Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/336701-e36a-4db2-974e-0ed078f4bcaf/1/5StuWQYiCzUsykNcEfN6x8kbJeg.roa
File: 5StuWQYiCzUsykNcEfN6x8kbJeg.roa (raw, json)
Hash identifier: npOp6FDxyYO4saTv1p4rTRAGz5eYN5HTH0DeG96cgkI=
Subject key identifier: E5:2B:6E:59:06:22:0B:35:2C:CA:43:5C:11:F3:7A:C7:C9:1B:25:E8
Certificate issuer: /CN=0bc893375ad155b5ffced3cbee2535b8659fe389
Certificate serial: 01856D53DFB9E585E399EC02F3965D7223E2
Authority key identifier: 0B:C8:93:37:5A:D1:55:B5:FF:CE:D3:CB:EE:25:35:B8:65:9F:E3:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C8iTN1rRVbX_ztPL7iU1uGWf44k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/336701-e36a-4db2-974e-0ed078f4bcaf/1/5StuWQYiCzUsykNcEfN6x8kbJeg.roa
Signing time: Sun 01 Jan 2023 12:34:51 +0000
ROA not before: Sun 01 Jan 2023 12:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197690
IP address blocks: 85.208.180.0/22 maxlen: 22
2a09:8b40::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:53:df:b9:e5:85:e3:99:ec:02:f3:96:5d:72:23:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bc893375ad155b5ffced3cbee2535b8659fe389
Validity
Not Before: Jan 1 12:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e52b6e5906220b352cca435c11f37ac7c91b25e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:cb:c3:71:15:f1:a2:44:ed:9f:67:8e:2d:ea:
b5:b9:e3:44:03:99:a8:bc:9b:9c:fd:72:4f:fb:0d:
d6:63:f8:ae:a1:e1:a3:30:04:81:2b:2e:e8:ab:ff:
29:ae:40:92:8f:7d:6c:81:f6:82:6c:d7:23:53:fc:
95:10:54:f4:d6:c4:57:cc:58:f9:6f:da:95:9a:8b:
97:86:53:22:e3:48:9f:64:f7:54:15:3e:9e:ef:ad:
f8:53:e6:1b:93:b2:96:da:b9:e3:ea:0d:50:7f:e0:
68:d0:8f:5c:99:9a:5f:10:50:e4:b7:0a:8d:c9:9e:
db:8b:1e:20:7e:31:b4:d2:9b:c3:8a:b7:b2:6e:d1:
91:ae:15:51:7b:32:a6:08:5e:53:52:0a:fb:09:2c:
ec:2c:63:5d:e3:de:f2:6d:34:2c:9d:d6:af:5e:28:
9e:aa:67:9c:b6:44:1c:28:32:46:51:81:9c:e9:56:
c1:08:8e:49:04:ed:40:ec:57:4e:07:c8:a5:d9:0a:
dc:69:e2:94:e0:13:55:bf:47:29:c7:ab:8b:58:2c:
3d:c8:2e:62:09:64:f3:f9:d5:a4:13:5c:3f:14:92:
9e:d3:b6:a9:32:95:20:6a:41:3e:23:0f:af:ca:1b:
f0:1c:a4:29:43:b1:3e:c9:1d:7c:14:2d:a6:46:e6:
19:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:2B:6E:59:06:22:0B:35:2C:CA:43:5C:11:F3:7A:C7:C9:1B:25:E8
X509v3 Authority Key Identifier:
keyid:0B:C8:93:37:5A:D1:55:B5:FF:CE:D3:CB:EE:25:35:B8:65:9F:E3:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C8iTN1rRVbX_ztPL7iU1uGWf44k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/336701-e36a-4db2-974e-0ed078f4bcaf/1/5StuWQYiCzUsykNcEfN6x8kbJeg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/336701-e36a-4db2-974e-0ed078f4bcaf/1/C8iTN1rRVbX_ztPL7iU1uGWf44k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.180.0/22
IPv6:
2a09:8b40::/29
Signature Algorithm: sha256WithRSAEncryption
42:e7:50:4c:b3:85:72:98:17:2c:ff:b7:8c:24:bc:43:40:fa:
d3:82:c0:47:94:73:91:24:26:54:7a:8c:b9:a7:60:4f:b6:3e:
45:98:2f:6d:f3:1d:db:4e:07:dc:1c:96:9f:36:94:67:8e:83:
75:d6:d9:a7:5f:e0:33:f5:59:db:cc:c9:6b:ad:5c:81:3e:3c:
27:0c:cc:7a:f9:6e:e5:22:d5:b3:8c:12:a2:3d:47:e7:6e:28:
96:23:c9:75:f9:96:ea:bf:09:82:e6:94:fb:cb:9d:83:cf:d6:
db:1e:e1:22:24:b0:9a:b7:3f:ad:a5:1a:35:64:91:23:81:49:
58:44:13:b0:1e:d8:46:7d:05:1a:42:ab:57:43:f7:b0:b5:a2:
52:4a:49:a3:12:b8:58:d5:d9:cd:88:ab:79:b1:60:0a:5c:21:
a9:40:88:50:d4:94:88:f9:04:6b:1e:ea:a9:95:bd:9d:6a:7f:
a0:b5:6f:3a:18:0f:dd:70:a0:79:7e:85:bb:4a:85:38:2f:a1:
99:2b:42:30:30:f8:d0:dc:1e:bb:ba:59:26:30:a8:01:25:81:
ab:1a:54:c3:e6:5a:ff:67:1a:56:3f:d3:20:e1:d7:da:1d:5f:
99:90:56:29:1e:6c:b6:07:5f:07:fc:1d:42:2b:cb:5a:34:2a:
aa:9e:c3:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:26 2024 by rpki-client on console-fra.rpki-client.org