Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c345f3-b53a-41bf-996b-34b8d9de96ca/1/5DwHGJEq-z1jl-DY3qvgRJTTcVY.roa
File: 5DwHGJEq-z1jl-DY3qvgRJTTcVY.roa (raw, json)
Hash identifier: JlUPig6cY4KZtckn4guAZlX/aiRkJnK63st9m6S5UnY=
Subject key identifier: E4:3C:07:18:91:2A:FB:3D:63:97:E0:D8:DE:AB:E0:44:94:D3:71:56
Certificate issuer: /CN=a634878281144a46a856003d622f6141ea4e006f
Certificate serial: 01856CAEF2C45EE7C1A25167A4A43E26B84D
Authority key identifier: A6:34:87:82:81:14:4A:46:A8:56:00:3D:62:2F:61:41:EA:4E:00:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pjSHgoEUSkaoVgA9Yi9hQepOAG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c345f3-b53a-41bf-996b-34b8d9de96ca/1/5DwHGJEq-z1jl-DY3qvgRJTTcVY.roa
Signing time: Sun 01 Jan 2023 09:34:42 +0000
ROA not before: Sun 01 Jan 2023 09:34:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207608
IP address blocks: 217.144.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ae:f2:c4:5e:e7:c1:a2:51:67:a4:a4:3e:26:b8:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a634878281144a46a856003d622f6141ea4e006f
Validity
Not Before: Jan 1 09:34:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e43c0718912afb3d6397e0d8deabe04494d37156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f2:bb:ce:e1:51:55:ae:94:ae:6e:b0:72:37:
ab:66:57:7d:ef:04:af:0d:e5:7b:2b:38:4e:fb:c1:
c7:80:03:be:7e:5c:a2:09:16:44:fb:37:0d:61:8e:
d3:68:14:00:45:9d:41:df:56:09:9c:9e:b8:f1:e5:
04:15:57:6a:53:16:95:b4:11:63:2a:f9:e5:e8:6f:
17:61:eb:84:38:68:34:f0:99:04:94:05:91:65:b9:
7f:0a:09:a4:a5:54:7e:76:bf:04:25:de:62:a8:ed:
16:a9:57:59:59:68:cd:03:c3:63:a2:89:a9:c6:21:
65:d9:8c:08:44:70:f6:f5:db:69:f0:50:86:90:6f:
d9:a4:c5:68:a2:dd:83:c9:9d:bf:4d:76:82:38:4d:
94:f3:f9:77:1e:b0:26:1f:6e:4a:9a:60:1b:32:29:
84:77:95:5a:67:11:46:4d:36:c7:88:ea:28:ca:4d:
97:01:be:58:e0:c1:c4:42:21:ba:c3:c0:fc:73:c6:
84:f3:c3:0e:ba:1d:1f:fc:6b:9d:0f:b6:f6:4c:ae:
ea:b6:53:d3:01:8b:17:49:12:c3:f7:e1:6c:24:94:
60:f1:6a:09:58:87:64:22:bb:99:8e:62:de:0f:89:
d2:aa:ec:38:6e:cf:86:c4:64:26:4c:e6:cb:ef:9d:
51:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:3C:07:18:91:2A:FB:3D:63:97:E0:D8:DE:AB:E0:44:94:D3:71:56
X509v3 Authority Key Identifier:
keyid:A6:34:87:82:81:14:4A:46:A8:56:00:3D:62:2F:61:41:EA:4E:00:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pjSHgoEUSkaoVgA9Yi9hQepOAG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c345f3-b53a-41bf-996b-34b8d9de96ca/1/5DwHGJEq-z1jl-DY3qvgRJTTcVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c345f3-b53a-41bf-996b-34b8d9de96ca/1/pjSHgoEUSkaoVgA9Yi9hQepOAG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.144.75.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:fe:c5:58:23:bf:b6:59:f3:e7:f2:84:e3:78:8a:0f:f4:af:
65:ee:5f:df:18:e9:aa:ac:b8:54:ed:f3:a3:2b:23:91:ec:1f:
9f:53:2b:3e:9f:a4:6f:ca:ea:58:f8:64:74:fb:41:81:59:d5:
da:5d:df:8d:ca:b8:d9:d2:25:b2:3c:95:85:fc:81:ef:cd:e2:
e1:e7:7f:ec:37:6f:8c:52:a2:b8:fd:5b:8c:81:9a:1a:b3:14:
60:86:6e:e2:2b:50:a6:c5:65:ab:3c:4a:60:4c:1c:61:70:a3:
64:a1:1e:fc:2f:53:64:e2:4a:e6:66:e3:80:7b:53:3b:61:3c:
c5:a3:d2:d7:b4:e1:0c:e9:02:f7:2c:dd:2f:31:8c:9e:41:3c:
29:9a:be:3a:1d:92:46:eb:ae:f6:5b:d4:32:78:7f:5f:c5:9d:
12:86:04:17:54:dd:fb:f4:06:4b:ab:7f:e0:ed:51:6b:35:bb:
bd:bf:51:53:82:14:6b:33:75:38:d1:c8:f2:a2:e8:1b:67:e7:
cb:1f:41:f5:c0:18:2f:2c:8a:56:b8:a3:ce:3f:e4:7f:4d:d8:
43:07:17:13:da:b9:b6:20:94:4d:76:fc:30:d8:68:43:e2:e2:
ef:ab:4f:6b:1e:37:2a:37:11:42:24:4a:45:a9:65:40:70:cc:
95:6e:14:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:56 2024 by rpki-client on console-fra.rpki-client.org