Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/f4S7QwmuUsFeQN7SoOnHpAbfKLI.roa
File: f4S7QwmuUsFeQN7SoOnHpAbfKLI.roa (raw, json)
Hash identifier: J3srveG21GngYiCZcgxwSBUlp0Fj9pSC1+PgFUF9WSo=
Subject key identifier: 7F:84:BB:43:09:AE:52:C1:5E:40:DE:D2:A0:E9:C7:A4:06:DF:28:B2
Certificate issuer: /CN=2631166de785a3531bdc8361f1190a8369a7ed6a
Certificate serial: 018571C30073E83A22616AEF85966873D78F
Authority key identifier: 26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/f4S7QwmuUsFeQN7SoOnHpAbfKLI.roa
Signing time: Mon 02 Jan 2023 09:14:43 +0000
ROA not before: Mon 02 Jan 2023 09:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 5.255.84.0/24 maxlen: 24
5.255.83.0/24 maxlen: 24
2a00:1ca8:d4::/48 maxlen: 48
2a00:1ca8:9c::/48 maxlen: 48
2a03:3f40:2::/48 maxlen: 48
2a00:1ca8:45::/48 maxlen: 48
2a00:1ca8:d3::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 31 Jul 2023 11:43:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:c3:00:73:e8:3a:22:61:6a:ef:85:96:68:73:d7:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2631166de785a3531bdc8361f1190a8369a7ed6a
Validity
Not Before: Jan 2 09:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f84bb4309ae52c15e40ded2a0e9c7a406df28b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:44:5c:7d:c2:89:3e:76:04:76:e3:18:00:81:
e6:84:64:14:64:16:d6:8a:19:0b:79:c0:ed:6b:29:
7d:75:20:aa:08:ce:c7:9d:1f:ad:cd:51:ea:6c:9a:
c6:18:53:43:c2:70:c7:7b:00:7c:37:8f:28:9c:3b:
c3:bb:59:c8:25:99:6d:5e:c9:38:d5:16:f6:79:fd:
d8:dc:7f:57:64:c6:ab:78:bd:0c:98:4f:4d:5b:1c:
4e:4b:a7:83:04:cb:76:8a:2e:bd:ca:ee:81:48:2a:
ab:02:f6:6e:33:a1:7d:6f:c1:2e:51:22:42:ff:4c:
d9:2c:4b:d6:5b:b8:c2:9e:c0:0b:26:9b:24:2d:f3:
73:bb:c6:37:c2:56:c6:c3:02:2a:98:02:ff:64:41:
d9:75:ed:61:6f:0b:bd:1d:f5:85:f6:ca:e1:e2:22:
83:c2:65:af:ad:43:ac:bb:68:3e:fa:b8:ff:79:33:
2b:b6:67:d5:e5:08:27:a9:aa:3a:08:89:94:62:f5:
5b:21:1a:c7:45:c8:e2:e2:8c:56:3f:06:c6:37:9c:
01:72:6d:93:6f:ed:ff:db:50:d9:b0:86:57:5c:18:
b2:97:14:aa:35:f7:b1:12:3b:e8:a5:43:36:ed:d2:
8f:5b:44:2d:2f:5b:ef:4c:82:29:8f:d6:05:e3:0d:
8a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:84:BB:43:09:AE:52:C1:5E:40:DE:D2:A0:E9:C7:A4:06:DF:28:B2
X509v3 Authority Key Identifier:
keyid:26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/f4S7QwmuUsFeQN7SoOnHpAbfKLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.255.83.0-5.255.84.255
IPv6:
2a00:1ca8:45::/48
2a00:1ca8:9c::/48
2a00:1ca8:d3::-2a00:1ca8:d4:ffff:ffff:ffff:ffff:ffff
2a03:3f40:2::/48
Signature Algorithm: sha256WithRSAEncryption
30:17:75:28:eb:bc:21:3e:be:a1:1f:b3:db:8d:1c:cd:04:0d:
12:2a:d9:1c:ee:ae:8b:8f:1e:5f:da:9c:91:b4:0f:51:9e:44:
51:92:e9:1b:98:db:a9:2c:0d:59:b7:b1:94:df:8a:82:cd:a9:
bc:04:ef:2d:04:70:c7:25:92:79:61:ad:3c:d4:4c:da:55:74:
46:0a:57:87:d7:4d:42:85:cf:a4:f3:2a:dd:24:c5:a0:77:f3:
94:83:bb:39:65:1d:ad:2a:a1:12:15:6a:75:2b:10:ff:40:11:
b2:44:3a:bf:3d:ce:0d:4f:5d:28:1f:06:11:58:61:fe:35:8d:
52:1c:dc:4d:c9:85:8e:e2:8c:94:ba:2e:ec:9b:84:3a:a2:6c:
d3:46:49:a2:42:22:34:7b:48:c6:dd:b0:d0:3a:fd:dc:a9:b6:
77:2b:45:42:ab:4b:c9:a7:40:a2:ee:13:2a:0e:c0:15:ed:53:
bb:06:93:10:42:4d:b5:11:02:62:28:45:65:47:2a:01:7f:f2:
f6:34:10:9f:28:1a:e1:95:aa:13:cf:bf:ca:95:99:8f:6e:44:
89:6a:36:54:9d:e1:b5:4e:9e:5b:da:63:a1:d1:bd:56:6d:64:
51:82:30:eb:1f:cf:a3:8f:55:f8:51:d7:e9:88:e3:c0:ed:9b:
c4:82:81:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:26 2024 by rpki-client on console-ams.rpki-client.org