Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/omTc-9dRYOAre7jy0CjWVsWg1y8.roa
File: omTc-9dRYOAre7jy0CjWVsWg1y8.roa (raw, json)
Hash identifier: Dch+RKCmWU1Rfe8vmQT0wERfCjM0LsiekR6ulXk2yZs=
Subject key identifier: A2:64:DC:FB:D7:51:60:E0:2B:7B:B8:F2:D0:28:D6:56:C5:A0:D7:2F
Certificate issuer: /CN=4ddb3dcdf5e6bee09825c37bf3b8bdf28b6fb593
Certificate serial: 018572558AC37C74301BE97C1FF7381C0BAC
Authority key identifier: 4D:DB:3D:CD:F5:E6:BE:E0:98:25:C3:7B:F3:B8:BD:F2:8B:6F:B5:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tds9zfXmvuCYJcN787i98otvtZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/omTc-9dRYOAre7jy0CjWVsWg1y8.roa
Signing time: Mon 02 Jan 2023 11:54:46 +0000
ROA not before: Mon 02 Jan 2023 11:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205076
IP address blocks: 5.129.187.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:8a:c3:7c:74:30:1b:e9:7c:1f:f7:38:1c:0b:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ddb3dcdf5e6bee09825c37bf3b8bdf28b6fb593
Validity
Not Before: Jan 2 11:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a264dcfbd75160e02b7bb8f2d028d656c5a0d72f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6b:c1:48:c5:f6:2e:c4:5a:4b:87:83:d4:cd:
4f:f0:b7:d2:bc:67:65:0b:78:14:90:af:e2:fa:3d:
01:2f:46:a5:77:c3:e6:c2:d5:40:37:a3:df:fb:1f:
3c:89:07:c5:80:22:24:76:57:c2:79:dc:b0:b7:e8:
de:74:db:ff:7d:4f:f9:09:db:69:c9:bc:78:01:2b:
f7:15:9f:c4:00:09:1a:57:77:55:db:03:92:04:c0:
09:eb:4b:b6:3a:2d:c1:68:c4:29:44:0d:4d:6b:8b:
77:e2:64:e0:d7:2e:4f:54:5b:34:75:ca:84:3d:43:
35:cd:b0:14:c1:54:c6:85:99:69:3a:6f:fe:68:94:
c4:02:dc:77:58:aa:ee:ee:45:88:9c:75:43:c2:9a:
4e:ba:f1:a7:e2:a9:57:99:06:1f:4b:0b:98:10:8e:
16:0b:1e:b3:60:79:c4:c4:d8:f9:c6:f6:70:10:7e:
17:3b:1f:ea:7a:b1:d5:7d:b0:40:d7:ac:9d:17:f3:
03:4f:a9:a1:ce:a6:e2:55:1b:8a:aa:00:b5:56:b5:
27:77:cc:44:14:dd:82:29:3d:17:f8:ce:84:ea:eb:
c0:50:b6:c8:16:fe:a2:bd:10:73:b3:46:14:52:64:
62:64:08:e1:78:2c:d9:dc:80:47:78:09:bf:b0:75:
f7:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:64:DC:FB:D7:51:60:E0:2B:7B:B8:F2:D0:28:D6:56:C5:A0:D7:2F
X509v3 Authority Key Identifier:
keyid:4D:DB:3D:CD:F5:E6:BE:E0:98:25:C3:7B:F3:B8:BD:F2:8B:6F:B5:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tds9zfXmvuCYJcN787i98otvtZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/omTc-9dRYOAre7jy0CjWVsWg1y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/Tds9zfXmvuCYJcN787i98otvtZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.129.187.0/24
Signature Algorithm: sha256WithRSAEncryption
41:5b:42:08:0f:16:7a:8a:be:04:65:43:99:1c:10:e2:6f:62:
27:02:f1:fd:0f:19:bd:f2:47:91:d3:fc:50:5e:ae:d7:d6:46:
d1:8f:98:85:c5:51:61:4d:93:92:a7:b6:b0:ee:90:5a:02:ef:
af:ed:78:b9:97:cb:99:e6:dc:1c:2d:08:a0:bb:44:50:b5:19:
79:91:1d:8b:ae:7c:4f:a9:e0:ab:82:c5:97:fc:ed:46:4e:46:
12:96:1c:5d:6b:eb:aa:a8:4e:de:61:8e:f3:47:90:60:1c:f6:
77:9a:59:3b:a9:15:32:bf:93:55:5d:3e:e4:bf:ac:e7:3e:8f:
43:cf:ce:7e:07:42:f4:39:f3:c4:a3:98:30:d3:6a:5a:c4:43:
2e:28:cb:e4:fe:6b:d4:79:ed:ff:f8:76:6e:7a:c2:8b:3a:04:
1c:ba:12:37:3b:a9:e9:81:aa:16:3f:62:1c:f3:14:5a:6e:de:
29:7b:a4:b0:33:59:cb:3c:da:75:df:96:de:0d:7c:f1:25:fd:
d7:9e:b9:63:98:fa:8a:50:d3:4c:12:3e:82:c4:c2:30:5d:0b:
e0:06:39:b4:54:76:3d:5f:cc:a6:f4:ed:9a:b2:94:10:63:0e:
9d:62:07:37:d2:71:85:c9:c0:74:e5:5f:bb:46:50:df:c1:7b:
bc:9d:68:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org