Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/AJdtrIpBoXU32QgcrEJVNosVcng.roa
File: AJdtrIpBoXU32QgcrEJVNosVcng.roa (raw, json)
Hash identifier: EBih89K+2bqitj112aczdMLnlhuMRfQEFqQaHrsURfY=
Subject key identifier: 00:97:6D:AC:8A:41:A1:75:37:D9:08:1C:AC:42:55:36:8B:15:72:78
Certificate issuer: /CN=715b885c3b302fd50e6c22647a33dc47727fea95
Certificate serial: 01856D0AD35DD040289E7E400F513A795042
Authority key identifier: 71:5B:88:5C:3B:30:2F:D5:0E:6C:22:64:7A:33:DC:47:72:7F:EA:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cVuIXDswL9UObCJkejPcR3J_6pU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/AJdtrIpBoXU32QgcrEJVNosVcng.roa
Signing time: Sun 01 Jan 2023 11:15:04 +0000
ROA not before: Sun 01 Jan 2023 11:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16397
IP address blocks: 5.62.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:d3:5d:d0:40:28:9e:7e:40:0f:51:3a:79:50:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=715b885c3b302fd50e6c22647a33dc47727fea95
Validity
Not Before: Jan 1 11:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00976dac8a41a17537d9081cac4255368b157278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:3f:36:cc:72:a2:8b:cb:22:71:7c:ac:e8:e6:
32:c2:1f:2c:e2:d4:0e:4d:c6:2a:f8:6c:43:94:c5:
7e:3b:fe:c3:5e:58:cb:1e:08:33:a0:d7:88:7f:fe:
88:e5:6c:07:7e:3d:c9:36:5a:9e:7e:45:a9:e1:d0:
65:0b:7f:70:b8:29:87:58:7b:f0:b9:a5:8e:3f:cf:
f7:76:2b:5e:cb:58:ea:42:32:01:aa:6c:53:00:0a:
fe:0e:c6:e7:6b:8a:17:45:f7:01:9a:81:fd:8c:b0:
0c:bc:19:ff:71:52:eb:bb:fb:42:30:e0:9c:d1:7b:
80:7c:2c:32:c0:fc:94:d1:7c:00:71:a7:f3:40:4d:
bc:4f:89:cb:71:04:21:82:b2:9f:5e:32:fe:57:ac:
e6:e6:43:76:fc:99:1e:f6:95:aa:58:16:cd:76:02:
05:73:14:01:0d:06:45:86:3d:72:84:0e:3e:8a:e7:
0a:85:65:41:26:67:2c:d4:86:8a:4e:63:b0:0e:ba:
f8:5c:97:af:5f:27:ef:35:e0:8b:dc:6c:71:1c:4f:
39:dc:01:73:0e:56:e1:1e:74:a1:0c:67:65:2a:34:
df:c0:2e:1b:2b:b5:2d:45:a6:3a:65:e4:72:24:89:
d8:51:04:1a:e2:3a:a9:93:20:27:9c:e5:36:f5:73:
14:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:97:6D:AC:8A:41:A1:75:37:D9:08:1C:AC:42:55:36:8B:15:72:78
X509v3 Authority Key Identifier:
keyid:71:5B:88:5C:3B:30:2F:D5:0E:6C:22:64:7A:33:DC:47:72:7F:EA:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cVuIXDswL9UObCJkejPcR3J_6pU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/AJdtrIpBoXU32QgcrEJVNosVcng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/cVuIXDswL9UObCJkejPcR3J_6pU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.51.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:08:70:ed:38:03:40:4a:e5:0c:32:6c:31:94:f5:a4:f0:6e:
a1:65:d1:a1:c6:a4:72:a1:21:7a:8f:14:6a:ba:6e:fd:00:f5:
de:42:97:c6:b3:5d:f9:44:12:bf:d0:43:23:1a:4c:d2:10:bd:
62:be:01:59:f0:71:fa:42:ba:56:07:6c:c7:82:60:2a:db:8b:
87:4d:9c:f9:89:93:07:0a:45:ac:03:4f:a3:99:a0:09:f3:b7:
21:c1:01:7f:14:8d:4b:96:e2:06:34:1d:91:b8:e9:8e:80:d8:
53:b5:13:38:51:d9:33:89:ef:94:d7:1f:bb:a9:86:f7:77:c4:
fa:51:be:2f:51:03:df:6b:7c:de:a6:d4:e6:34:e5:44:a7:bc:
4d:8c:10:f9:2c:41:45:56:ae:fb:00:ab:07:6d:46:3e:18:eb:
a0:0e:7b:fe:1e:61:a1:dc:df:4f:3d:b9:e1:12:f4:51:f1:d2:
1f:b7:85:9d:d8:36:e9:f2:f2:ac:8a:6a:6e:58:31:ab:d8:4c:
7c:15:74:b9:aa:45:2e:bb:06:c8:09:1c:39:68:e3:b2:94:ca:
0a:f2:3b:d0:7f:6d:01:38:c1:14:33:02:2a:43:39:8b:38:e3:
7f:d6:49:83:28:8f:ac:6a:12:17:3d:69:2c:7a:10:ea:9a:8d:
98:cc:0f:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:21 2024 by rpki-client on console-fra.rpki-client.org