Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/o-3k0SDR2cCgel0dWedLkip71uo.roa
File: o-3k0SDR2cCgel0dWedLkip71uo.roa (raw, json)
Hash identifier: 3wwdUdfYaT9cFCafkNqhoAquRMCh9tyia/71Bcgeq/U=
Subject key identifier: A3:ED:E4:D1:20:D1:D9:C0:A0:7A:5D:1D:59:E7:4B:92:2A:7B:D6:EA
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01856F5DC6B497FFFB636BC62B37B04C9CA2
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/o-3k0SDR2cCgel0dWedLkip71uo.roa
Signing time: Sun 01 Jan 2023 22:04:54 +0000
ROA not before: Sun 01 Jan 2023 22:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15910
IP address blocks: 212.183.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:c6:b4:97:ff:fb:63:6b:c6:2b:37:b0:4c:9c:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jan 1 22:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3ede4d120d1d9c0a07a5d1d59e74b922a7bd6ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:52:a1:8f:69:db:a5:0b:17:6e:4d:50:c9:72:
cd:75:36:98:53:73:98:57:ff:ef:19:37:c9:f0:b6:
05:58:2f:c4:3b:de:34:83:c9:ff:22:a6:6e:c4:61:
f4:f2:7a:04:18:ac:47:ae:07:a4:81:b2:66:46:f4:
a7:9a:01:ec:2f:da:6e:83:ac:ed:b3:f0:ff:0a:03:
48:ec:8b:f5:58:33:3f:13:f8:33:34:fb:f7:b2:d6:
f9:81:71:fe:7a:c7:99:15:00:b5:09:98:51:8f:96:
e3:da:b2:f4:2c:e6:65:ce:80:cf:8e:66:6d:ff:3d:
d6:43:ad:06:c6:17:3d:88:d6:2b:13:6c:ac:22:ca:
ec:cd:12:8b:18:db:4c:a6:98:8c:1a:5e:1f:e2:6b:
00:bc:ee:64:b7:94:83:bb:1b:89:d5:ae:75:91:0b:
62:1d:1c:d7:8f:32:72:ea:d5:a7:87:ec:11:45:16:
b3:7b:59:d5:dd:b3:80:d3:f3:5a:19:38:71:ec:22:
d5:86:26:61:39:ec:f7:a5:80:c8:c9:c0:68:ba:ed:
c3:35:0c:c6:ce:d1:dc:03:f7:0e:97:2a:83:97:9c:
6e:2b:70:88:f1:88:22:be:df:78:e9:36:81:e4:62:
d3:1b:63:f8:bc:ac:9b:1e:6c:38:40:13:ea:d9:cb:
6e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:ED:E4:D1:20:D1:D9:C0:A0:7A:5D:1D:59:E7:4B:92:2A:7B:D6:EA
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/o-3k0SDR2cCgel0dWedLkip71uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.183.5.0/24
Signature Algorithm: sha256WithRSAEncryption
40:b9:51:cc:0f:6e:a1:ba:c6:e9:ba:d1:da:db:f2:34:09:86:
71:03:8a:51:52:09:7e:93:96:9e:c6:26:58:e9:1f:86:b9:ab:
a0:59:e7:3d:e2:5d:e5:6f:2f:a4:33:9d:fd:73:a1:e9:95:a2:
4a:0a:ce:65:de:fc:42:a2:2b:9b:cc:13:87:da:9b:14:ff:cc:
66:7e:4a:39:c6:8f:75:f6:10:be:fe:d8:62:86:bd:36:26:87:
e7:36:df:bd:ed:6b:48:b3:41:7b:8d:98:88:65:34:05:e2:16:
0b:bd:f0:16:71:2f:95:15:0b:44:c2:81:9b:ab:b7:d9:49:a4:
2c:30:3c:2b:70:8d:0b:a4:22:2d:59:b1:10:6a:df:fa:60:ae:
f2:24:15:26:46:82:98:fa:33:78:77:fc:ea:79:60:95:77:2f:
9b:50:91:bb:5b:09:85:10:e2:55:05:eb:d1:12:43:55:69:4a:
64:cf:5e:49:27:4c:05:d8:67:f6:07:3e:90:c3:77:39:fb:b1:
6d:f3:f3:f0:62:d4:86:bc:0e:45:87:5a:96:00:4b:b8:13:a4:
89:44:0e:1f:ff:1b:46:c2:70:49:c5:12:6f:59:8c:7f:30:16:
31:1a:bc:6a:ba:a1:7c:e5:cb:3e:bb:53:94:93:81:96:ac:9f:
6e:e6:3a:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:16 2024 by rpki-client on console-ams.rpki-client.org