Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/5ymE3NS-ZVoT1idRrd5McpVptVU.roa
File: 5ymE3NS-ZVoT1idRrd5McpVptVU.roa (raw, json)
Hash identifier: fOda6FK+tI+emfTzsar73OZyGaWGZ6QYwZbSbEkliQY=
Subject key identifier: E7:29:84:DC:D4:BE:65:5A:13:D6:27:51:AD:DE:4C:72:95:69:B5:55
Certificate issuer: /CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Certificate serial: 01899C981FA7F180FF336A90BD32C58AB5C5
Authority key identifier: 72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/5ymE3NS-ZVoT1idRrd5McpVptVU.roa
Signing time: Fri 28 Jul 2023 13:02:42 +0000
ROA not before: Fri 28 Jul 2023 13:02:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6079
IP address blocks: 185.52.136.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9c:98:1f:a7:f1:80:ff:33:6a:90:bd:32:c5:8a:b5:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Validity
Not Before: Jul 28 13:02:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e72984dcd4be655a13d62751adde4c729569b555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7e:c2:9a:c2:44:3f:e0:7c:74:25:6c:60:fc:
01:7c:7c:9c:ca:e2:c2:a4:52:5d:1a:16:2e:d9:54:
4f:c1:ba:36:93:18:4b:64:7d:da:58:9d:6d:81:d5:
e2:48:8c:33:0b:87:bd:30:18:3b:8d:59:84:f3:00:
3a:8d:f6:d7:7f:ed:a0:59:81:77:41:f7:4f:59:16:
e1:e1:0b:31:97:e2:ef:4f:fc:8d:65:a8:c2:3a:9a:
81:d5:94:6e:ba:2b:33:20:79:bd:85:eb:cd:dd:bb:
3f:fb:0c:86:b8:d1:f7:ae:05:0f:c8:2a:1e:73:2a:
d3:a4:c0:54:a1:9e:e0:66:56:5f:fe:ec:b8:2f:ad:
57:31:96:00:a3:9f:e4:3e:43:52:86:a4:0d:8b:16:
c4:48:f5:ca:94:50:31:b1:22:a4:33:55:8f:5c:3d:
72:9e:dd:07:88:a2:32:31:e2:9c:ae:7c:ef:4d:ed:
9e:91:6f:cb:0f:95:6d:92:20:c3:6f:74:aa:6b:0f:
dd:df:e3:af:df:f4:41:db:69:3d:9f:4d:1a:c2:00:
36:0c:db:09:4c:62:c3:23:6c:a9:a8:0c:45:08:7b:
d9:65:a1:17:d8:ac:9b:14:4c:c3:f3:ae:28:ad:c8:
e5:84:4a:44:50:35:98:c4:d3:e2:a7:90:11:92:41:
82:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:29:84:DC:D4:BE:65:5A:13:D6:27:51:AD:DE:4C:72:95:69:B5:55
X509v3 Authority Key Identifier:
keyid:72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/5ymE3NS-ZVoT1idRrd5McpVptVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/crePZoL8OcVbQdSPgLiDjV0tvwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.52.136.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:6c:84:c1:4f:28:d2:77:0a:00:f4:88:0a:33:59:4f:aa:d7:
53:26:a2:ba:c3:9f:bb:f1:dd:5f:79:c5:a1:02:6e:3d:92:82:
03:a0:f5:df:d8:e1:5e:19:83:67:93:51:a6:b6:d0:1b:95:68:
6e:46:e6:63:b4:fb:2c:3d:e4:92:ae:e3:a0:0c:f5:c2:eb:dd:
0a:51:c0:aa:51:25:7a:19:53:34:2f:46:12:34:e7:e9:ef:03:
1b:6c:12:a1:f4:ef:d5:8b:0a:d4:c8:93:df:48:0e:cd:89:d9:
ec:ad:bb:5e:05:80:00:d0:61:e0:9a:31:c0:5d:09:3a:e3:1f:
ed:0b:a6:67:9e:65:9c:de:1d:ef:b3:63:c4:f0:64:02:11:1f:
44:93:c1:46:b3:a6:a5:0d:63:de:f2:09:cf:e5:fb:6f:12:d9:
02:74:dc:24:a1:cc:ca:a9:d5:fb:04:fb:36:da:03:22:64:36:
2f:48:b4:12:bd:1a:3f:32:65:5e:12:7f:52:d2:a0:00:dc:72:
9a:76:c6:2f:ce:88:4e:54:9a:b1:b4:03:f1:0c:b4:50:db:1b:
8a:13:9e:13:6f:6e:d1:18:f1:b2:60:7c:63:6c:b1:7c:63:a8:
38:19:35:dc:82:a6:0c:f5:0b:e1:49:8b:28:b5:57:ab:d0:56:
1f:37:64:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:40 2024 by rpki-client on console-fra.rpki-client.org