Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/5LWH4hwJ8zkG02WAjMFsKEXmr4w.roa
File: 5LWH4hwJ8zkG02WAjMFsKEXmr4w.roa (raw, json)
Hash identifier: Li20boxWUye8xG5eUO/PkXjrvoOx7h/76Vn2RZrZlvE=
Subject key identifier: E4:B5:87:E2:1C:09:F3:39:06:D3:65:80:8C:C1:6C:28:45:E6:AF:8C
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 018AE24FDF5A1D1E6A06E3CA371300C62912
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/5LWH4hwJ8zkG02WAjMFsKEXmr4w.roa
Signing time: Fri 29 Sep 2023 18:59:59 +0000
ROA not before: Fri 29 Sep 2023 18:59:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197769
IP address blocks: 85.187.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e2:4f:df:5a:1d:1e:6a:06:e3:ca:37:13:00:c6:29:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Sep 29 18:59:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4b587e21c09f33906d365808cc16c2845e6af8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:cc:6d:c5:26:41:76:d3:dd:38:1e:e0:c1:b9:
bb:50:2c:13:15:63:99:47:f1:cb:d0:e8:1f:cf:5b:
59:eb:36:56:37:ab:44:c8:d5:75:77:9d:ed:92:ed:
58:6b:01:aa:24:f9:62:d6:88:8a:06:f6:d9:59:92:
c6:82:9d:bc:f5:07:15:a0:cc:8c:7a:7c:0e:2e:ec:
35:01:58:23:3b:df:e1:da:c9:20:0e:78:48:e2:5e:
89:8b:ea:85:dd:4a:a8:06:12:72:a0:6c:44:df:3b:
87:e2:45:23:0b:c8:4b:86:71:f1:dd:2f:06:b0:77:
4f:c1:da:ea:a6:ad:5a:cb:a7:2a:e5:95:b6:e5:04:
99:8b:b3:9e:5e:55:7e:06:50:e1:48:45:b5:9a:4b:
92:0c:c4:17:fc:25:9a:c3:11:ea:0d:d7:bc:ca:d2:
05:f5:0e:37:24:cd:c0:2a:0b:36:4f:b3:73:03:9e:
c1:85:46:72:a3:56:c3:68:e1:69:88:24:6c:74:22:
ca:9e:a4:71:2e:f4:0c:2c:d5:62:46:7b:c6:3f:35:
e4:87:3c:59:65:25:b7:fe:a9:5b:18:23:4b:24:f2:
6d:43:ad:c7:6c:41:55:64:f5:84:0d:b6:11:16:f5:
bc:81:c4:7f:74:c0:53:c9:c9:92:72:1e:d8:8c:fd:
d8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:B5:87:E2:1C:09:F3:39:06:D3:65:80:8C:C1:6C:28:45:E6:AF:8C
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/5LWH4hwJ8zkG02WAjMFsKEXmr4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.254.0/24
Signature Algorithm: sha256WithRSAEncryption
80:a5:7a:db:fb:fc:a3:5a:c8:5f:56:d6:d5:4a:3e:5b:8f:6c:
07:ce:0f:93:01:01:62:94:35:b9:ae:2d:ad:67:ee:4e:da:bf:
f1:a2:c2:60:86:64:c4:28:ea:22:b8:4d:fa:7b:a0:f6:60:18:
db:c5:cd:00:49:4b:7f:43:f2:ad:a1:0b:61:2f:2e:7c:39:9e:
f1:35:1b:bf:7d:4a:0b:2a:92:64:b7:80:ba:8f:8e:2b:57:0b:
b0:d2:73:1d:c0:df:31:eb:a9:88:1b:9d:73:7e:d6:dc:a4:c3:
92:c5:79:17:4b:de:3f:e6:f9:3d:30:de:d7:84:fc:ad:06:08:
30:55:91:34:e2:70:2d:0c:a4:8e:6c:68:d6:5d:d3:8c:80:08:
7e:b7:6d:8a:9e:75:8f:79:93:13:ae:e3:5f:36:b8:02:8b:7b:
69:6a:b5:9b:27:d7:61:d1:bc:af:5f:8e:7f:25:61:cf:65:34:
58:16:7c:fd:8f:a9:69:9a:97:3b:e3:1f:e1:96:45:7c:9b:6b:
73:76:80:d3:13:cd:ba:ae:ae:7a:a0:45:b6:21:c1:6b:46:e0:
c8:99:75:c2:4a:01:46:fc:9a:57:ee:cc:91:30:7d:4a:e0:94:
7f:ee:31:b1:82:91:a1:4a:e3:cf:95:eb:1b:7a:f3:14:62:f0:
99:f3:22:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org