Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/5x-gqq9vm95CslGtlIallTUosqw.roa
File: 5x-gqq9vm95CslGtlIallTUosqw.roa (raw, json)
Hash identifier: L0f2PipFBAAPtcHB63NxQN49gNkVmzMRdA7E35TSBVI=
Subject key identifier: E7:1F:A0:AA:AF:6F:9B:DE:42:B2:51:AD:94:86:A5:95:35:28:B2:AC
Certificate issuer: /CN=bd252a75c961ad338fd91147d461dd8b3d20cf51
Certificate serial: 0186E574435BD577E70C780EF22DFE9389F3
Authority key identifier: BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/5x-gqq9vm95CslGtlIallTUosqw.roa
Signing time: Wed 15 Mar 2023 13:27:27 +0000
ROA not before: Wed 15 Mar 2023 13:27:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 5.182.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Mar 2023 14:58:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e5:74:43:5b:d5:77:e7:0c:78:0e:f2:2d:fe:93:89:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd252a75c961ad338fd91147d461dd8b3d20cf51
Validity
Not Before: Mar 15 13:27:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e71fa0aaaf6f9bde42b251ad9486a5953528b2ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:65:56:28:20:bc:cd:d4:2d:d2:41:76:59:b7:
4d:de:13:49:45:f3:86:08:69:a2:ca:ca:8d:b4:a3:
95:78:f5:5a:0d:9e:f7:e4:d5:a3:e9:ab:fc:e2:82:
39:77:14:9f:fb:21:69:90:2a:2b:2a:92:d4:ea:0e:
f2:1e:6e:e4:43:d5:f8:03:91:3d:c2:21:31:84:e2:
19:bb:28:1b:4f:bd:77:4a:fb:06:9c:b5:44:21:43:
8a:84:e7:5a:5b:dd:c7:1f:54:f2:e5:3f:3d:5d:35:
f3:be:18:a5:f4:82:5d:8c:f1:c1:81:db:c5:13:ec:
cf:92:7b:ae:3b:a0:02:7c:8e:64:11:a1:27:c7:10:
5e:44:78:bd:2b:36:aa:bf:30:74:4c:b0:70:20:6e:
1d:cc:d0:39:08:8d:ea:ac:66:a2:76:87:4d:6f:ac:
5f:53:4a:04:c1:f7:3c:de:d2:4e:93:55:0e:50:29:
1c:be:b7:4b:d7:57:c6:81:02:62:c0:6c:87:ce:db:
ba:9e:1e:a7:13:95:46:44:d4:f7:81:d2:41:23:80:
f3:4f:d8:b5:37:cb:35:8a:0a:aa:7e:66:39:c0:dc:
1f:8a:9d:27:45:81:ba:5f:93:25:5a:23:c4:86:46:
b9:17:3e:4f:d5:06:cd:e2:7a:8b:73:e1:82:ca:a0:
38:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:1F:A0:AA:AF:6F:9B:DE:42:B2:51:AD:94:86:A5:95:35:28:B2:AC
X509v3 Authority Key Identifier:
keyid:BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/5x-gqq9vm95CslGtlIallTUosqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.152.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:1e:76:3e:0e:3b:be:89:5e:2d:2e:5b:f1:93:73:95:a8:bb:
b2:ea:43:8a:04:e7:7b:83:48:fb:1d:41:06:33:6b:3d:1f:52:
71:3f:72:03:d6:8c:47:21:28:a5:32:ac:4d:09:87:93:f6:52:
c7:9b:c7:52:e0:4d:45:6a:f4:1f:e3:e8:f1:1e:49:b9:66:5f:
4c:1d:9c:4c:d2:f6:03:12:59:98:eb:13:77:a7:31:21:03:c8:
89:27:9c:a6:a8:19:61:b8:f4:50:5e:fd:06:9d:97:4d:2d:21:
4f:7e:4f:02:8e:6b:be:0d:7d:16:2b:08:6b:2a:74:89:a5:1c:
e7:16:91:b6:1a:4e:80:c1:cd:7f:4d:04:6c:50:cf:2f:db:9e:
45:7b:96:e2:f1:0d:44:df:69:1d:95:f5:13:b1:c0:c5:f8:ac:
c9:56:8e:d0:ae:f6:a0:3f:7d:f6:5a:93:41:85:f9:98:be:ac:
93:8d:4a:9f:09:a9:2c:6a:1b:e6:eb:d4:27:cf:52:6a:07:ca:
07:bb:98:81:fa:b3:f4:e8:61:67:c2:00:c6:16:9c:8b:54:15:
f0:75:1c:69:ed:5d:bb:d5:5d:37:58:53:04:58:d4:5d:a3:da:
20:77:1e:28:da:87:29:b9:71:a1:4c:fe:86:fc:f2:38:d5:a3:
7f:ae:b0:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:45 2024 by rpki-client on console-ams.rpki-client.org