Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/tm9MDiZ5RAM7aMIH3jXbyejVy1s.roa
File: tm9MDiZ5RAM7aMIH3jXbyejVy1s.roa (raw, json)
Hash identifier: s9zlxd9OCrNbyxk/ucyZQxJ/j3vq0cGRwejau84ST0M=
Subject key identifier: B6:6F:4C:0E:26:79:44:03:3B:68:C2:07:DE:35:DB:C9:E8:D5:CB:5B
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 018972C038EE85E05814EB87F9FCC0D617BE
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/tm9MDiZ5RAM7aMIH3jXbyejVy1s.roa
Signing time: Thu 20 Jul 2023 10:02:27 +0000
ROA not before: Thu 20 Jul 2023 10:02:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48763
IP address blocks: 217.171.147.0/24 maxlen: 24
5.44.41.0/24 maxlen: 24
5.44.40.0/24 maxlen: 24
194.28.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:72:c0:38:ee:85:e0:58:14:eb:87:f9:fc:c0:d6:17:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Jul 20 10:02:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b66f4c0e267944033b68c207de35dbc9e8d5cb5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:00:04:54:3d:0b:b0:08:f7:43:4b:b4:e7:69:
8d:6f:e6:f4:c0:aa:63:6c:ae:96:01:a9:68:5b:2d:
66:e5:55:8a:94:34:c3:01:53:99:ec:a0:de:c7:1f:
50:91:8b:ed:a6:73:42:e9:e3:0b:33:2f:f2:c7:21:
f7:f2:f9:f2:09:8f:42:36:c5:93:a6:d6:58:52:75:
13:8a:23:c5:8a:2f:3b:15:92:99:cf:50:f0:77:15:
ba:09:13:cd:ee:16:ed:7f:fd:c5:39:e7:e4:bb:de:
6e:1d:bc:83:4c:08:ec:5c:47:a5:97:90:37:41:89:
b5:86:88:c2:36:16:99:a3:ad:7a:75:7e:dd:5e:50:
75:7e:26:7d:e6:0f:1a:08:59:6c:7c:a9:94:92:19:
07:7f:61:ca:82:bc:e1:f7:fa:b4:7b:56:41:18:7a:
83:a7:0c:21:dd:94:c9:28:ab:3b:3e:f7:f7:59:85:
3c:6a:82:7d:13:47:00:63:07:a2:32:08:4c:7d:ba:
02:5e:ac:22:6d:27:af:6f:5c:fb:7c:81:5f:68:95:
34:cb:ea:66:28:f9:af:c1:60:66:96:14:dc:41:a6:
e1:5b:31:57:09:f3:0a:44:ac:4f:b9:47:18:ab:b9:
b8:01:0b:7f:19:23:d2:2f:ad:fa:8b:f9:7c:92:0d:
bf:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:6F:4C:0E:26:79:44:03:3B:68:C2:07:DE:35:DB:C9:E8:D5:CB:5B
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/tm9MDiZ5RAM7aMIH3jXbyejVy1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.40.0/23
194.28.193.0/24
217.171.147.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:a3:ba:53:b1:15:6a:cc:d6:bc:3c:1f:75:39:fb:29:fa:28:
76:3e:ad:93:e5:0f:04:cd:61:5d:6d:bc:f4:24:6d:a9:ca:ee:
b1:54:65:09:6b:76:25:d3:1b:99:69:d2:23:33:24:05:25:5a:
be:68:2b:cb:19:1d:04:71:7a:0c:a5:ca:da:63:07:85:40:6c:
3c:1e:63:6b:26:ce:1f:a5:da:db:d2:08:67:e2:23:42:a8:03:
08:9e:3a:62:54:f6:7b:aa:6c:b2:00:10:d1:41:37:74:cd:cc:
4d:34:95:5b:7e:54:f0:8c:4a:6f:2d:8e:bd:a9:b7:47:f4:6f:
42:5b:92:b7:e5:50:32:9f:ef:da:a3:85:10:59:8c:e8:31:2d:
23:bf:68:60:05:12:b7:95:58:c1:bb:a6:de:9a:0c:1a:51:84:
f8:59:99:f7:9b:3d:00:3f:f1:ad:29:59:ea:ab:f6:34:95:71:
41:dd:80:c6:eb:21:ec:f7:72:c6:49:92:27:d2:ae:1c:db:22:
49:f5:97:1e:d8:3d:18:1d:bb:43:7a:26:5d:b5:39:1f:6c:57:
29:08:b0:7e:4d:84:99:f7:69:47:7d:c3:cc:41:52:43:4c:d6:
9b:5f:cb:0e:97:a9:b2:e2:9f:66:be:9a:8a:e6:29:43:32:b0:
52:6c:53:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:15 2024 by rpki-client on console-ams.rpki-client.org