Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/3c2676-9245-4b3c-bb7f-8a29120750bf/1/5JIoccrjGLauqEI4amJJKyHlxKE.roa
File: 5JIoccrjGLauqEI4amJJKyHlxKE.roa (raw, json)
Hash identifier: j8L7AlVcL4YGH85JI6afbf7g75+KnUtxCLa5+EI/fHw=
Subject key identifier: E4:92:28:71:CA:E3:18:B6:AE:A8:42:38:6A:62:49:2B:21:E5:C4:A1
Certificate issuer: /CN=5ae7953e9459dc09486f0ddc59f2a405b5669250
Certificate serial: 01856CE5E5E24204562EE7769D2ACCD8A807
Authority key identifier: 5A:E7:95:3E:94:59:DC:09:48:6F:0D:DC:59:F2:A4:05:B5:66:92:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WueVPpRZ3AlIbw3cWfKkBbVmklA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/3c2676-9245-4b3c-bb7f-8a29120750bf/1/5JIoccrjGLauqEI4amJJKyHlxKE.roa
Signing time: Sun 01 Jan 2023 10:34:43 +0000
ROA not before: Sun 01 Jan 2023 10:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213366
IP address blocks: 2001:67c:a50::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e5:e5:e2:42:04:56:2e:e7:76:9d:2a:cc:d8:a8:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae7953e9459dc09486f0ddc59f2a405b5669250
Validity
Not Before: Jan 1 10:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4922871cae318b6aea842386a62492b21e5c4a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a3:a9:ce:78:eb:0b:72:25:69:ce:31:2a:29:
75:b3:d7:51:ca:f3:83:ea:17:44:df:6f:fd:46:9d:
05:58:09:c1:d3:8f:43:16:28:11:05:83:4f:71:76:
fc:28:68:91:15:fd:5e:dd:8d:5b:1e:48:da:88:65:
f0:23:66:18:60:a5:28:25:04:5e:0a:94:60:40:4a:
c1:b2:80:12:74:bb:96:e7:3e:5a:86:f5:1d:85:5e:
5f:b8:20:56:b3:1f:27:ae:c4:43:ee:1b:13:65:b4:
e9:fc:5b:e4:9a:b5:f8:88:6a:40:a1:4d:32:6f:56:
a6:85:e8:f0:01:70:4e:7d:0a:a0:58:41:85:5b:b4:
b1:84:ef:7c:bf:f1:08:1d:c0:bc:aa:6c:5a:a1:c5:
d3:e8:15:e3:3d:e9:71:59:c8:a6:ce:a4:0e:55:dd:
c1:50:e7:29:fa:80:ce:ea:80:6f:4e:cd:54:6c:cd:
d9:ab:5b:0a:51:a8:1e:61:e4:c2:24:8b:89:ff:5c:
ee:03:8f:65:ad:45:8e:2b:d2:27:aa:a1:63:79:fe:
06:d5:6c:9a:1f:ce:17:d6:cc:14:72:43:95:ee:0a:
db:c2:80:f2:dd:7b:dc:3a:7c:68:7c:ff:0d:17:3b:
b9:86:6b:38:04:af:65:63:bb:b6:67:9e:95:c1:93:
d0:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:92:28:71:CA:E3:18:B6:AE:A8:42:38:6A:62:49:2B:21:E5:C4:A1
X509v3 Authority Key Identifier:
keyid:5A:E7:95:3E:94:59:DC:09:48:6F:0D:DC:59:F2:A4:05:B5:66:92:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WueVPpRZ3AlIbw3cWfKkBbVmklA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/3c2676-9245-4b3c-bb7f-8a29120750bf/1/5JIoccrjGLauqEI4amJJKyHlxKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/3c2676-9245-4b3c-bb7f-8a29120750bf/1/WueVPpRZ3AlIbw3cWfKkBbVmklA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:a50::/48
Signature Algorithm: sha256WithRSAEncryption
a1:73:1f:29:cd:f7:5b:5d:cc:af:6b:2a:20:b5:2f:fb:50:d3:
1f:8a:fd:b7:f9:eb:be:a5:13:61:24:69:65:ee:84:a6:d8:55:
32:5b:87:c4:c9:6b:81:e2:99:3e:89:d8:64:42:1d:4f:20:6c:
ca:ba:b0:69:a4:01:f7:d8:10:1f:31:8d:dc:45:98:cb:1d:9e:
f0:28:e5:ea:ec:96:88:a7:f0:67:f3:6e:0d:6f:07:9b:41:2d:
2d:26:e8:6e:9b:a6:bd:0a:ff:ab:35:85:96:8d:c2:b7:2a:f4:
19:f0:e7:42:e3:3d:40:dc:cb:74:61:b2:82:c4:ec:75:6b:60:
bf:96:16:80:82:e2:bc:93:37:82:94:92:17:31:14:a8:d0:65:
88:f1:46:da:65:73:ac:79:14:ce:f1:59:b3:33:1f:f6:04:d0:
8c:d7:b0:14:1d:6e:8f:bd:93:3a:4a:78:8e:51:88:4c:f5:0d:
1d:2f:03:93:e6:6d:c4:d7:22:49:71:cc:cb:52:a7:7e:6a:8b:
6f:b3:c0:fb:61:71:ef:d3:d3:84:35:3c:52:94:e9:a4:ca:f9:
ba:ad:ad:52:a6:b6:17:10:72:71:a8:ab:a8:a5:49:39:41:ab:
59:24:85:14:26:6c:bd:86:32:01:81:23:bc:11:e6:c5:f9:0d:
d0:2e:55:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:05 2024 by rpki-client on console-ams.rpki-client.org