Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/486c96-8e0f-4161-a00e-b8ea18eb75f4/1/hsettAfCXsX7PXqeypyV8HtVJjA.roa
File: hsettAfCXsX7PXqeypyV8HtVJjA.roa (raw, json)
Hash identifier: jeuqr/e7TQXD9KD2JGuZjYXYNfSX7pQbgoH1ZrdcdaE=
Subject key identifier: 86:C7:AD:B4:07:C2:5E:C5:FB:3D:7A:9E:CA:9C:95:F0:7B:55:26:30
Certificate issuer: /CN=c6a707934a762bbdf34fc0148f265ce124577213
Certificate serial: 01869C2DFFD20EFF7210EC854E5B74D8F514
Authority key identifier: C6:A7:07:93:4A:76:2B:BD:F3:4F:C0:14:8F:26:5C:E1:24:57:72:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xqcHk0p2K73zT8AUjyZc4SRXchM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/486c96-8e0f-4161-a00e-b8ea18eb75f4/1/hsettAfCXsX7PXqeypyV8HtVJjA.roa
Signing time: Wed 01 Mar 2023 07:58:25 +0000
ROA not before: Wed 01 Mar 2023 07:58:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47890
IP address blocks: 5.252.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Jul 2023 07:18:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9c:2d:ff:d2:0e:ff:72:10:ec:85:4e:5b:74:d8:f5:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6a707934a762bbdf34fc0148f265ce124577213
Validity
Not Before: Mar 1 07:58:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86c7adb407c25ec5fb3d7a9eca9c95f07b552630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:0f:8a:23:6b:69:64:fa:59:71:6c:ed:07:9c:
72:3e:f0:88:a2:27:3b:a3:5b:be:a9:f6:3f:2e:72:
08:64:3b:c5:64:cc:d5:3b:06:2f:b7:47:e3:43:14:
11:fa:45:5e:32:a0:6d:6f:6a:39:e2:44:ce:1c:20:
a8:81:89:88:db:ba:0e:da:00:ed:e9:ec:ad:b8:50:
89:85:0a:c4:0e:02:d1:36:2d:ba:c6:25:66:64:a0:
d5:78:7c:1d:4f:e3:d9:26:35:94:5b:5a:a6:43:f3:
d2:15:d0:f9:e3:d0:8e:ff:44:6c:65:62:b1:69:70:
56:1a:72:11:60:44:6d:4c:5d:ec:c1:f6:4a:7b:b1:
62:ac:f8:ef:bf:4b:a4:02:5b:53:7a:51:8b:c3:af:
0e:6a:7e:a8:f7:cf:d9:28:ce:5b:e8:4a:e1:c5:89:
34:0d:cc:d8:d4:5c:dc:ce:ac:e0:fc:30:c3:69:ca:
f6:ca:dd:5a:88:8f:71:18:f4:2a:7d:36:d2:fc:55:
0e:d8:33:cf:42:9b:50:b7:0f:1f:e3:01:39:16:99:
11:a6:eb:1b:d0:57:a6:71:43:97:e7:de:cc:b6:ba:
a3:50:8e:7b:c3:ca:ae:02:8e:b5:34:44:65:ce:5c:
2e:67:05:63:13:c8:cd:a2:a4:e6:bf:62:a9:6e:7f:
90:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:C7:AD:B4:07:C2:5E:C5:FB:3D:7A:9E:CA:9C:95:F0:7B:55:26:30
X509v3 Authority Key Identifier:
keyid:C6:A7:07:93:4A:76:2B:BD:F3:4F:C0:14:8F:26:5C:E1:24:57:72:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xqcHk0p2K73zT8AUjyZc4SRXchM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/486c96-8e0f-4161-a00e-b8ea18eb75f4/1/hsettAfCXsX7PXqeypyV8HtVJjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/486c96-8e0f-4161-a00e-b8ea18eb75f4/1/xqcHk0p2K73zT8AUjyZc4SRXchM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.155.0/24
Signature Algorithm: sha256WithRSAEncryption
79:9b:6d:bc:20:9d:c1:20:c0:06:c0:41:f2:ba:ff:a3:f6:af:
b8:f4:da:f8:ab:4f:3b:be:dc:76:3b:ce:76:12:7c:57:c8:cc:
bd:54:70:b8:30:96:b6:72:29:d2:4c:de:b5:ed:01:f4:44:87:
74:82:0f:99:77:8a:f6:c1:3e:f3:82:c5:4b:9a:58:16:dc:06:
29:6d:a3:a4:ec:ca:a2:0f:5a:44:70:66:c6:c2:0d:f7:6e:6f:
50:fd:84:67:03:db:6c:b1:cd:a5:ad:a5:d8:cb:21:1a:9f:30:
60:d2:9f:6f:bc:98:9a:3d:5d:96:50:dc:60:7e:43:c8:ce:7d:
fe:d0:62:5d:2f:2f:9d:29:14:e7:b7:1c:a6:65:53:1d:ab:a0:
ae:4b:02:45:68:66:82:30:2e:9d:62:3c:ae:a8:03:aa:43:fa:
b7:f1:7a:98:e3:db:88:cf:4c:ba:db:3b:2d:12:5c:d0:ef:ae:
f8:2f:e0:71:0f:86:b5:01:88:6d:58:f1:01:10:b1:c6:b2:6f:
6d:e6:71:90:72:76:ef:3c:05:03:77:09:39:f4:4e:60:b3:d9:
25:3c:73:c0:25:84:13:86:39:1f:e3:e7:90:b8:96:e2:0a:c3:
5e:01:6e:62:3b:ff:5b:11:12:32:e8:7a:ea:7d:1a:e1:b5:cb:
30:5d:59:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:32 2024 by rpki-client on console-ams.rpki-client.org