Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/5iAgC2DRVDwKsW6oP0fxFD06LJ4.roa
File: 5iAgC2DRVDwKsW6oP0fxFD06LJ4.roa (raw, json)
Hash identifier: P3X6W9jeyPv0rv68THMriVKq7Pit4keIvJvA4nh+yXk=
Subject key identifier: E6:20:20:0B:60:D1:54:3C:0A:B1:6E:A8:3F:47:F1:14:3D:3A:2C:9E
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018CC56E04334EE062B38FA35E7EE71D0F1F
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/5iAgC2DRVDwKsW6oP0fxFD06LJ4.roa
Signing time: Mon 01 Jan 2024 14:29:30 +0000
ROA not before: Mon 01 Jan 2024 14:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211439
IP address blocks: 171.22.220.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Feb 2024 10:52:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:04:33:4e:e0:62:b3:8f:a3:5e:7e:e7:1d:0f:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 1 14:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e620200b60d1543c0ab16ea83f47f1143d3a2c9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:5b:9e:4a:7a:aa:86:6b:db:da:61:70:6f:79:
ce:d7:f7:15:90:03:0d:7d:36:62:c6:a5:9e:74:16:
93:6b:68:d9:a1:72:6c:f0:d5:1e:04:f7:02:40:74:
53:93:e4:a1:33:6f:73:90:90:82:9b:cf:03:08:98:
32:ab:2b:df:02:39:73:51:90:61:7e:61:79:65:20:
bb:5f:9d:17:49:42:3f:07:ab:0d:82:e9:88:bc:82:
9c:d3:5f:5b:af:43:27:7d:b1:af:2b:87:39:af:16:
65:95:26:cf:88:52:8c:db:cc:c9:a8:31:78:01:be:
66:47:b5:18:20:f2:c8:b9:27:73:56:34:4e:a2:bb:
97:bd:7d:8e:e5:8d:1e:d5:f6:2f:fd:55:8b:2a:a1:
0d:eb:c4:2b:a9:4c:fc:ad:f5:e0:7e:e8:04:87:c7:
ac:81:c0:21:5e:77:0c:97:d7:37:9b:07:ce:c6:05:
16:d9:ac:a3:0e:3a:62:33:e0:26:94:61:50:6d:c0:
0f:b6:b7:27:4a:a0:8c:1e:76:f2:a7:ff:1a:2d:e4:
57:00:8b:18:b7:cb:54:1e:f4:e8:dc:d1:b3:e7:71:
a7:03:49:57:4e:3f:0d:90:b1:21:3b:46:8e:50:a9:
b1:c5:ee:08:69:e5:7f:66:54:d0:ea:85:e3:d0:f1:
35:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:20:20:0B:60:D1:54:3C:0A:B1:6E:A8:3F:47:F1:14:3D:3A:2C:9E
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/5iAgC2DRVDwKsW6oP0fxFD06LJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.220.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:41:59:d2:34:2e:c8:1e:a4:90:d2:e1:da:f9:62:f1:d6:a5:
fc:6e:d6:2c:51:d2:f3:37:64:ed:6e:b2:b0:57:e9:5e:ba:5c:
3c:95:e1:d2:bd:c2:f1:ac:38:c9:ec:be:b2:85:7a:87:e6:f2:
9b:a7:c5:1d:68:06:67:a1:99:ca:84:2d:98:de:30:1c:bb:99:
06:a5:a3:ef:d1:75:4b:2e:b6:50:0a:6b:24:a6:66:f4:a9:28:
b8:28:22:b1:71:70:da:2d:3c:5d:f1:f4:38:0d:83:e2:89:16:
2f:1f:6f:db:9c:78:51:45:1b:a7:d5:5f:0b:61:a9:c7:cc:91:
4d:58:fe:04:06:4b:cd:aa:9b:ec:fd:b3:61:38:68:87:ab:4c:
c8:8c:41:56:0c:a3:5f:78:77:4b:bb:0f:06:be:ce:47:e2:7c:
16:46:ff:29:b8:dd:6c:5e:52:43:ad:ae:68:2c:15:40:e5:a3:
dd:ce:28:08:0b:68:67:d7:b3:10:f6:e9:ce:d2:3a:e6:69:21:
04:ee:9e:22:f3:c8:cf:ab:5d:36:22:ab:f6:d1:8f:3e:fe:66:
20:3c:3b:10:fa:2f:72:35:da:eb:69:d3:c9:42:33:27:da:44:
55:23:98:96:c9:ca:7b:d5:b8:73:9d:df:f8:03:bb:b7:26:e8:
97:0a:34:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org