Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/MyKhwwBzrHQNKUF1k5Kfm-BG7wI.roa
File: MyKhwwBzrHQNKUF1k5Kfm-BG7wI.roa (raw, json)
Hash identifier: sDrAhs5PlSsTrt0szh1yleWMkIl0DwEKb00Sn/fOKB8=
Subject key identifier: 33:22:A1:C3:00:73:AC:74:0D:29:41:75:93:92:9F:9B:E0:46:EF:02
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 018570FBD16B2C1ED745708AACB43CBC590A
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/MyKhwwBzrHQNKUF1k5Kfm-BG7wI.roa
Signing time: Mon 02 Jan 2023 05:37:09 +0000
ROA not before: Mon 02 Jan 2023 05:37:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212349
IP address blocks: 5.1.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:d1:6b:2c:1e:d7:45:70:8a:ac:b4:3c:bc:59:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 2 05:37:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3322a1c30073ac740d29417593929f9be046ef02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e2:be:e9:3e:9d:11:4f:7b:0c:96:a9:93:00:
a6:68:fe:33:6b:03:67:54:80:c3:20:65:27:bc:b2:
16:1f:0a:ab:6a:df:63:eb:0e:4e:9d:3c:a8:3e:32:
6e:e3:1a:af:fb:ca:b0:57:34:8a:ae:7c:50:25:6b:
d9:13:94:a2:57:fd:80:39:dc:e6:ec:7f:b4:3a:ab:
a0:b2:0d:2d:51:a7:b5:9a:0d:a8:73:cf:65:94:37:
b7:72:5a:f4:8c:84:d6:14:f7:d9:3a:3d:d8:e2:0e:
cc:af:a9:69:73:2b:5e:4d:25:fb:91:65:0d:bd:c0:
aa:cf:1d:37:f3:2a:74:91:5d:32:bb:e9:ba:57:f0:
0d:85:1f:45:1e:bc:42:e5:2e:ea:5e:4f:e1:55:ce:
57:60:91:bc:2b:35:6a:aa:af:ae:6d:71:39:15:5f:
f6:60:90:c5:a0:50:7a:f3:f8:5d:b7:d5:4e:3d:f5:
d7:89:34:48:8b:3d:57:5e:89:c3:a6:40:65:0b:ee:
b2:08:84:7c:05:15:a7:e8:48:d4:af:97:32:d6:a6:
24:39:68:a9:cc:42:da:1d:4c:0c:b3:37:7e:eb:85:
8f:8c:b4:72:37:08:02:4a:86:16:96:60:53:18:87:
a1:1d:17:52:91:1c:9a:3e:2f:57:3b:5f:d9:07:2e:
7b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:22:A1:C3:00:73:AC:74:0D:29:41:75:93:92:9F:9B:E0:46:EF:02
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/MyKhwwBzrHQNKUF1k5Kfm-BG7wI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.79.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:b4:72:81:70:bb:35:d1:ae:6d:a6:76:44:bb:c9:e0:63:81:
88:c8:3e:21:88:72:7c:84:4f:d8:2d:b8:ef:b4:36:90:10:31:
c2:fd:11:d1:bd:04:6f:d1:f8:1a:fb:04:79:5f:67:a1:6b:af:
3b:bb:52:e8:02:a0:60:24:12:ef:ee:dd:72:54:84:4a:f1:e6:
63:c0:03:17:f1:a0:3c:0e:1f:0f:d1:6d:1e:bc:92:cc:49:eb:
2b:24:7b:49:45:56:74:82:3b:a5:ed:9c:e3:f1:d2:6b:a9:9c:
4d:8b:47:72:8d:a6:e3:d0:5a:24:b5:e2:f8:e3:90:66:2a:63:
84:49:dd:76:f1:1e:5f:ac:0b:42:21:9b:20:50:92:b9:11:69:
a5:33:45:ad:48:8f:16:3f:9e:d7:29:2f:ab:ec:4c:1a:55:b8:
f0:61:74:7e:fc:d4:9a:0a:f7:6a:aa:66:78:24:2e:97:27:7b:
56:93:70:aa:4f:7f:4e:41:73:03:b9:50:59:ea:59:ba:1d:91:
8d:de:bc:e6:b2:ef:1f:ac:8d:6d:e0:55:53:cd:7d:d4:15:13:
9d:4e:36:8e:a7:95:00:45:11:7b:a9:ed:b4:9e:ad:36:17:ba:
ce:03:7e:4c:36:7a:fb:aa:3e:35:d7:9c:29:3c:d1:da:8a:87:
b3:f2:c7:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org