Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/kY6XYPUvXoLpKLqVkukRO2iPZ9A.roa
File: kY6XYPUvXoLpKLqVkukRO2iPZ9A.roa (raw, json)
Hash identifier: hWATzSsxj/pocndS6KznDfYpcKKHcYdn7JgM5n2/oKE=
Subject key identifier: 91:8E:97:60:F5:2F:5E:82:E9:28:BA:95:92:E9:11:3B:68:8F:67:D0
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 0185720C3F84F2D0B7C689DA2A7F7C7F95F8
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/kY6XYPUvXoLpKLqVkukRO2iPZ9A.roa
Signing time: Mon 02 Jan 2023 10:34:43 +0000
ROA not before: Mon 02 Jan 2023 10:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 5.181.200.0/24 maxlen: 24
195.88.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Aug 2023 04:12:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:3f:84:f2:d0:b7:c6:89:da:2a:7f:7c:7f:95:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 2 10:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=918e9760f52f5e82e928ba9592e9113b688f67d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:06:5c:bf:6c:48:89:db:fb:95:da:43:2f:57:
03:c0:71:c8:5b:30:88:25:d5:8a:91:30:83:6b:08:
71:f4:9e:29:05:04:bd:a6:02:d9:81:c8:07:89:a9:
ad:52:08:7f:dd:34:f5:72:54:22:c8:24:a4:25:b7:
6d:2d:0a:84:dc:f4:32:d1:e9:c2:29:35:5b:07:63:
6f:ec:11:cc:7f:f2:b4:68:93:68:8b:f6:81:34:0a:
01:cd:36:b9:d3:cb:0a:ea:ff:dc:3f:3f:6b:7a:21:
1e:7d:7d:25:50:65:43:5a:4f:90:e5:20:00:b3:38:
e8:ff:a3:13:e9:f4:70:1b:30:fb:cd:3b:5f:7e:a2:
85:3c:6d:17:7a:81:b2:da:a1:e6:32:bb:23:8f:2c:
3e:2a:4a:91:b6:e0:58:7b:17:2b:e2:94:81:87:f9:
4e:c0:a5:7b:4e:11:72:1d:24:e2:ee:81:7e:2e:37:
ea:31:e7:09:0e:dd:a7:72:0f:b3:0e:2d:4a:ce:00:
3c:82:e8:cf:c4:4f:8b:35:16:ee:46:12:e0:cd:62:
79:84:4d:e9:57:cd:1d:32:05:5e:d1:b1:13:68:a6:
39:16:c9:76:66:83:46:f0:4e:a3:13:4a:19:45:69:
65:c0:36:44:dd:8c:91:b6:ca:ab:c1:cf:9b:20:6b:
1c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:8E:97:60:F5:2F:5E:82:E9:28:BA:95:92:E9:11:3B:68:8F:67:D0
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/kY6XYPUvXoLpKLqVkukRO2iPZ9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.200.0/24
195.88.213.0/24
Signature Algorithm: sha256WithRSAEncryption
18:e1:54:73:80:a8:58:28:33:83:dc:84:98:a5:e6:c7:18:f6:
e7:01:67:f3:18:b9:e7:7f:7a:d0:68:70:9c:0f:b2:1e:0d:b9:
3e:91:f5:92:5e:2b:b3:36:5e:9b:e2:c5:3e:e3:c7:2a:7c:f2:
29:6a:4a:59:8b:13:24:c4:4b:b9:a9:a0:f1:31:91:6b:52:f6:
56:c9:0a:39:aa:ce:18:9d:e0:ea:f3:59:9a:43:fb:a0:75:fe:
b8:67:86:79:4e:3a:f6:ed:7f:fa:b0:b9:d0:1c:e1:ab:e8:ac:
dc:3b:5e:74:da:f0:c1:23:20:9d:bc:d1:d2:7d:e3:fa:93:5f:
16:4a:5d:ec:78:c5:3a:80:e6:c0:f3:5e:6f:3e:15:4f:77:1c:
6d:7a:ba:49:54:9f:70:5c:d0:bc:3d:05:13:61:9b:e9:fe:ee:
8e:db:d5:88:a2:17:e0:75:fd:1e:08:15:d2:96:68:46:52:82:
75:75:6a:64:55:0a:f5:54:8b:b1:b4:68:72:2f:1a:c9:62:05:
ce:7a:40:ec:3d:9e:3f:ef:c9:e6:bf:29:5c:67:31:b4:1c:d3:
60:6c:fa:4c:b0:d5:79:19:f6:bf:8a:6d:d3:7b:24:2d:fa:75:
c1:8e:f7:52:f1:bb:a8:43:d5:0c:e6:1c:c4:87:a3:af:4a:eb:
cc:28:ee:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org