Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/486c96-8e0f-4161-a00e-b8ea18eb75f4/1/FDy9tEp7sCyIvozTWb8TAuFcSlg.roa
File: FDy9tEp7sCyIvozTWb8TAuFcSlg.roa (raw, json)
Hash identifier: Vt3eahwOf/Nyd90Gr9XownfeSxvgOyXK76Dvr/A3yBs=
Subject key identifier: 14:3C:BD:B4:4A:7B:B0:2C:88:BE:8C:D3:59:BF:13:02:E1:5C:4A:58
Certificate issuer: /CN=c6a707934a762bbdf34fc0148f265ce124577213
Certificate serial: 018A1E188DA136FD6CE3A092570FE56E03B9
Authority key identifier: C6:A7:07:93:4A:76:2B:BD:F3:4F:C0:14:8F:26:5C:E1:24:57:72:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xqcHk0p2K73zT8AUjyZc4SRXchM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/486c96-8e0f-4161-a00e-b8ea18eb75f4/1/FDy9tEp7sCyIvozTWb8TAuFcSlg.roa
Signing time: Tue 22 Aug 2023 16:34:00 +0000
ROA not before: Tue 22 Aug 2023 16:34:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206264
IP address blocks: 5.252.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1e:18:8d:a1:36:fd:6c:e3:a0:92:57:0f:e5:6e:03:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6a707934a762bbdf34fc0148f265ce124577213
Validity
Not Before: Aug 22 16:34:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=143cbdb44a7bb02c88be8cd359bf1302e15c4a58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3f:21:55:54:59:95:fd:fd:98:bb:b8:70:42:
a2:71:ae:0f:e5:57:09:11:5f:95:ae:00:6b:de:43:
1e:42:f7:08:ae:f2:fe:dd:ba:92:be:37:6a:6a:ef:
b0:6c:9f:ac:d3:9b:d2:30:fa:87:ec:5e:85:f4:c2:
56:d4:4f:b1:40:05:10:8c:14:c7:81:2f:f4:99:7d:
00:a0:b2:21:54:a2:a8:5b:c5:19:68:03:b6:00:2b:
26:e9:ad:7a:c9:60:97:ad:23:7a:77:78:98:69:d1:
41:8d:44:cb:a8:1c:ce:d3:9f:fe:4e:f7:8a:01:ee:
fc:37:ac:24:6b:35:a8:e9:ba:3e:ac:05:40:d3:c1:
d2:bf:d0:e9:31:2c:09:61:41:3a:87:04:dc:29:08:
a7:9c:11:b9:bd:9b:d0:a2:04:c5:46:da:fd:83:53:
18:20:b5:d6:f5:fa:30:66:13:ab:2d:a8:04:81:55:
8d:9f:1c:75:e0:56:d4:4d:04:a5:b0:ec:7c:25:ed:
6a:4a:c9:06:62:c8:b8:f7:74:be:c4:6d:c2:42:2b:
29:09:0c:ee:6d:d5:6e:96:20:e3:1d:a5:63:0f:f9:
5a:48:9e:ca:0a:13:74:ed:73:e7:48:67:39:09:63:
f0:e1:cd:4d:6d:49:63:eb:b3:7f:1e:82:d4:7b:d1:
c6:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:3C:BD:B4:4A:7B:B0:2C:88:BE:8C:D3:59:BF:13:02:E1:5C:4A:58
X509v3 Authority Key Identifier:
keyid:C6:A7:07:93:4A:76:2B:BD:F3:4F:C0:14:8F:26:5C:E1:24:57:72:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xqcHk0p2K73zT8AUjyZc4SRXchM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/486c96-8e0f-4161-a00e-b8ea18eb75f4/1/FDy9tEp7sCyIvozTWb8TAuFcSlg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/486c96-8e0f-4161-a00e-b8ea18eb75f4/1/xqcHk0p2K73zT8AUjyZc4SRXchM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.155.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:66:4d:43:e0:d9:67:17:a7:3b:d3:04:3d:a7:ea:f8:c1:ee:
96:07:6e:c6:d4:bb:0a:3b:e8:7a:b8:a7:ef:af:ff:08:5f:83:
40:68:a7:b4:50:e4:0e:84:59:ef:23:4c:11:58:59:dd:37:87:
60:bc:37:7f:43:40:45:6e:ac:51:fa:cc:a0:ba:2e:5a:c0:74:
6e:7a:f3:48:85:94:2a:6e:df:dc:e8:7f:39:8a:fb:13:b9:c6:
b9:b6:cc:b2:6a:f4:f1:77:cc:0b:ce:d4:35:7a:2c:e6:65:23:
e7:75:17:41:e9:91:0e:ad:2e:b2:88:c6:a8:5a:e4:b3:15:47:
6b:4b:71:a8:8d:4b:05:09:ee:ef:86:ac:ce:91:e4:26:d7:36:
b6:72:48:f2:e5:3f:9e:00:cb:24:1d:56:67:df:12:fe:73:26:
3b:58:bc:0b:31:5f:d4:88:64:43:bd:57:2a:7d:43:bd:15:37:
91:18:ca:6e:71:79:c1:4a:12:0c:06:f7:73:03:87:f0:e7:be:
fb:c2:50:14:03:5c:a6:99:98:3b:10:cf:bd:cf:7b:fc:56:12:
03:8b:49:6d:b6:89:6f:c3:1c:c4:df:c3:12:26:26:33:d8:83:
99:aa:e7:3a:56:7f:a3:e6:09:28:c1:c8:fe:04:8f:9d:f4:6d:
cc:a6:6d:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:41 2024 by rpki-client on console-fra.rpki-client.org