Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/999509-bdc0-4e07-8774-3a389332f79f/1/5zwi5RiWWsCCsbu9buYsMd9b44k.roa
File: 5zwi5RiWWsCCsbu9buYsMd9b44k.roa (raw, json)
Hash identifier: pnhZzD7oJ7qrfKiWWWC5ats3pNTanqfuB1T0b6awaYU=
Subject key identifier: E7:3C:22:E5:18:96:5A:C0:82:B1:BB:BD:6E:E6:2C:31:DF:5B:E3:89
Certificate issuer: /CN=129462d45b8ab95d4c35c40265b31b52bf1e8dbd
Certificate serial: 018924DCB5418EBEA5929845A87DF2F3B59C
Authority key identifier: 12:94:62:D4:5B:8A:B9:5D:4C:35:C4:02:65:B3:1B:52:BF:1E:8D:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EpRi1FuKuV1MNcQCZbMbUr8ejb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/999509-bdc0-4e07-8774-3a389332f79f/1/5zwi5RiWWsCCsbu9buYsMd9b44k.roa
Signing time: Wed 05 Jul 2023 07:03:11 +0000
ROA not before: Wed 05 Jul 2023 07:03:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 329272
IP address blocks: 213.148.16.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 28 Nov 2023 09:44:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:24:dc:b5:41:8e:be:a5:92:98:45:a8:7d:f2:f3:b5:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=129462d45b8ab95d4c35c40265b31b52bf1e8dbd
Validity
Not Before: Jul 5 07:03:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e73c22e518965ac082b1bbbd6ee62c31df5be389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c2:12:10:4b:d0:88:71:c2:b0:03:f2:fc:a1:
4e:92:12:1c:8e:a9:cb:c7:9f:40:35:7a:8a:97:1f:
44:c6:db:9b:ea:cc:7f:8f:63:87:71:bb:98:73:7b:
67:07:70:da:4f:b3:35:20:63:c4:98:58:61:ca:66:
0f:8d:19:67:9b:21:51:ea:c5:49:b9:fa:52:cc:e4:
95:4c:c9:4d:6d:62:5a:4d:c2:b3:ef:c4:c8:fa:56:
d0:20:03:ed:97:c3:46:db:45:bf:94:71:5e:f4:d7:
67:c1:9c:f7:67:ca:cd:e4:b3:d2:36:05:66:85:4f:
98:94:c4:98:58:17:53:cf:ec:62:5f:25:97:b9:f5:
75:b1:f6:af:fa:8a:9c:c6:fe:ac:98:23:f6:81:58:
5d:9a:53:b8:4e:8d:43:e6:dd:33:c4:ae:fc:c9:a3:
7f:8c:ee:c0:31:87:91:0c:b4:01:8e:6b:4f:34:e4:
98:13:0b:1b:c1:f0:33:18:c3:fb:53:22:d7:7b:f9:
bc:50:ca:53:7c:9d:24:95:17:03:fc:d1:e4:9d:a4:
6f:f3:9c:23:3d:69:e1:63:a0:b8:7d:d8:f0:0f:b8:
72:82:b0:34:92:04:c1:78:34:ab:6a:a1:20:e4:bd:
14:d5:ab:67:8c:88:b0:e5:2a:d1:31:21:62:e2:36:
cf:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:3C:22:E5:18:96:5A:C0:82:B1:BB:BD:6E:E6:2C:31:DF:5B:E3:89
X509v3 Authority Key Identifier:
keyid:12:94:62:D4:5B:8A:B9:5D:4C:35:C4:02:65:B3:1B:52:BF:1E:8D:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EpRi1FuKuV1MNcQCZbMbUr8ejb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/999509-bdc0-4e07-8774-3a389332f79f/1/5zwi5RiWWsCCsbu9buYsMd9b44k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/999509-bdc0-4e07-8774-3a389332f79f/1/EpRi1FuKuV1MNcQCZbMbUr8ejb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.148.16.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:ad:ea:3a:ad:a0:53:55:66:7b:48:98:e7:26:72:f6:ae:84:
88:57:73:77:a6:19:40:95:09:45:b4:20:a4:ed:a0:a4:d8:4d:
71:4f:3b:83:0a:76:5d:43:64:f9:f9:5d:79:1c:c7:73:9a:d8:
17:db:bf:75:25:9e:1c:23:14:33:d6:f0:1f:eb:6d:91:6a:75:
51:0e:8f:9b:aa:ea:f9:27:e2:a0:e6:19:14:c0:af:80:cf:35:
12:58:bc:8b:b5:7a:d4:cd:c3:09:4c:22:13:b5:98:13:04:8f:
96:cc:62:53:1b:e7:8e:59:cd:3a:1e:9e:59:4d:8d:e7:d6:ee:
24:d2:f4:2f:f5:bd:c0:d3:49:95:00:90:79:1d:84:e7:14:87:
4f:1e:75:25:54:c6:70:e0:4b:df:3b:cd:60:d5:e7:09:9e:58:
8b:00:cf:27:1d:73:c5:36:29:55:6d:73:64:c4:6d:c7:c4:fe:
58:4a:ee:14:e6:40:81:ca:a1:0d:4c:5f:a0:39:cf:85:d8:26:
2c:e0:ff:58:01:c2:61:23:fe:e7:7d:e3:ca:62:e5:41:17:a0:
3e:a6:f6:0a:a4:54:ae:48:86:3f:a4:a6:5c:cf:91:53:fb:54:
ca:11:94:62:b5:e1:e0:53:52:ac:4f:32:6c:90:b2:3f:72:b7:
ad:63:21:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:48 2024 by rpki-client on console-fra.rpki-client.org