Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/95ff8f-66bc-4b11-98f0-0ab21b2f2754/1/3nj7gGMCj52k2OjCMOFua9fR_Xc.roa
File: 3nj7gGMCj52k2OjCMOFua9fR_Xc.roa (raw, json)
Hash identifier: m95nyZ0Ysu7G4noMbwg5aH7I/rCLG7OTFKqtZr65cjE=
Subject key identifier: DE:78:FB:80:63:02:8F:9D:A4:D8:E8:C2:30:E1:6E:6B:D7:D1:FD:77
Certificate issuer: /CN=597b44c4a7931c66a6ff9e92dbb32ca723d4ccf7
Certificate serial: 01856BE58C4940652AED32ADB2A644A28D66
Authority key identifier: 59:7B:44:C4:A7:93:1C:66:A6:FF:9E:92:DB:B3:2C:A7:23:D4:CC:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WXtExKeTHGam_56S27MspyPUzPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/95ff8f-66bc-4b11-98f0-0ab21b2f2754/1/3nj7gGMCj52k2OjCMOFua9fR_Xc.roa
Signing time: Sun 01 Jan 2023 05:54:43 +0000
ROA not before: Sun 01 Jan 2023 05:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60118
IP address blocks: 5.254.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:e5:8c:49:40:65:2a:ed:32:ad:b2:a6:44:a2:8d:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=597b44c4a7931c66a6ff9e92dbb32ca723d4ccf7
Validity
Not Before: Jan 1 05:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de78fb8063028f9da4d8e8c230e16e6bd7d1fd77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:80:c7:3f:1f:b7:6f:db:bc:67:cf:35:45:30:
71:58:1e:75:ae:12:96:ce:e2:46:83:37:e2:53:26:
d2:c3:9c:66:ca:63:e2:e6:22:10:87:56:a8:0e:ff:
25:f5:a4:6d:99:fb:3f:ec:60:44:9b:92:2b:29:3b:
24:a1:39:6d:55:d7:7c:0c:7a:5d:87:99:ac:d1:8e:
7d:25:d7:06:db:73:09:b7:9d:7c:d6:18:62:9c:55:
53:29:cb:13:a3:c0:4b:95:ae:ea:80:89:08:85:d1:
55:c3:b0:48:39:3c:eb:4d:57:c9:2a:98:9c:de:2c:
8d:c9:5a:55:98:8d:68:ab:aa:af:b5:f0:96:0d:60:
c8:c3:22:a4:d1:d8:04:12:e7:e1:0f:f6:7c:ec:67:
43:bd:27:d3:64:da:9b:7b:2e:49:df:26:57:48:20:
63:d0:a9:f7:c0:ca:c7:0a:fc:e4:86:e3:9a:f3:b5:
99:f7:5c:b3:83:48:e8:35:49:74:87:9a:c1:90:8b:
31:55:f0:ab:3c:bc:44:b3:8a:2b:3e:31:3f:e1:ac:
43:14:bc:c3:f3:82:2c:60:a5:b4:6c:2b:16:d7:1d:
07:8d:45:64:92:62:b6:9b:23:2d:51:cf:13:f4:6d:
31:13:0f:cc:ab:9a:f3:3d:ed:be:73:e8:bd:9f:c9:
97:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:78:FB:80:63:02:8F:9D:A4:D8:E8:C2:30:E1:6E:6B:D7:D1:FD:77
X509v3 Authority Key Identifier:
keyid:59:7B:44:C4:A7:93:1C:66:A6:FF:9E:92:DB:B3:2C:A7:23:D4:CC:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WXtExKeTHGam_56S27MspyPUzPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/95ff8f-66bc-4b11-98f0-0ab21b2f2754/1/3nj7gGMCj52k2OjCMOFua9fR_Xc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/95ff8f-66bc-4b11-98f0-0ab21b2f2754/1/WXtExKeTHGam_56S27MspyPUzPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.254.125.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:08:0b:55:f0:b4:39:a5:da:06:c2:ec:48:4f:5a:5c:ee:d9:
02:6a:f7:a5:d6:38:54:6e:c1:47:c2:1b:49:71:4c:01:c7:99:
af:6d:ab:70:c6:34:37:ef:83:10:4b:b8:4c:4b:86:f2:01:c0:
2d:93:48:68:f2:71:63:b4:e0:c5:d6:51:62:c1:c9:fe:e6:fb:
4d:10:8d:81:33:f8:fb:83:94:59:66:f8:68:42:19:01:fb:07:
bb:b7:27:f7:80:ec:bf:da:c4:4c:8d:38:6e:b4:4f:86:b5:c7:
36:56:34:09:88:63:4b:64:1e:fa:23:d7:8b:fb:72:de:2d:69:
cc:49:d2:94:ca:cf:d8:20:52:ad:5e:50:23:ca:44:8c:6a:7d:
be:02:4f:38:3b:40:f8:88:59:d2:bd:5c:2d:e0:73:fe:b3:e8:
e3:a9:be:35:83:99:ea:e5:c1:08:39:8c:4b:eb:0c:e7:03:e6:
be:71:4e:4e:2e:f5:0c:96:2e:d7:ee:e7:23:04:e8:bb:ee:05:
6a:66:a0:2c:dd:1a:82:08:dc:f6:9d:1c:bd:41:44:d6:86:be:
61:f9:1b:48:8a:58:e2:08:9b:4a:55:09:44:c9:d0:6e:10:ae:
c2:8e:60:4f:8f:24:2a:65:42:c8:50:c7:6f:17:93:eb:f9:d7:
53:3d:2a:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:30 2024 by rpki-client on console-fra.rpki-client.org