Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/gh2I_bZYSJij5ZPOvqLt-PGV4Uo.roa
File: gh2I_bZYSJij5ZPOvqLt-PGV4Uo.roa (raw, json)
Hash identifier: OGyOppWr82Wa9spMG6ASRwxhClnf2wnGaYaQmQxau20=
Subject key identifier: 82:1D:88:FD:B6:58:48:98:A3:E5:93:CE:BE:A2:ED:F8:F1:95:E1:4A
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 01861B48513723A92738D26F983DEB688216
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/gh2I_bZYSJij5ZPOvqLt-PGV4Uo.roa
Signing time: Sat 04 Feb 2023 07:16:09 +0000
ROA not before: Sat 04 Feb 2023 07:16:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13347
IP address blocks: 5.102.96.0/20 maxlen: 24
5.102.112.0/20 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 Feb 2023 06:47:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:1b:48:51:37:23:a9:27:38:d2:6f:98:3d:eb:68:82:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Feb 4 07:16:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=821d88fdb6584898a3e593cebea2edf8f195e14a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:2d:73:06:12:e8:2b:41:06:29:ea:43:fb:45:
66:a4:bb:4e:fc:18:1c:95:d4:d8:57:d3:d4:31:ec:
0a:3f:29:ec:e6:26:b1:5d:0c:03:6b:59:c9:55:bc:
d1:c1:dc:cf:8d:2f:30:35:47:5f:11:0a:8d:26:c4:
1c:8a:65:d8:6f:1a:ce:58:0e:c7:dc:7a:a8:ce:8c:
da:ac:67:2d:a1:ff:b4:20:c0:cd:ac:69:51:a6:2b:
0d:83:7a:26:2e:49:a3:f7:f4:f7:ab:98:04:ed:84:
dd:79:59:0d:2a:a6:e1:6d:a7:b6:16:5f:3f:7b:3e:
a8:d1:ad:1c:c7:8d:c7:ac:1e:c4:6d:03:d8:84:65:
3e:88:36:20:43:ac:fc:ab:c8:92:5e:06:41:38:3c:
1d:32:68:97:3e:12:d3:9e:64:c2:1d:ee:94:2a:07:
fd:83:1e:5f:fd:87:66:8e:c7:30:3b:76:85:84:7a:
00:3b:a3:20:10:6f:03:95:b3:a4:dd:dc:bd:d2:60:
f9:bc:ce:51:8f:9b:f5:b5:b9:1a:55:c8:b5:7e:6e:
1b:25:50:30:c9:53:3b:84:57:50:93:a9:cd:d6:b9:
7d:6a:34:b9:fe:8e:09:a8:bf:f8:30:cb:ac:63:59:
6d:cc:1f:b0:64:67:1e:e3:00:c4:5e:ad:bb:c5:01:
11:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:1D:88:FD:B6:58:48:98:A3:E5:93:CE:BE:A2:ED:F8:F1:95:E1:4A
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/gh2I_bZYSJij5ZPOvqLt-PGV4Uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.96.0/19
Signature Algorithm: sha256WithRSAEncryption
0d:c6:dd:01:51:ec:50:a7:5d:20:01:08:3a:09:0b:6b:f1:ca:
ae:c4:b8:ea:c6:72:04:72:0e:ff:d8:63:1b:ee:f6:81:8f:d1:
65:78:dd:6b:46:3e:be:30:70:6a:5f:7c:df:7c:4f:b3:13:2e:
d8:c1:3f:9b:98:99:04:a2:21:4a:59:18:6c:a2:95:dd:96:ac:
ea:da:d3:7e:3c:2b:86:54:c8:65:fd:de:7f:5c:e7:a8:71:0d:
b7:37:0e:e5:1f:12:72:ea:27:0c:b8:60:5c:64:77:dc:17:7a:
db:c2:da:fe:c8:dc:a1:42:af:93:76:ca:2b:9e:76:20:05:4c:
96:59:f9:6a:92:a8:92:c4:a5:eb:a9:e8:14:95:a1:26:8f:ad:
47:6d:fe:2b:9c:bc:b1:c5:83:c7:4a:f1:c6:99:de:48:0a:f5:
62:b0:e7:ba:27:0f:dd:e9:34:51:67:60:83:9b:22:5c:12:75:
e9:01:05:2c:73:5d:16:4d:38:3c:50:46:35:0b:6f:9e:e1:d5:
46:1a:ee:4c:89:4b:43:07:b3:28:03:c7:69:b0:ce:7a:19:83:
95:94:b5:80:6e:77:71:8e:70:1a:2c:d7:64:f4:8d:72:b0:fa:
fa:7f:9a:12:e2:48:72:ef:e5:f7:7b:28:6b:48:88:32:05:e7:
ad:fd:fc:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:36 2024 by rpki-client on console-fra.rpki-client.org