Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/tTk25yXzN6q0FxVON3UAMLhcapI.roa
File: tTk25yXzN6q0FxVON3UAMLhcapI.roa (raw, json)
Hash identifier: ubsGbyzg8mqEk2M9UVICveK7yWdPhmLrAXjW2bqjJ34=
Subject key identifier: B5:39:36:E7:25:F3:37:AA:B4:17:15:4E:37:75:00:30:B8:5C:6A:92
Certificate issuer: /CN=715b885c3b302fd50e6c22647a33dc47727fea95
Certificate serial: 018C20A34CDFB80863B2EB42D5D0E8E9A886
Authority key identifier: 71:5B:88:5C:3B:30:2F:D5:0E:6C:22:64:7A:33:DC:47:72:7F:EA:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cVuIXDswL9UObCJkejPcR3J_6pU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/tTk25yXzN6q0FxVON3UAMLhcapI.roa
Signing time: Thu 30 Nov 2023 14:30:22 +0000
ROA not before: Thu 30 Nov 2023 14:30:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 5.62.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:20:a3:4c:df:b8:08:63:b2:eb:42:d5:d0:e8:e9:a8:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=715b885c3b302fd50e6c22647a33dc47727fea95
Validity
Not Before: Nov 30 14:30:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b53936e725f337aab417154e37750030b85c6a92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:83:9f:70:cf:66:22:cf:1f:2f:41:d1:d1:fa:
63:9a:b7:d9:3d:c6:de:92:ba:e6:45:1a:ff:af:5b:
a3:ea:a2:62:98:9a:d3:e4:6f:85:59:76:b5:64:60:
11:d6:cb:78:0d:43:dc:a4:93:a8:9f:21:a6:9a:33:
1d:17:c1:e9:80:9f:04:3b:d6:60:27:5c:3d:04:e0:
21:2e:37:ea:a5:44:aa:ea:90:0a:bc:7a:f2:fb:fd:
b3:f1:09:da:0c:c2:25:8b:85:6e:3e:69:71:d8:b0:
13:c6:1e:1d:13:02:c2:35:ca:4c:ed:45:9c:dd:01:
40:fe:db:b3:f0:40:33:f0:74:34:08:30:cf:08:e1:
13:ce:73:5b:05:a4:52:85:9a:74:57:01:ec:81:7d:
f3:e4:5f:27:47:27:f1:d5:7c:00:76:43:da:43:87:
88:95:97:b7:40:53:9e:28:6d:44:3e:07:8a:2a:a5:
c2:5e:89:d7:2c:2b:62:a4:bb:6c:b8:d5:92:6d:3a:
2c:a5:14:91:e0:f4:d1:e5:19:04:6d:c1:68:29:4b:
40:c1:c9:d0:8b:49:58:60:2e:78:9d:a1:cb:15:dc:
c7:92:de:20:1b:bd:7a:de:3f:18:fa:49:b5:b0:d9:
85:aa:66:c7:ef:ae:72:3f:ee:63:ec:32:90:cc:0e:
c8:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:39:36:E7:25:F3:37:AA:B4:17:15:4E:37:75:00:30:B8:5C:6A:92
X509v3 Authority Key Identifier:
keyid:71:5B:88:5C:3B:30:2F:D5:0E:6C:22:64:7A:33:DC:47:72:7F:EA:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cVuIXDswL9UObCJkejPcR3J_6pU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/tTk25yXzN6q0FxVON3UAMLhcapI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/cVuIXDswL9UObCJkejPcR3J_6pU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.21.0/24
Signature Algorithm: sha256WithRSAEncryption
59:6f:e9:66:16:2d:da:35:48:fe:83:1f:e6:58:28:e3:75:e5:
4e:11:59:f3:3b:8f:fb:1d:9a:c8:5b:1b:a2:af:9c:1c:b7:3a:
98:51:61:d2:98:18:03:66:18:61:6d:64:96:e8:76:5d:87:39:
11:89:8d:9b:1d:18:bd:e2:32:cb:47:a3:33:02:69:d4:00:29:
cc:b6:59:82:56:77:cc:97:c4:e7:8b:be:05:be:5c:b6:cc:75:
a2:ff:4b:de:ec:c8:e2:75:0e:01:c4:74:b7:31:72:3d:7a:3b:
1c:e9:07:44:96:39:2e:e6:24:cb:c6:39:8f:78:06:6a:bf:a7:
35:1c:2d:bd:d0:70:67:a2:8d:5a:88:ea:5b:28:3a:68:ba:15:
38:8e:33:75:12:75:2e:15:52:b7:9f:d6:69:ba:64:ab:10:be:
3d:ac:8a:16:4a:42:33:9b:fc:e2:7a:57:5e:67:bd:a2:a9:4b:
be:a3:a1:19:99:72:05:d0:84:82:61:b5:7c:f1:5d:3a:74:a3:
d7:8d:d7:c3:56:dc:33:bc:b6:97:fc:30:69:9f:20:7c:61:1a:
d9:7f:65:00:f2:2e:be:25:41:bb:50:69:44:ca:49:c5:65:2f:
4e:b6:00:d5:f2:6f:83:10:1a:e8:da:57:d9:75:aa:a8:f5:36:
d7:5b:f9:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:36 2024 by rpki-client on console-ams.rpki-client.org