Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/447677-9972-4df8-b508-b91b92d4d801/1/cgBejpNNuHib-6ah1LNbqkcBn9U.roa
File: cgBejpNNuHib-6ah1LNbqkcBn9U.roa (raw, json)
Hash identifier: HegQ79hCszcXowVlVnHfTdGPCk+TDJRU1Kd5FVMszx8=
Subject key identifier: 72:00:5E:8E:93:4D:B8:78:9B:FB:A6:A1:D4:B3:5B:AA:47:01:9F:D5
Certificate issuer: /CN=7d2ea3ecad5a402b8fe5a2a6138af66aac257ff9
Certificate serial: 0190BF82DE93986B641A93ADC61C68992FEC
Authority key identifier: 7D:2E:A3:EC:AD:5A:40:2B:8F:E5:A2:A6:13:8A:F6:6A:AC:25:7F:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fS6j7K1aQCuP5aKmE4r2aqwlf_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/447677-9972-4df8-b508-b91b92d4d801/1/cgBejpNNuHib-6ah1LNbqkcBn9U.roa
Signing time: Wed 17 Jul 2024 07:05:43 +0000
ROA not before: Wed 17 Jul 2024 07:05:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57043
IP address blocks: 5.253.63.0/24 maxlen: 24
79.133.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Aug 2024 07:39:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bf:82:de:93:98:6b:64:1a:93:ad:c6:1c:68:99:2f:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d2ea3ecad5a402b8fe5a2a6138af66aac257ff9
Validity
Not Before: Jul 17 07:05:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=72005e8e934db8789bfba6a1d4b35baa47019fd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bf:15:9a:92:79:99:8b:8f:5e:c9:8b:02:6c:
3a:11:98:7e:fd:3b:12:9f:cc:d7:c0:66:13:0a:83:
46:8b:1b:eb:2f:1e:ca:20:27:7e:9a:91:5d:87:ae:
c5:71:b7:35:b8:cb:5c:7d:f4:5d:61:73:a6:84:19:
2f:d4:16:83:94:a2:ea:97:45:13:36:dc:ad:9e:31:
09:2f:da:19:75:c8:82:75:bc:5a:25:99:a8:49:76:
83:fe:6f:05:54:11:f5:5d:e6:52:db:71:e4:66:14:
8f:86:88:ff:5e:68:54:56:87:49:51:3a:f8:97:4f:
89:d6:71:5b:ea:e6:de:4f:43:66:0c:3e:45:e4:31:
ae:3d:1a:22:c4:98:2b:6f:1c:77:2f:c3:6b:12:e9:
73:28:6e:b1:4d:72:42:28:78:97:e2:2d:ec:76:a2:
54:c2:7f:90:35:c9:a4:8f:8e:42:13:93:31:3d:70:
f6:bf:8e:34:db:d4:b6:e8:b0:2b:aa:81:43:4f:a2:
42:9c:7d:4b:3b:72:5e:76:3f:e7:dd:be:5b:0e:66:
0f:8c:2b:36:66:f3:b6:2b:6c:f8:11:b7:33:ac:d0:
81:d4:5f:40:da:78:01:4b:92:a1:6b:23:ec:cc:d7:
1f:f0:4b:e4:d5:20:80:37:3f:84:8a:bb:9f:cb:35:
a3:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:00:5E:8E:93:4D:B8:78:9B:FB:A6:A1:D4:B3:5B:AA:47:01:9F:D5
X509v3 Authority Key Identifier:
keyid:7D:2E:A3:EC:AD:5A:40:2B:8F:E5:A2:A6:13:8A:F6:6A:AC:25:7F:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fS6j7K1aQCuP5aKmE4r2aqwlf_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/447677-9972-4df8-b508-b91b92d4d801/1/cgBejpNNuHib-6ah1LNbqkcBn9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/447677-9972-4df8-b508-b91b92d4d801/1/fS6j7K1aQCuP5aKmE4r2aqwlf_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.63.0/24
79.133.180.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:c9:e7:6b:2d:dd:f4:72:0e:d7:35:e9:91:09:0b:99:5e:8e:
f8:94:dd:5b:e2:76:ac:f1:96:34:ed:76:cb:7c:29:02:17:be:
d9:02:36:0e:42:0f:b6:62:ff:4b:3a:05:e3:50:80:76:87:5f:
2c:44:5f:65:88:c7:dc:92:7e:97:63:f7:ad:e0:b0:0e:16:c9:
da:c1:3b:20:5a:e4:55:42:ef:b9:c8:a7:7b:cf:f9:92:23:e4:
10:f5:a3:e9:01:1a:a4:74:24:70:d7:a3:cd:9c:37:ab:37:f3:
6b:98:68:1e:50:55:26:ee:12:2d:ed:c9:d4:76:93:1e:1c:47:
24:a0:ba:6b:24:79:97:12:f5:9b:eb:a7:54:f2:27:a8:09:97:
28:cd:e4:ae:99:ee:fb:fd:f1:9e:a6:7a:18:f2:a0:f6:8c:94:
eb:02:eb:d1:0e:de:b0:a8:5c:3a:bb:fe:e9:be:3b:10:26:3c:
a0:4d:34:d6:9a:12:02:23:84:2f:fb:72:3e:98:2b:66:37:db:
14:4c:fd:02:d5:60:30:f2:1a:f7:7d:9d:2d:cc:f0:fb:9d:6c:
a4:01:94:af:ca:e6:b3:86:48:9e:e6:71:2d:c6:6f:36:a3:cc:
ac:26:ee:2b:be:5d:a3:3a:a3:d8:72:94:db:a2:c7:82:b9:cf:
04:55:6a:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 12 10:21:01 2024 by rpki-client on console-fra.rpki-client.org