Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/5wi3W3kFAQoY0Bq3ESprDtDhH1s.roa
File: 5wi3W3kFAQoY0Bq3ESprDtDhH1s.roa (raw, json)
Hash identifier: H8R7IyL6U7QLG8/RzZp7gBxlqLhfYkVziCIai81ETao=
Subject key identifier: E7:08:B7:5B:79:05:01:0A:18:D0:1A:B7:11:2A:6B:0E:D0:E1:1F:5B
Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Certificate serial: 01856C1C76DD63B2AD53CF6113B88129F5EB
Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/5wi3W3kFAQoY0Bq3ESprDtDhH1s.roa
Signing time: Sun 01 Jan 2023 06:54:42 +0000
ROA not before: Sun 01 Jan 2023 06:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210172
IP address blocks: 5.183.111.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:1c:76:dd:63:b2:ad:53:cf:61:13:b8:81:29:f5:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Validity
Not Before: Jan 1 06:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e708b75b7905010a18d01ab7112a6b0ed0e11f5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:62:ed:6d:c7:54:69:f3:44:be:44:08:f8:a3:
56:f4:f0:e1:44:fa:53:91:45:f5:d9:f6:87:99:b8:
66:20:1a:e4:bf:98:b9:f5:0d:10:41:13:36:d8:7c:
56:67:fc:d9:56:6d:ba:96:d6:fd:c7:e5:83:8a:a8:
5e:d5:bb:70:9e:66:61:26:8c:93:4b:43:d8:43:c8:
3e:4e:b2:39:26:1b:b4:04:66:69:cb:c5:12:7b:14:
96:cc:c6:91:8b:85:92:90:0d:f0:72:36:2c:2f:b6:
80:8d:a1:4a:6d:6c:d2:ce:ca:2a:ba:63:61:06:fa:
93:56:e4:9c:67:64:f7:67:c2:39:2a:ec:25:1c:46:
a5:17:d7:88:1a:07:75:af:d1:45:0e:eb:45:9a:29:
cf:4b:65:84:fd:06:57:63:d7:99:e4:37:6a:a3:c9:
87:c6:0d:cb:ca:ca:c2:74:48:f0:43:7a:b0:b1:fb:
6d:42:6b:64:4c:77:43:30:0e:ab:3a:64:6a:1c:5e:
66:86:59:3f:13:50:fc:0a:72:c4:12:dc:7a:50:d4:
5e:01:50:5c:fc:48:9e:dd:7a:59:44:87:8f:df:6b:
a1:c9:32:36:d9:4b:8a:2b:d0:40:84:a7:38:df:f6:
8a:d8:eb:d3:fa:80:52:69:0f:02:45:3f:44:ed:0e:
c9:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:08:B7:5B:79:05:01:0A:18:D0:1A:B7:11:2A:6B:0E:D0:E1:1F:5B
X509v3 Authority Key Identifier:
keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/5wi3W3kFAQoY0Bq3ESprDtDhH1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.111.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:4f:f2:95:9b:c3:7d:fd:5c:44:87:1a:5b:2c:39:f7:82:f7:
ac:76:87:08:fa:45:23:7c:78:01:db:58:20:21:86:0a:9a:f3:
d0:76:8a:15:3f:1a:e7:98:6b:3f:75:5a:37:a3:08:30:d7:f5:
89:1f:8f:8a:24:5d:e4:d2:fc:ee:91:da:67:6a:fc:73:db:4f:
e2:3f:5b:33:f9:e1:ae:57:bf:03:7d:d3:d8:a9:e3:3d:c7:fa:
4e:47:ef:63:4a:41:37:29:b8:7d:05:58:4b:62:25:fa:5f:da:
f9:d1:3f:c2:ea:b0:b6:71:39:06:c0:8d:39:2f:4c:90:c5:ee:
a2:bd:10:24:54:49:ea:ad:6a:27:d1:26:aa:ed:28:c2:20:83:
a1:20:60:be:d5:0c:a4:fc:2c:5a:61:8e:13:30:f7:92:e5:bf:
ca:e9:78:d3:bc:3a:e2:da:0b:ca:89:eb:51:84:84:8b:ee:19:
54:2d:0e:7d:dc:28:b9:d9:10:88:3c:1b:3c:d5:6f:b0:7d:c5:
62:19:90:c6:02:0f:0a:b2:e4:41:bc:6a:f4:1d:91:30:82:41:
eb:83:e2:a5:6e:5a:c7:a3:d1:1b:bd:51:77:83:29:9e:be:b9:
11:9e:b2:bc:f3:07:67:2a:e3:21:c6:50:de:0a:92:0e:c5:b8:
61:90:f7:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:52:27 2024 by rpki-client on console-fra.rpki-client.org