Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/5QrHWyjBWgZ85paJzMz_THFtT8o.roa
File: 5QrHWyjBWgZ85paJzMz_THFtT8o.roa (raw, json)
Hash identifier: fcJzIIphDLPtFBsSltUJA56lxrF4bGZ+s6jshA+My6s=
Subject key identifier: E5:0A:C7:5B:28:C1:5A:06:7C:E6:96:89:CC:CC:FF:4C:71:6D:4F:CA
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 01859FD0867665EE4E597640A528D28B437B
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/5QrHWyjBWgZ85paJzMz_THFtT8o.roa
Signing time: Wed 11 Jan 2023 07:52:01 +0000
ROA not before: Wed 11 Jan 2023 07:52:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209737
IP address blocks: 31.186.176.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 15 Apr 2023 08:52:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9f:d0:86:76:65:ee:4e:59:76:40:a5:28:d2:8b:43:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jan 11 07:52:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e50ac75b28c15a067ce69689ccccff4c716d4fca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6e:b1:01:3d:8c:b4:81:71:5b:f1:0a:33:66:
53:97:92:33:e6:6d:25:ce:86:3f:06:bd:27:39:2f:
a7:0d:cd:c2:04:ea:16:90:a5:1f:3f:f4:0a:3b:db:
a0:6c:bd:93:bf:c3:bb:45:02:58:43:be:fe:27:78:
19:10:de:92:4e:fd:32:bd:3a:49:0b:86:a4:0a:92:
bc:78:10:dc:b9:b0:5d:7e:72:e2:88:42:c8:93:4b:
7f:72:81:56:af:af:a7:c7:f9:3c:7f:d8:ed:3b:92:
c2:5b:c1:fe:66:9c:a7:b8:45:12:22:be:f0:69:2f:
59:65:a7:62:7c:33:91:3c:20:9b:08:fa:29:0c:8b:
65:bc:3c:e2:28:eb:23:35:7a:85:75:e1:0a:97:34:
bb:b3:f6:27:50:81:24:43:14:74:1f:3e:d4:9f:fd:
ba:c3:2f:d3:76:70:9b:0f:1e:12:b9:75:42:48:5e:
f3:c0:a3:f4:ce:dd:df:9e:a4:5a:4e:b0:1e:72:a1:
36:e5:24:02:3c:0a:b6:b2:10:af:11:a3:c4:1d:45:
a9:c0:0f:eb:09:a0:ac:fd:62:cd:db:f1:d0:8d:7f:
96:ad:42:d0:7c:4c:45:57:df:6a:fe:85:f2:c3:a3:
fd:95:cf:40:ac:2b:ad:e2:d5:0f:23:93:1e:25:47:
9f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:0A:C7:5B:28:C1:5A:06:7C:E6:96:89:CC:CC:FF:4C:71:6D:4F:CA
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/5QrHWyjBWgZ85paJzMz_THFtT8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.176.0/22
Signature Algorithm: sha256WithRSAEncryption
72:2d:2a:2d:6c:fd:30:8d:79:0f:5a:8f:30:5a:30:b4:70:9d:
a7:8c:2b:72:86:a2:25:10:52:97:57:08:80:55:91:50:ba:a9:
85:44:ef:2d:79:df:8a:11:60:bc:2f:4d:da:e6:64:62:bc:ec:
7f:77:e7:c9:06:78:ea:5f:c6:dd:5f:ac:f0:b2:f1:bb:b9:20:
32:4a:08:2a:bb:db:50:17:14:ff:8e:6c:70:ab:77:b6:e9:f1:
52:21:ab:05:16:7b:bd:0b:94:52:38:2d:cb:6a:c9:07:45:21:
95:74:2f:d8:a2:25:b8:26:12:99:d9:8a:9f:d9:74:f7:ba:b3:
86:d4:4b:6d:f2:52:14:f1:0f:ba:d8:34:5a:d5:16:2a:1b:e0:
f0:33:fe:7b:ed:2e:75:be:ae:04:ba:e4:fe:79:4c:36:22:b3:
0c:71:16:12:b9:af:ae:c5:8c:4b:d2:61:38:a9:30:26:fe:b8:
19:f4:89:74:84:ac:36:62:8e:ec:97:01:e8:60:25:4a:6a:bd:
b3:99:27:2a:8f:a3:07:c8:a2:ab:b6:3d:0f:0d:17:1b:66:6f:
b6:16:32:63:47:ed:b9:50:35:62:4f:ca:76:98:5b:17:89:89:
f1:5f:0f:05:0c:c9:ae:f9:89:43:01:a0:d9:b9:0c:48:6f:4b:
53:28:a4:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org