Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/5-0hJSm6dSWHx3AnVoCVg7pGuD0.roa
File: 5-0hJSm6dSWHx3AnVoCVg7pGuD0.roa (raw, json)
Hash identifier: 52HgjtdUPaa5Vm0Sdy/z/LNAPu0oy83DxofK0pjlfE8=
Subject key identifier: E7:ED:21:25:29:BA:75:25:87:C7:70:27:56:80:95:83:BA:46:B8:3D
Certificate issuer: /CN=90dff31d1b0444d4204de1584d00ddf968d0b012
Certificate serial: 018DA2039CCCCED7C30167BB73518A29BE35
Authority key identifier: 90:DF:F3:1D:1B:04:44:D4:20:4D:E1:58:4D:00:DD:F9:68:D0:B0:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/5-0hJSm6dSWHx3AnVoCVg7pGuD0.roa
Signing time: Tue 13 Feb 2024 10:29:22 +0000
ROA not before: Tue 13 Feb 2024 10:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205544
IP address blocks: 173.234.72.0/21 maxlen: 21
Validation: Failed, certificate revoked on Wed 14 Feb 2024 10:27:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a2:03:9c:cc:ce:d7:c3:01:67:bb:73:51:8a:29:be:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90dff31d1b0444d4204de1584d00ddf968d0b012
Validity
Not Before: Feb 13 10:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7ed212529ba752587c7702756809583ba46b83d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c2:a3:8f:d3:10:8c:7b:ca:60:bb:5a:41:7e:
99:14:49:6d:8e:b5:85:6e:26:ba:af:75:ce:1a:53:
8b:79:0f:2d:d0:80:57:4e:21:21:68:78:26:fc:70:
6a:d1:10:fe:5c:c3:aa:22:fb:e5:61:90:cb:cb:f5:
f0:ae:0d:dc:92:f7:48:7f:7d:5a:47:24:69:17:d9:
6a:28:ff:d7:6e:b0:1d:44:96:ef:52:56:24:c8:ff:
c2:5f:46:5d:55:9d:00:6f:42:2c:db:00:8e:d4:28:
d9:a6:70:dd:77:98:d2:80:b8:87:6e:d4:21:4e:1b:
fc:52:1e:5b:cb:c4:f0:97:63:65:18:63:3a:00:9e:
ec:cc:77:44:02:cf:17:cd:ac:3f:83:cd:f5:9f:0d:
56:75:21:df:14:33:f9:48:31:dd:33:ba:e6:fa:6e:
c0:89:90:f1:71:7b:0c:c6:63:eb:7c:3f:a6:ae:ca:
a6:a3:a2:11:09:6e:9d:4e:04:a5:26:a3:b6:fc:be:
b6:0e:a6:f6:d2:1f:95:fc:91:03:3b:fa:55:45:72:
f1:be:9a:3d:7a:0b:eb:87:3a:cd:02:19:a2:a0:96:
ac:67:3e:10:c8:a8:cc:40:1b:9b:b4:f9:49:cd:c7:
39:02:b3:0d:b3:83:04:7e:ad:44:83:19:84:72:99:
8e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:ED:21:25:29:BA:75:25:87:C7:70:27:56:80:95:83:BA:46:B8:3D
X509v3 Authority Key Identifier:
keyid:90:DF:F3:1D:1B:04:44:D4:20:4D:E1:58:4D:00:DD:F9:68:D0:B0:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/5-0hJSm6dSWHx3AnVoCVg7pGuD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
173.234.72.0/21
Signature Algorithm: sha256WithRSAEncryption
59:72:da:04:35:64:97:37:d7:ca:4e:54:7f:3c:0d:65:9a:c6:
2a:c6:50:94:ff:8a:ab:db:c0:56:4f:76:35:34:89:dc:e0:2d:
c4:b2:9d:21:7c:16:04:9a:89:1d:d3:55:d1:2b:32:f1:36:ef:
f1:23:d7:86:c1:ae:0d:a3:d0:ba:17:83:36:44:fc:3a:35:54:
c5:b2:a2:10:a6:fa:0e:c8:ca:9b:c0:6d:46:7a:12:57:c3:fe:
b6:2e:58:b2:b0:93:f2:d4:83:17:f9:4f:a6:f1:46:9d:45:7c:
41:63:3c:95:51:57:0a:d9:d6:b1:48:f2:e7:04:f8:71:e4:d7:
63:23:8a:60:68:d1:bd:cc:3e:c7:59:86:ab:50:34:53:86:da:
cf:e3:bd:d5:df:42:c6:7e:3e:3f:b6:e6:f7:e7:c8:59:4f:70:
73:f6:f6:57:af:53:10:8c:41:5c:a9:db:01:3e:51:66:4f:55:
13:45:d6:24:c1:8b:d6:bf:1f:8d:c3:37:c3:6a:49:68:85:91:
9c:b8:0a:93:04:e6:e5:09:d4:4e:7f:4f:83:c6:b5:48:7c:81:
92:ec:e8:c1:05:97:e9:27:69:88:4c:1c:b1:ad:7d:f5:50:cb:
d2:a0:a6:3d:85:60:77:e5:37:b6:1c:a6:9c:54:eb:7c:66:70:
1e:a5:c6:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:21 2024 by rpki-client on console-ams.rpki-client.org