Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/5tSDhY2RJz7Kc8rPpAY_8A_095c.roa
File: 5tSDhY2RJz7Kc8rPpAY_8A_095c.roa (raw, json)
Hash identifier: TjTeOYcnbj+c8ZPBki5/XdQz/V1Yal/sFBLdsmbQSms=
Subject key identifier: E6:D4:83:85:8D:91:27:3E:CA:73:CA:CF:A4:06:3F:F0:0F:F4:F7:97
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0186E45C1D7AE26D178DA162EFD18EDBCBE9
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/5tSDhY2RJz7Kc8rPpAY_8A_095c.roa
Signing time: Wed 15 Mar 2023 08:21:27 +0000
ROA not before: Wed 15 Mar 2023 08:21:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 150329
IP address blocks: 5.34.208.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e4:5c:1d:7a:e2:6d:17:8d:a1:62:ef:d1:8e:db:cb:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Mar 15 08:21:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6d483858d91273eca73cacfa4063ff00ff4f797
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:eb:fa:7e:27:a5:0b:ee:79:c2:2f:93:c0:aa:
f1:47:31:20:69:81:dd:c3:6f:d4:d9:22:40:bb:29:
04:fb:f8:96:1d:57:05:05:60:36:cb:e2:25:b2:62:
a0:eb:f0:f5:00:72:38:0c:ce:b3:65:2d:4b:44:cf:
b1:f0:c0:3e:a3:c5:38:00:71:cf:73:0c:7a:56:03:
7a:36:bf:b7:e8:a1:c1:a2:48:b0:fe:83:a2:6a:36:
db:4b:be:d0:1d:28:e6:e1:e8:2b:24:cc:7b:e3:03:
b3:b0:ec:45:f9:57:53:1c:0c:b3:99:c0:5b:28:fd:
a5:ef:14:28:dd:9e:d0:97:63:d3:9b:6d:c1:ce:47:
e7:20:f6:82:74:3e:59:d3:2b:3d:fb:13:01:02:86:
e6:8a:53:99:e2:cd:51:9b:82:a0:22:12:d9:e3:0b:
98:d5:ba:73:64:08:20:2d:82:66:3c:9a:0b:e3:7d:
36:e2:ba:b6:e6:fa:ae:bf:ab:5f:fb:5a:cd:d5:3b:
f9:97:e6:29:e0:dc:5b:e2:41:e7:48:97:99:65:df:
a8:45:88:36:48:fe:e3:ff:f4:e6:9d:51:fa:57:ee:
1c:b8:b7:d8:2d:a3:b1:7d:7c:e4:a5:65:5f:b0:c3:
5f:85:0f:4c:07:19:dc:21:d2:a6:69:0a:71:d6:90:
db:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D4:83:85:8D:91:27:3E:CA:73:CA:CF:A4:06:3F:F0:0F:F4:F7:97
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/5tSDhY2RJz7Kc8rPpAY_8A_095c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.34.208.0/20
Signature Algorithm: sha256WithRSAEncryption
ac:8d:26:c2:2e:6e:c8:44:c5:58:29:ad:ed:66:72:aa:79:a3:
c0:3f:ee:b7:cf:0a:15:02:1d:37:2d:0d:e5:af:f6:da:2f:fa:
e5:f0:fe:a2:8e:80:a6:4a:ad:ea:8b:c5:4a:88:25:a4:6c:35:
f3:fc:79:fd:85:08:98:76:81:17:d3:b9:8c:15:9c:e5:e1:84:
85:b2:01:b8:d6:92:03:76:48:6a:e4:a8:74:8e:6b:11:b9:b5:
a7:d8:3b:39:69:24:b4:1a:1e:c2:59:f9:7c:d9:cf:fb:c9:fb:
23:47:85:3c:15:a6:79:02:0d:31:ee:f1:40:99:bf:0a:b6:d9:
2c:7b:ab:a8:9a:f0:34:29:46:83:f9:ea:1e:7d:bd:40:16:92:
36:d7:10:f6:66:c3:ce:b2:1e:b8:23:d4:5b:f8:7b:46:41:0e:
d9:09:d7:5b:f1:d8:bd:ac:d1:09:34:a5:07:6f:68:35:2f:07:
e4:c2:05:34:02:44:ef:8a:1c:f8:7d:80:ad:25:7b:9e:35:7d:
1e:bb:e5:de:ce:d4:c9:3e:ba:30:1a:ec:1c:23:63:4e:f9:29:
7e:0b:0f:1a:f2:5b:8d:f1:54:a9:d6:6a:05:5c:7c:be:b8:68:
07:8f:21:af:f0:03:93:f4:fc:68:80:18:3e:c3:25:02:c8:3c:
5b:b9:78:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:42 2023 by rpki-client on console-fra.rpki-client.org