Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/097da1-7cc9-4343-8024-b310d71c2cad/1/_5p-FMZLftePwmUmspph_GZvCLQ.roa
File: _5p-FMZLftePwmUmspph_GZvCLQ.roa (raw, json)
Hash identifier: UNarIlKgUlhKkuUNTE5oqpoFLyjuxTmLc73f+kGPwGY=
Subject key identifier: FF:9A:7E:14:C6:4B:7E:D7:8F:C2:65:26:B2:9A:61:FC:66:6F:08:B4
Certificate issuer: /CN=d535f8fac7062f77f24b98cd5c3b54a89bad4838
Certificate serial: 0185710BF78C66136962D5ABA7D3407982AB
Authority key identifier: D5:35:F8:FA:C7:06:2F:77:F2:4B:98:CD:5C:3B:54:A8:9B:AD:48:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1TX4-scGL3fyS5jNXDtUqJutSDg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/097da1-7cc9-4343-8024-b310d71c2cad/1/_5p-FMZLftePwmUmspph_GZvCLQ.roa
Signing time: Mon 02 Jan 2023 05:54:47 +0000
ROA not before: Mon 02 Jan 2023 05:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 185.175.30.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0b:f7:8c:66:13:69:62:d5:ab:a7:d3:40:79:82:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d535f8fac7062f77f24b98cd5c3b54a89bad4838
Validity
Not Before: Jan 2 05:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff9a7e14c64b7ed78fc26526b29a61fc666f08b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:99:db:46:9b:43:cc:33:6d:24:cb:4e:5b:c3:
dd:5a:cf:14:5e:c8:ff:f9:a4:9b:d0:fa:ab:0c:93:
54:b7:fc:5d:a8:31:14:01:93:75:41:04:52:0e:4a:
b5:16:16:8d:7f:cc:d5:f3:cd:54:6c:1f:94:25:9f:
c5:9b:31:c2:97:7e:0e:4a:7f:af:df:79:ce:dc:20:
e0:71:3f:73:63:bb:42:6a:06:67:44:6f:42:a9:e4:
38:b5:0f:83:7b:6d:11:54:17:71:1a:26:87:13:b0:
be:80:48:12:2f:85:a8:da:f2:83:c7:47:6a:bd:ca:
fb:ee:23:08:b0:f0:51:09:d0:29:5c:ff:7c:c9:ab:
cb:80:1b:6f:fb:da:9c:df:de:35:29:94:60:ed:cd:
64:5e:32:2a:0c:94:e0:16:a6:06:16:35:4d:d6:a1:
00:29:c3:8c:ad:6a:b5:03:11:93:fb:4d:61:14:69:
1b:4a:a4:e1:2c:02:58:5c:f9:44:9a:80:5a:41:04:
e6:9d:f0:d4:05:24:be:85:8e:d3:93:35:3b:59:a4:
e7:29:54:db:06:c4:fb:cb:b4:7e:4a:be:07:f6:e1:
9a:b0:5c:30:8a:5a:68:b4:a9:08:f9:30:d7:64:4c:
4f:40:0b:5b:25:51:c3:80:cc:1f:66:a6:94:84:2b:
c8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:9A:7E:14:C6:4B:7E:D7:8F:C2:65:26:B2:9A:61:FC:66:6F:08:B4
X509v3 Authority Key Identifier:
keyid:D5:35:F8:FA:C7:06:2F:77:F2:4B:98:CD:5C:3B:54:A8:9B:AD:48:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1TX4-scGL3fyS5jNXDtUqJutSDg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/097da1-7cc9-4343-8024-b310d71c2cad/1/_5p-FMZLftePwmUmspph_GZvCLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/097da1-7cc9-4343-8024-b310d71c2cad/1/1TX4-scGL3fyS5jNXDtUqJutSDg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.30.0/23
Signature Algorithm: sha256WithRSAEncryption
38:cb:89:a1:3e:93:9c:1d:89:4f:71:85:97:6f:bf:24:35:f2:
a0:64:92:5c:5b:bd:8c:43:48:54:47:7e:75:53:5f:bb:ce:a2:
17:81:c7:69:ce:d6:31:cb:b7:f2:75:f4:de:f0:b4:bf:ea:4d:
9e:84:2c:a3:15:14:00:e7:f5:34:55:b9:52:50:05:f3:d1:df:
c5:60:f9:80:0a:e8:c3:e8:2f:7f:5a:b4:1d:c3:ca:a8:34:6a:
8a:bd:27:cf:7e:58:c5:79:9e:dc:4b:93:e5:0c:ca:9b:69:e4:
d5:2c:64:2c:a6:3d:ea:bd:71:3c:1e:a1:7f:bc:46:5e:5c:aa:
34:60:fe:03:75:07:9c:8b:cd:10:0f:88:4f:b7:71:82:1f:37:
be:8c:09:ff:32:5a:3e:70:a7:bc:b0:a2:28:50:cd:38:bd:56:
95:f7:b1:26:c2:fe:1b:bb:ce:14:8f:82:3f:80:bc:5b:5c:47:
63:ad:9b:c5:04:41:0d:b7:14:2f:97:e1:c6:40:36:ab:4a:00:
04:1e:87:72:66:bc:e5:96:4d:f9:5b:96:24:8b:34:e0:d2:2e:
7c:46:30:1d:0a:45:ea:c4:75:4f:53:ec:89:3d:a2:dd:46:75:
79:f1:7a:e2:04:ac:f7:54:53:d9:c6:36:5d:37:58:fd:85:5f:
06:17:73:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:23 2024 by rpki-client on console-ams.rpki-client.org