Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/E4-_nb0aW9AA9ZfFit1r07APwmY.roa
File: E4-_nb0aW9AA9ZfFit1r07APwmY.roa (raw, json)
Hash identifier: TCKFGDzgIxLmddAPQnOyL7qRVf5MN3TXKrMoon1Yshs=
Subject key identifier: 13:8F:BF:9D:BD:1A:5B:D0:00:F5:97:C5:8A:DD:6B:D3:B0:0F:C2:66
Certificate issuer: /CN=1e4a2020b82d0294e90a2d6b2c0f28d1173b6465
Certificate serial: 01856FE6EE153C19C3BF37A6B0D07107AF8C
Authority key identifier: 1E:4A:20:20:B8:2D:02:94:E9:0A:2D:6B:2C:0F:28:D1:17:3B:64:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HkogILgtApTpCi1rLA8o0Rc7ZGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/E4-_nb0aW9AA9ZfFit1r07APwmY.roa
Signing time: Mon 02 Jan 2023 00:34:43 +0000
ROA not before: Mon 02 Jan 2023 00:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44066
IP address blocks: 5.132.158.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e6:ee:15:3c:19:c3:bf:37:a6:b0:d0:71:07:af:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e4a2020b82d0294e90a2d6b2c0f28d1173b6465
Validity
Not Before: Jan 2 00:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=138fbf9dbd1a5bd000f597c58add6bd3b00fc266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:3f:01:51:88:05:56:c7:43:63:f2:f2:59:e1:
85:a6:2a:06:51:23:4b:cd:2b:4b:f7:a0:17:f0:59:
91:16:0f:3f:8d:55:dd:8b:7c:17:9c:66:61:45:6b:
f4:fd:90:03:2c:6d:a5:19:c6:68:f9:5a:cc:42:d7:
db:06:ba:b6:c1:15:ed:b8:5f:00:b5:33:79:1b:1e:
2f:6f:43:a9:7d:52:f8:4d:10:a5:b3:45:01:34:a7:
30:fb:d8:6f:31:38:cc:0b:2e:0b:00:2c:c7:c3:c2:
3e:70:79:31:d1:59:f3:97:92:d4:66:ab:22:5f:70:
6a:40:70:42:53:df:29:9a:27:26:aa:30:07:48:3c:
a3:7b:01:30:43:3b:75:53:48:fa:13:db:58:11:f9:
15:e6:88:ac:d8:0e:ae:cf:74:29:e9:e3:3d:68:c8:
20:68:ce:11:d3:82:0f:1f:e1:a6:c5:78:ff:f7:5b:
bb:05:27:ab:28:00:4b:5e:7b:2d:15:13:b1:ee:c5:
bf:bf:fe:e7:a5:b4:38:94:ae:10:07:14:5a:ce:12:
2e:d2:fb:6e:73:4b:df:2e:4c:5b:00:04:b8:6d:d6:
d0:0c:91:7e:f0:12:da:ee:8b:1b:aa:d3:ab:fa:06:
fe:49:ac:bb:de:5e:38:b4:6b:3e:58:58:41:a9:e4:
2d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:8F:BF:9D:BD:1A:5B:D0:00:F5:97:C5:8A:DD:6B:D3:B0:0F:C2:66
X509v3 Authority Key Identifier:
keyid:1E:4A:20:20:B8:2D:02:94:E9:0A:2D:6B:2C:0F:28:D1:17:3B:64:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkogILgtApTpCi1rLA8o0Rc7ZGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/E4-_nb0aW9AA9ZfFit1r07APwmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/HkogILgtApTpCi1rLA8o0Rc7ZGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.132.158.0/24
Signature Algorithm: sha256WithRSAEncryption
39:34:63:3a:2c:93:4a:37:58:57:85:8c:f2:32:35:d8:f1:b4:
a1:70:09:a4:e8:02:96:c0:97:f2:d5:0d:9a:36:07:22:0a:a8:
84:87:2e:25:9f:a6:ed:50:79:f1:3e:44:65:3d:98:51:13:8b:
af:e0:91:f5:9f:6e:6b:38:c0:d7:72:18:32:db:a7:38:66:60:
a1:43:8c:61:f0:49:29:08:00:89:b0:d3:e6:c3:af:77:b7:82:
1e:e5:dd:08:9a:44:3f:84:31:72:6b:13:1d:d8:7a:d0:2a:bb:
3e:5c:ae:5f:d0:26:1d:a5:df:4f:33:c0:b2:91:e6:a3:24:75:
19:04:13:bb:27:42:b1:af:77:2e:a0:ac:2e:53:16:16:67:b8:
93:a2:9c:2c:31:4e:4b:1c:18:13:50:49:ec:1a:de:ec:e8:94:
61:e3:8b:2e:74:06:df:6f:41:84:cd:cc:cb:2e:6f:d6:01:d9:
2c:57:ae:0c:79:3e:27:12:18:67:e3:85:3c:db:7e:db:83:cc:
d2:06:2a:ee:a5:9e:7b:ff:1e:5c:c3:42:93:2c:7a:f6:68:92:
ab:d6:5f:58:dc:8e:b6:25:46:fd:e2:54:db:37:68:c7:13:7e:
aa:63:56:14:cc:f3:a5:3e:f5:ef:50:dc:bd:7a:a0:18:60:15:
b5:09:26:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:21 2024 by rpki-client on console-fra.rpki-client.org