Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/411c4b-156a-4cc0-a34e-ec19cd38f245/1/5TFMb-bgR5RQBPc2Hl__6ZZF7qw.roa
File: 5TFMb-bgR5RQBPc2Hl__6ZZF7qw.roa (raw, json)
Hash identifier: MRoHBPOuge6L8Q0yUkR9uf3NTNyBwY0rVAX95gkaU5M=
Subject key identifier: E5:31:4C:6F:E6:E0:47:94:50:04:F7:36:1E:5F:FF:E9:96:45:EE:AC
Certificate issuer: /CN=890c4983ee18bc5e025faafde31c64134a4620ac
Certificate serial: 018C80FD31E2518D0987D7F340245B2C63CA
Authority key identifier: 89:0C:49:83:EE:18:BC:5E:02:5F:AA:FD:E3:1C:64:13:4A:46:20:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQxJg-4YvF4CX6r94xxkE0pGIKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/411c4b-156a-4cc0-a34e-ec19cd38f245/1/5TFMb-bgR5RQBPc2Hl__6ZZF7qw.roa
Signing time: Tue 19 Dec 2023 07:32:06 +0000
ROA not before: Tue 19 Dec 2023 07:32:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56634
IP address blocks: 192.162.212.0/24 maxlen: 24
192.162.212.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:80:fd:31:e2:51:8d:09:87:d7:f3:40:24:5b:2c:63:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=890c4983ee18bc5e025faafde31c64134a4620ac
Validity
Not Before: Dec 19 07:32:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5314c6fe6e047945004f7361e5fffe99645eeac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f8:72:d7:2c:a3:c6:79:b3:ac:e0:bf:cb:71:
7d:45:4b:d6:e9:71:38:89:36:d6:4f:61:8d:1d:2e:
10:f4:92:53:af:81:29:15:b8:a1:2a:e5:8f:ab:50:
43:03:ad:97:e2:80:60:3c:50:60:c4:c6:fc:6e:9f:
43:cf:e3:84:62:9a:2b:5e:57:81:fb:52:97:10:9a:
5c:de:51:b7:9c:22:f3:e2:9d:04:fd:29:c5:78:93:
e3:bf:ca:87:46:53:20:eb:cf:f6:f0:b3:e9:42:90:
b7:c6:48:db:f0:1b:eb:3e:ec:e3:6e:9b:a8:7f:de:
ba:87:87:b4:2d:48:93:d5:3d:aa:24:a4:24:63:5d:
b2:9b:d8:da:9c:0c:f8:51:0a:a5:a9:b8:7a:eb:f2:
f7:fc:5a:10:02:e6:41:e0:61:57:14:4e:54:b8:1e:
ea:10:16:1b:4c:ea:67:a1:0d:92:fa:e7:2d:b6:3b:
f9:68:85:4f:44:da:e3:c8:fd:32:d7:d2:25:d8:2c:
58:56:c2:77:a7:15:c8:ed:6b:27:03:13:d9:83:8b:
d2:1b:ad:b1:af:5d:a0:ab:0b:90:60:8b:8a:6c:b2:
61:90:6e:d0:46:ee:77:8d:f6:c2:e0:98:71:f7:49:
c8:ac:9f:c4:6e:65:83:c3:65:a2:2f:01:05:0a:22:
59:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:31:4C:6F:E6:E0:47:94:50:04:F7:36:1E:5F:FF:E9:96:45:EE:AC
X509v3 Authority Key Identifier:
keyid:89:0C:49:83:EE:18:BC:5E:02:5F:AA:FD:E3:1C:64:13:4A:46:20:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQxJg-4YvF4CX6r94xxkE0pGIKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/411c4b-156a-4cc0-a34e-ec19cd38f245/1/5TFMb-bgR5RQBPc2Hl__6ZZF7qw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/411c4b-156a-4cc0-a34e-ec19cd38f245/1/iQxJg-4YvF4CX6r94xxkE0pGIKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.162.212.0/22
Signature Algorithm: sha256WithRSAEncryption
84:98:30:3a:e1:16:45:50:49:dc:d7:04:f5:78:23:5a:c4:99:
04:79:4d:00:d1:a7:dd:ad:af:50:dc:c2:e5:71:a9:4c:84:50:
07:64:b9:b1:51:42:eb:e2:c0:51:2d:36:03:3a:28:bd:0a:41:
f9:ba:54:b8:1b:95:3e:d1:99:65:56:43:4c:87:52:a5:e7:68:
d9:4f:84:5f:8a:b2:47:8c:dd:50:1d:c5:d5:71:28:d2:cc:c5:
69:74:7b:06:17:e1:fd:3b:94:aa:db:64:2f:9e:0f:cf:ce:49:
15:fa:3e:b7:f8:f0:37:a3:ae:58:3a:33:bf:5c:9c:c0:bf:f2:
5b:34:0f:a3:b5:d3:47:87:09:ba:71:bb:1b:b3:37:c8:05:c9:
0f:01:cf:e6:f9:1d:3f:db:e4:31:5d:19:51:95:ee:7f:9a:78:
c9:a6:b3:62:75:96:8e:a0:40:29:29:b6:59:aa:d9:5e:54:23:
c4:06:38:80:96:d4:f5:e1:3b:bd:2c:71:11:39:f5:28:c3:ff:
31:bb:2d:5f:b5:2b:9f:87:1d:57:8f:38:1a:dd:1a:85:da:16:
bf:c8:c7:c9:af:2b:6e:88:49:8c:73:28:9e:c7:49:5d:62:71:
6e:b5:88:c7:b8:35:3d:12:fb:25:7a:63:93:da:51:9f:66:2c:
92:7c:7b:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:57 2024 by rpki-client on console-ams.rpki-client.org