Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/5cWsfjefHiURo6SJqVRCFK9-ZIQ.roa
File: 5cWsfjefHiURo6SJqVRCFK9-ZIQ.roa (raw, json)
Hash identifier: w43yyyrPKmgFQ7qEf7trUT3LvTIgcmatjW6cnctgI8c=
Subject key identifier: E5:C5:AC:7E:37:9F:1E:25:11:A3:A4:89:A9:54:42:14:AF:7E:64:84
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01856B4A220737F0068F4CF029EE3A503BCF
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/5cWsfjefHiURo6SJqVRCFK9-ZIQ.roa
Signing time: Sun 01 Jan 2023 03:04:58 +0000
ROA not before: Sun 01 Jan 2023 03:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 188.72.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:22:07:37:f0:06:8f:4c:f0:29:ee:3a:50:3b:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5c5ac7e379f1e2511a3a489a9544214af7e6484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:8c:ce:97:83:cd:f0:94:8f:a4:48:d9:71:c6:
66:ec:0a:ca:c0:dc:31:97:e3:f3:de:47:56:fa:88:
bf:72:37:5e:30:d2:c3:e0:36:1c:13:8d:28:be:73:
8e:15:aa:71:27:bb:f0:d5:d8:ba:33:60:bd:16:7f:
4f:90:13:61:35:f1:5a:a3:a4:54:6e:2f:ae:fe:08:
cb:69:58:a8:07:07:d9:90:76:03:79:e1:82:2e:43:
75:0d:31:29:f8:e2:ad:42:2b:62:27:99:5e:e4:65:
9c:93:bb:b1:3d:44:f7:b7:04:f3:b5:c6:ad:5a:30:
cd:39:77:e3:d9:bf:a4:0f:f0:f7:68:c8:99:61:cf:
e5:36:76:38:df:c9:43:25:c6:12:04:7d:88:82:23:
67:02:8c:af:ac:55:71:d3:e6:b2:f1:2c:e2:f4:46:
45:9f:e3:c0:f7:63:80:b0:92:db:b0:cf:b2:a6:75:
b8:ec:d1:27:f5:cc:e0:96:b6:cd:79:a7:50:7f:93:
12:94:06:53:39:6f:ad:3e:df:f1:9a:c6:16:20:e5:
2e:1c:47:52:ae:f6:78:e4:65:2c:50:55:0b:1e:9e:
d4:9b:eb:85:92:ae:cc:dc:c5:e1:1c:83:9d:4d:41:
1b:b6:af:ee:42:a2:84:a7:22:51:50:5b:27:48:50:
3e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:C5:AC:7E:37:9F:1E:25:11:A3:A4:89:A9:54:42:14:AF:7E:64:84
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/5cWsfjefHiURo6SJqVRCFK9-ZIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.72.93.0/24
Signature Algorithm: sha256WithRSAEncryption
32:33:74:2e:29:38:fa:c5:b6:06:4a:81:be:f3:41:ba:04:c1:
e1:b3:35:b2:c9:b1:24:b9:09:48:7b:b4:f9:d0:58:2a:57:9e:
91:f0:b1:36:ea:18:21:d2:1b:ab:0c:72:35:01:05:06:ff:cd:
97:5f:c1:e1:a2:84:68:57:2e:c7:43:7e:af:73:a1:f7:dd:df:
5a:8d:cb:1c:eb:f6:55:ec:1f:cc:43:d4:c9:eb:a0:6e:a1:94:
9e:1a:1f:c6:b2:e5:a8:50:fe:12:06:6b:3e:6c:5b:eb:31:c5:
e2:84:73:c8:87:fe:e7:4e:b3:a0:45:b0:3f:06:ee:0b:22:c9:
40:dc:fd:81:0a:ee:77:ea:16:82:72:cd:62:c0:24:6a:1d:7a:
f5:db:df:45:4a:5e:0a:da:e6:55:90:76:2f:bb:e6:53:e9:20:
10:d2:35:2f:f2:21:45:0d:06:3f:35:db:e3:57:6e:16:12:72:
f1:45:a0:5c:ee:ca:14:fc:57:7d:6a:6f:08:3c:c6:18:5b:2d:
28:99:1b:99:aa:74:90:d8:7e:26:66:9c:74:59:2b:6d:67:0a:
8f:01:79:63:df:e1:3f:8c:2f:b8:fc:14:eb:30:db:f2:7d:05:
82:a9:7a:08:b4:4b:d4:12:97:89:37:f5:f6:86:5f:58:56:ba:
23:82:cc:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org