Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e1b84b-39a6-4ac8-be63-30fee27e84cb/1/TdU2swZG0kTQBAIEcEGjfkuuTV4.roa
File: TdU2swZG0kTQBAIEcEGjfkuuTV4.roa (raw, json)
Hash identifier: lMbvaz71L45DmbwCZEJprGnbTz2EShWRRxAvruVxTQk=
Subject key identifier: 4D:D5:36:B3:06:46:D2:44:D0:04:02:04:70:41:A3:7E:4B:AE:4D:5E
Certificate issuer: /CN=27f5180f9b93ae7573c08a894bd452bd77ce56cd
Certificate serial: 018572FA5B615B884336236A801B37659086
Authority key identifier: 27:F5:18:0F:9B:93:AE:75:73:C0:8A:89:4B:D4:52:BD:77:CE:56:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J_UYD5uTrnVzwIqJS9RSvXfOVs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e1b84b-39a6-4ac8-be63-30fee27e84cb/1/TdU2swZG0kTQBAIEcEGjfkuuTV4.roa
Signing time: Mon 02 Jan 2023 14:54:47 +0000
ROA not before: Mon 02 Jan 2023 14:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 5.252.136.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:fa:5b:61:5b:88:43:36:23:6a:80:1b:37:65:90:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27f5180f9b93ae7573c08a894bd452bd77ce56cd
Validity
Not Before: Jan 2 14:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4dd536b30646d244d00402047041a37e4bae4d5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3d:67:1a:d9:2e:04:2f:4b:53:4e:47:1a:ea:
7f:45:4d:2e:ee:23:91:7c:95:f1:32:4f:a0:de:3c:
1f:2e:c6:dd:40:97:72:a5:d9:b6:ce:f0:83:d3:da:
3f:32:0c:f7:bb:23:96:d6:b2:52:13:1d:03:26:03:
2b:c0:52:1f:c6:ae:c1:f6:25:18:a4:8d:41:2b:b4:
99:c2:34:50:ad:0d:aa:e9:06:aa:35:4d:a2:2e:9d:
1d:14:7c:dc:f1:bc:55:09:00:05:cd:6b:0e:12:f6:
43:b3:30:06:39:d3:df:1a:c7:c7:74:6d:73:26:a7:
9a:2f:60:f1:30:7c:bf:92:7e:0d:d6:35:22:93:a5:
44:63:59:e2:f5:85:9a:55:33:fb:af:c8:68:ab:9f:
0d:cc:1b:75:be:2d:38:50:67:96:5d:37:ca:fd:c6:
b2:c3:16:8b:53:64:9c:95:3f:e6:ca:25:8a:fb:57:
93:a8:2e:d8:8e:cc:e2:03:36:54:b8:86:85:9f:7e:
a4:4c:6c:9b:b5:24:2b:a2:0d:ae:a5:9c:57:75:f6:
f0:16:da:5d:a9:63:b4:9a:34:19:54:f9:5d:46:f2:
ed:9d:f4:00:6d:4b:f9:51:28:08:17:af:25:73:74:
78:24:1e:bc:6b:a0:e1:8d:7f:fa:2b:0c:5f:09:ae:
05:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:D5:36:B3:06:46:D2:44:D0:04:02:04:70:41:A3:7E:4B:AE:4D:5E
X509v3 Authority Key Identifier:
keyid:27:F5:18:0F:9B:93:AE:75:73:C0:8A:89:4B:D4:52:BD:77:CE:56:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J_UYD5uTrnVzwIqJS9RSvXfOVs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e1b84b-39a6-4ac8-be63-30fee27e84cb/1/TdU2swZG0kTQBAIEcEGjfkuuTV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e1b84b-39a6-4ac8-be63-30fee27e84cb/1/J_UYD5uTrnVzwIqJS9RSvXfOVs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.136.0/22
Signature Algorithm: sha256WithRSAEncryption
55:86:bd:5f:95:34:b5:75:21:f4:08:12:b0:76:f8:38:54:fe:
14:86:46:63:41:5e:ef:d8:cc:a7:f7:27:ed:0c:a1:17:07:32:
40:f0:fd:d7:55:23:29:5d:08:e3:cb:b3:1e:97:ac:de:64:c5:
b5:ad:b5:46:5b:d9:72:43:01:19:8b:15:51:c7:57:e1:66:b1:
48:6c:92:90:a1:01:3b:64:e9:52:10:bb:ac:e2:8d:70:53:64:
ee:25:c7:f9:2b:a2:2d:a4:2d:99:43:be:f4:49:d5:12:42:0f:
33:14:04:03:5a:a4:ce:90:be:33:ae:5f:4d:cb:2c:ec:9a:9c:
4d:ae:24:10:6b:3b:49:33:ea:01:79:c2:97:2f:fc:c9:6c:36:
63:39:42:50:29:1c:b0:fd:e4:c1:da:12:ee:89:c9:a4:cf:71:
9a:20:47:88:df:07:65:dd:4b:0b:74:4a:a4:13:08:a2:3f:01:
4d:5f:ea:e5:8d:1b:5e:fa:f6:35:e2:6a:6a:b1:4e:5b:29:1f:
87:b7:1b:e3:37:8e:2a:08:e8:1e:9e:5f:c4:a7:a8:a2:82:81:
39:5f:b6:95:bb:45:5d:10:04:dc:e6:e4:de:d2:4a:87:fb:59:
24:94:55:e0:c8:29:5e:9d:bd:82:e7:39:ba:f6:76:04:c5:78:
35:71:d4:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:05 2024 by rpki-client on console-fra.rpki-client.org