Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/158450-dd43-4b82-ab2b-095e7188d0a0/1/5kL4ROfEaMOd1gamJwjUJE2-5nU.roa
File: 5kL4ROfEaMOd1gamJwjUJE2-5nU.roa (raw, json)
Hash identifier: PWAREZnMo+lCD/SxGYnDU3FiakvBLeRiSe/vZH0Hmsc=
Subject key identifier: E6:42:F8:44:E7:C4:68:C3:9D:D6:06:A6:27:08:D4:24:4D:BE:E6:75
Certificate issuer: /CN=a41d4e978810e9789a76e687a7ddd97526b0d9bc
Certificate serial: 01857115154A5AB993FE9FC206E6C80EE833
Authority key identifier: A4:1D:4E:97:88:10:E9:78:9A:76:E6:87:A7:DD:D9:75:26:B0:D9:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pB1Ol4gQ6XiaduaHp93ZdSaw2bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/158450-dd43-4b82-ab2b-095e7188d0a0/1/5kL4ROfEaMOd1gamJwjUJE2-5nU.roa
Signing time: Mon 02 Jan 2023 06:04:45 +0000
ROA not before: Mon 02 Jan 2023 06:04:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16010
IP address blocks: 185.70.52.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:15:4a:5a:b9:93:fe:9f:c2:06:e6:c8:0e:e8:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a41d4e978810e9789a76e687a7ddd97526b0d9bc
Validity
Not Before: Jan 2 06:04:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e642f844e7c468c39dd606a62708d4244dbee675
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:73:14:db:d7:27:9d:ee:52:9a:e1:4a:85:89:
73:b2:f1:2e:b7:82:ff:c9:35:59:77:3f:3a:05:c3:
90:38:33:db:0b:c9:10:8e:64:e5:07:6f:02:0b:19:
e8:3d:ac:37:22:1d:3f:ca:04:16:71:42:9e:a4:08:
c8:bb:47:01:1b:16:3c:e9:48:cc:67:13:da:27:6c:
97:65:c8:31:85:0e:86:2c:e8:2e:c2:15:95:b2:bf:
19:a7:5f:eb:57:db:d4:10:19:f4:f7:c7:3c:d2:ca:
8b:82:74:0e:ef:9d:e6:72:8b:26:85:6c:57:fa:cc:
7d:65:98:1b:46:5a:3e:9c:3c:0a:08:99:b5:6b:e4:
f6:65:fd:99:34:f9:d5:af:31:2b:8c:63:0e:2c:ae:
06:3a:3b:9c:fb:fe:eb:d2:c9:89:10:4e:7b:81:5f:
be:ae:4d:7d:8c:e8:3f:46:59:36:8b:ba:8d:cb:62:
e9:10:f8:0c:ef:cf:da:6e:95:63:2a:ab:49:7d:05:
da:0b:74:ff:55:9e:c3:61:cc:11:f1:6f:e8:ff:3e:
06:c3:3d:d6:49:28:11:78:24:ff:42:8d:68:b0:df:
cf:3e:a0:10:89:d6:5c:42:e9:1c:69:3e:5b:11:ed:
4a:e5:63:ac:23:56:19:57:bd:59:d9:e8:6d:a0:ef:
9b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:42:F8:44:E7:C4:68:C3:9D:D6:06:A6:27:08:D4:24:4D:BE:E6:75
X509v3 Authority Key Identifier:
keyid:A4:1D:4E:97:88:10:E9:78:9A:76:E6:87:A7:DD:D9:75:26:B0:D9:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pB1Ol4gQ6XiaduaHp93ZdSaw2bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/158450-dd43-4b82-ab2b-095e7188d0a0/1/5kL4ROfEaMOd1gamJwjUJE2-5nU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/158450-dd43-4b82-ab2b-095e7188d0a0/1/pB1Ol4gQ6XiaduaHp93ZdSaw2bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.52.0/22
Signature Algorithm: sha256WithRSAEncryption
07:00:e4:cd:ed:39:8f:7d:07:aa:d9:6f:26:4e:8e:e1:dc:8b:
78:4c:23:b8:8c:c4:a3:91:43:45:09:17:ff:b2:3c:45:b9:b8:
4e:8e:8e:9e:38:ce:ef:96:eb:3d:b1:d9:88:70:47:18:b1:de:
69:11:ee:b8:3e:4c:31:29:91:6a:e5:3a:71:21:c6:bf:58:4f:
82:1d:40:7f:7f:60:0b:ed:c3:a6:9e:75:83:8d:e5:5b:c1:b4:
a6:62:78:b1:9f:64:66:ae:00:d0:a7:68:f5:c4:57:99:10:9f:
3b:27:06:b1:75:ac:66:c1:60:0f:b8:12:f2:57:c8:46:02:af:
cd:54:ed:38:bc:63:da:3e:a0:16:9b:78:b6:dd:4d:43:ef:61:
9d:d5:9f:ea:70:b6:57:63:ff:ac:10:5b:e5:ba:5d:2e:c3:87:
5b:83:95:a4:9c:ae:b5:66:5c:d9:25:b6:d5:5d:f7:3b:3e:db:
b0:f6:59:47:cc:26:33:98:dc:57:d4:01:53:9f:2c:d8:67:64:
48:88:08:65:98:d2:11:dd:9f:39:3e:73:72:b9:80:ad:09:a1:
64:ca:d0:c7:29:f7:a3:9d:b8:18:d8:ae:0b:53:69:04:07:83:
65:60:8d:a3:78:f5:90:42:c4:7e:6e:a6:9a:c4:71:52:46:66:
8e:62:f5:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:45 2024 by rpki-client on console-ams.rpki-client.org