Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/5Xq5u_H35uXYiY47fPEV1qDvl9k.roa
File: 5Xq5u_H35uXYiY47fPEV1qDvl9k.roa (raw, json)
Hash identifier: ATFdUx7LT5HGbuJS/mdtZvSGyWwTiPJYhdU13f7xcT0=
Subject key identifier: E5:7A:B9:BB:F1:F7:E6:E5:D8:89:8E:3B:7C:F1:15:D6:A0:EF:97:D9
Certificate issuer: /CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Certificate serial: 018AAFC34CD8537824D79638E7B6E30671DC
Authority key identifier: D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/5Xq5u_H35uXYiY47fPEV1qDvl9k.roa
Signing time: Tue 19 Sep 2023 23:25:26 +0000
ROA not before: Tue 19 Sep 2023 23:25:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16589
IP address blocks: 198.145.112.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:af:c3:4c:d8:53:78:24:d7:96:38:e7:b6:e3:06:71:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Validity
Not Before: Sep 19 23:25:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e57ab9bbf1f7e6e5d8898e3b7cf115d6a0ef97d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f5:9b:0a:18:91:97:7e:aa:af:a0:6c:fc:24:
47:52:74:4b:9c:93:10:64:90:04:7c:6f:17:ca:62:
07:3f:3b:82:4d:e9:12:f8:7e:04:2e:60:f3:2e:07:
96:12:df:39:7d:5b:e2:78:5b:64:27:1e:b2:7c:88:
f4:eb:4b:17:b0:6c:0e:71:6f:f6:5f:98:1c:5d:f7:
db:60:a6:fd:17:3d:ed:8b:72:64:85:1f:87:ee:f6:
bf:32:24:f9:d7:90:57:39:da:7e:5d:03:8f:55:c2:
0d:13:62:13:6c:46:95:dc:a2:0e:a8:76:74:5e:4f:
98:cf:9e:fd:39:50:51:80:bf:a9:6b:1a:38:0b:16:
42:5a:1e:7e:90:8a:40:5a:25:ed:be:cb:af:f0:bf:
62:b8:e4:48:d2:31:12:ba:9a:18:59:c5:dc:20:e5:
ef:b0:80:7b:51:18:bc:4f:45:81:7c:28:be:25:c0:
07:b4:04:3c:16:ca:06:7f:63:f4:21:88:87:84:4a:
d1:d6:b2:5f:a1:7b:18:f8:ec:8b:45:37:0a:d2:a3:
61:b2:e3:3e:61:25:b1:aa:26:83:b8:2d:b9:aa:59:
23:45:7f:bb:3e:7b:04:eb:ea:44:22:7a:2e:e7:7f:
66:c5:18:e0:09:cf:de:95:7c:f1:b1:18:a1:1a:f2:
ec:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:7A:B9:BB:F1:F7:E6:E5:D8:89:8E:3B:7C:F1:15:D6:A0:EF:97:D9
X509v3 Authority Key Identifier:
keyid:D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/5Xq5u_H35uXYiY47fPEV1qDvl9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
198.145.112.0/22
Signature Algorithm: sha256WithRSAEncryption
52:f6:20:60:88:df:c6:aa:79:28:7b:4e:e4:4e:99:40:54:82:
31:88:83:fc:78:22:a5:79:cd:c4:38:a4:18:e0:31:45:cd:31:
32:a0:ae:33:b3:28:fe:4d:df:f0:b3:3a:a5:52:2a:17:a4:0e:
e4:b2:68:07:f8:9a:2c:cb:83:7e:84:40:69:df:a8:79:93:ec:
21:08:8e:54:4a:82:42:43:fc:0d:28:cf:f4:6e:6a:e0:34:44:
2b:c4:4b:bd:32:4d:22:f6:46:1b:a6:fe:99:af:ef:48:b9:b7:
c7:41:74:1f:cd:e0:55:ce:6a:d1:da:e3:21:0d:94:6e:ab:86:
5a:13:80:a6:bb:9d:aa:b2:1b:ae:40:15:74:20:9c:07:25:0b:
be:bb:6e:d1:59:76:02:7d:86:83:05:71:0e:bb:13:45:0c:28:
7d:db:ff:3b:0c:c5:31:17:57:db:b9:c1:82:af:24:d2:57:42:
c3:e6:1c:7f:f7:0c:26:ef:92:92:8c:3b:b4:b3:6d:09:ea:8c:
35:55:e2:ed:47:e9:11:30:b8:ce:a8:54:d8:d8:07:d9:dd:bb:
e1:27:17:14:cb:dc:52:3e:56:92:97:62:35:b7:bf:48:87:17:
e1:e3:10:58:14:e1:5d:62:27:3a:31:94:d9:63:e0:76:e1:86:
43:75:13:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 1 10:49:03 2023 by rpki-client on console-ams.rpki-client.org