:40:0f:81:65:e0:39:fd:e9:3e:
8a:bf:e3:17:5e:a0:f7:2b:03:88:39:6c:23:43:eb:
32:40:5b:9d:18:98:9f:2c:f3:81:cb:dd:a1:6b:a0:
d7:ec:40:56:93:b9:9a:08:4f:fb:b0:db:96:5d:84:
11:1b:e9:b1:b9:ec:23:31:00:72:78:77:ed:87:59:
c6:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:F2:81:15:DE:33:E4:0A:8C:63:7E:90:72:49:E1:5F:7A:E6:68:4E
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/5PKBFd4z5AqMY36QcknhX3rmaE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.172.196.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:bf:ec:aa:4f:e1:ce:27:7a:11:3e:39:52:e2:f8:1c:5b:70:
41:a2:6a:08:23:e8:9f:9b:d2:c8:a1:91:42:20:4d:ea:ae:f9:
db:15:94:79:79:2b:bc:36:90:66:91:58:ee:cd:69:93:cf:a2:
33:98:9b:dc:25:cd:79:be:22:14:a1:e8:9d:f9:e8:49:b5:16:
fa:60:26:9e:3f:4c:62:50:9b:9c:f3:d5:e8:bf:09:c0:04:30:
a1:85:58:50:f5:41:78:a3:d2:01:db:ca:af:5e:15:ca:36:94:
72:02:15:d8:cf:6a:eb:60:c2:91:24:16:47:7a:fb:8f:d7:16:
ea:ed:56:fe:f9:a4:9f:42:56:7b:b4:2c:ce:ef:a8:70:81:ab:
d4:0a:bb:aa:ed:59:da:6e:75:d9:30:7c:5f:bd:2a:40:9e:d9:
f2:7e:31:6b:5f:51:d8:5a:95:e3:5f:e6:8e:7b:78:3f:1c:f5:
5d:9b:4d:7e:19:83:76:a1:6b:6b:bf:50:6c:43:0b:a4:4c:ba:
58:3a:30:84:56:97:e3:44:d8:11:a9:45:49:d5:41:06:81:1e:
51:b9:71:85:a9:76:62:37:3c:83:41:b5:22:6c:cd:73:07:02:
2d:e4:5c:cd:f7:de:69:58:d0:43:92:93:0c:d3:73:f4:aa:07:
02:00:28:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:50 2024 by rpki-client on console-ams.rpki-client.org