Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/5eecf3-637f-450c-8489-34ba0738a341/1/MSYjnl1xjkmXImiv0otSQ5Fbsbw.roa
File: MSYjnl1xjkmXImiv0otSQ5Fbsbw.roa (raw, json)
Hash identifier: zXzuyUwOwVvJe4mEGG4FWwA5IsNKlV3bV/oDvEP5Pic=
Subject key identifier: 31:26:23:9E:5D:71:8E:49:97:22:68:AF:D2:8B:52:43:91:5B:B1:BC
Certificate issuer: /CN=932e8078ea420afc1a78bf922a9a2f274679c8a8
Certificate serial: 01856E144912AEBFDE4EE4FBDC620C6C5875
Authority key identifier: 93:2E:80:78:EA:42:0A:FC:1A:78:BF:92:2A:9A:2F:27:46:79:C8:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ky6AeOpCCvwaeL-SKpovJ0Z5yKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/5eecf3-637f-450c-8489-34ba0738a341/1/MSYjnl1xjkmXImiv0otSQ5Fbsbw.roa
Signing time: Sun 01 Jan 2023 16:05:01 +0000
ROA not before: Sun 01 Jan 2023 16:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51201
IP address blocks: 185.231.5.0/24 maxlen: 24
2a0c:3500:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:49:12:ae:bf:de:4e:e4:fb:dc:62:0c:6c:58:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=932e8078ea420afc1a78bf922a9a2f274679c8a8
Validity
Not Before: Jan 1 16:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3126239e5d718e49972268afd28b5243915bb1bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:14:a8:85:1b:be:cb:ba:0b:f8:ab:d1:dc:44:
9a:23:82:31:48:75:77:6f:06:7c:8c:9a:17:1a:c9:
7b:d0:36:87:fd:78:a6:8d:00:e1:7e:2c:c4:67:42:
c8:a7:31:07:57:13:b2:2c:e9:02:7f:74:f0:e0:b2:
ab:d9:d9:0f:f7:b6:d9:f3:f6:90:cb:6c:08:e1:db:
2c:fc:31:82:8c:58:83:fe:cc:a7:5f:ea:10:41:38:
8b:73:25:0f:2f:d7:01:0f:37:98:bb:c9:cd:e0:2e:
f1:af:ee:30:19:63:47:95:5f:c5:3f:34:f2:31:c1:
9a:52:d7:db:25:a4:17:82:ab:3f:2e:6c:88:d6:ac:
1b:d2:c3:98:21:f9:64:04:fc:78:74:3e:ed:be:8a:
3d:05:fd:48:0e:54:a3:2f:ab:8c:d8:e5:34:60:8a:
8d:f1:73:7d:7c:b5:43:08:87:6d:6c:21:5a:94:9f:
da:00:0f:a2:e2:4f:93:6a:47:13:27:54:7a:70:80:
bb:f9:19:f9:6a:54:05:be:95:53:47:2d:73:37:c4:
6f:a8:da:6e:54:d0:61:f6:c8:12:82:8d:0f:f9:bd:
8d:15:97:80:ac:fd:bd:d0:9f:c3:6d:6e:00:61:6e:
d1:3c:f0:ab:be:6d:b8:1f:5f:7e:7b:07:9e:f1:c0:
78:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:26:23:9E:5D:71:8E:49:97:22:68:AF:D2:8B:52:43:91:5B:B1:BC
X509v3 Authority Key Identifier:
keyid:93:2E:80:78:EA:42:0A:FC:1A:78:BF:92:2A:9A:2F:27:46:79:C8:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ky6AeOpCCvwaeL-SKpovJ0Z5yKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/5eecf3-637f-450c-8489-34ba0738a341/1/MSYjnl1xjkmXImiv0otSQ5Fbsbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/5eecf3-637f-450c-8489-34ba0738a341/1/ky6AeOpCCvwaeL-SKpovJ0Z5yKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.5.0/24
IPv6:
2a0c:3500:1::/48
Signature Algorithm: sha256WithRSAEncryption
0a:5d:db:b0:48:05:e5:26:75:5c:16:7a:b1:48:c8:00:45:be:
14:a1:45:c4:07:e6:69:77:d1:f9:0d:21:55:6c:06:f5:d3:e3:
2a:d5:df:9f:2e:05:e4:97:09:77:1b:9f:cb:b7:2e:2c:74:42:
81:e8:7a:e6:66:4b:27:d4:26:58:46:97:44:31:e9:30:7a:bd:
3a:68:21:c5:0a:2d:18:5e:5a:56:46:9b:dd:d8:7e:82:73:d7:
58:48:84:f5:ea:ee:ee:e8:01:0b:9e:30:35:be:76:23:67:d9:
a6:2b:49:0d:17:b7:9a:cd:e0:19:2f:bb:75:2d:66:b9:bc:05:
c4:31:02:cc:6e:5a:85:a6:03:9e:85:be:94:f1:9a:f4:9b:3c:
ff:e3:77:4d:a1:de:18:a6:a2:96:12:57:1f:1e:76:68:41:d0:
40:59:8d:17:c6:b0:f6:20:ab:47:44:ec:e2:32:61:61:e9:8e:
58:5c:8e:5c:73:99:17:25:8a:26:64:18:35:fc:78:a8:15:ce:
b6:10:ad:11:0c:33:3f:57:5f:ac:b8:b5:5c:c2:2b:b8:18:6d:
d2:62:79:38:8e:6e:da:8e:7e:07:b3:d9:8e:ae:b9:b0:bb:1e:
4d:b3:fb:5b:be:b7:87:d6:98:fa:81:d7:0d:d3:e6:c3:ec:ff:
cc:b7:bc:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:48 2024 by rpki-client on console-ams.rpki-client.org