Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/MiFW6ESTkufxAgvtlp3ZxoSRoP0.roa
File: MiFW6ESTkufxAgvtlp3ZxoSRoP0.roa (raw, json)
Hash identifier: JQOiypljlvNHKIbiQ8HOU57KOUGZYMr8vSwAKTahnOg=
Subject key identifier: 32:21:56:E8:44:93:92:E7:F1:02:0B:ED:96:9D:D9:C6:84:91:A0:FD
Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255
Certificate serial: 01857079792E91621BC2D92477ACD3FC9AFF
Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/MiFW6ESTkufxAgvtlp3ZxoSRoP0.roa
Signing time: Mon 02 Jan 2023 03:14:47 +0000
ROA not before: Mon 02 Jan 2023 03:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21277
IP address blocks: 5.11.19.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:79:2e:91:62:1b:c2:d9:24:77:ac:d3:fc:9a:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255
Validity
Not Before: Jan 2 03:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=322156e8449392e7f1020bed969dd9c68491a0fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f0:c3:a0:a7:80:03:3c:e3:8f:25:24:bd:01:
9f:85:11:7e:7a:23:0f:87:de:83:04:fb:3d:a1:de:
60:67:b3:ff:20:51:d1:49:f3:c5:ff:1f:97:9b:63:
25:74:1b:29:29:63:f4:d6:44:6e:99:89:7d:a7:8c:
ba:b6:a7:20:82:78:bc:54:e8:7c:d4:6d:0f:00:6c:
ef:71:d5:59:00:b6:a6:7c:43:1c:9e:14:eb:69:51:
a4:db:5e:fb:f6:6c:3e:c9:59:92:41:00:06:d7:43:
4c:34:22:99:8c:a3:0a:d4:e3:cf:66:30:fd:50:63:
c1:4f:49:97:c4:26:95:11:44:48:b4:9b:0e:53:a3:
89:cf:3a:22:d0:11:63:a3:45:bf:6a:ab:ad:c1:6b:
85:c0:11:79:0e:b5:15:46:58:7a:36:b9:8e:c1:0b:
af:7a:9d:19:7b:e9:7c:21:a4:66:95:c0:88:5e:ad:
75:bd:c4:30:52:4c:2b:9a:ba:10:76:17:77:ce:b3:
e8:49:6e:4a:0a:bd:fd:aa:3d:56:04:99:46:ee:11:
bb:5b:f2:e3:95:6c:c3:de:9e:94:30:f5:6c:0a:43:
6b:f5:63:00:99:0b:18:9f:42:f3:c2:78:dc:d5:5e:
58:8e:48:66:dd:a7:33:76:78:23:d7:f8:52:e3:1b:
ba:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:21:56:E8:44:93:92:E7:F1:02:0B:ED:96:9D:D9:C6:84:91:A0:FD
X509v3 Authority Key Identifier:
keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/MiFW6ESTkufxAgvtlp3ZxoSRoP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.11.19.0/24
Signature Algorithm: sha256WithRSAEncryption
11:b5:48:fb:93:92:59:9a:7d:48:90:9b:98:e3:e3:34:94:30:
46:5e:88:34:8d:3f:06:54:33:31:3d:cb:ba:a0:47:f1:33:3b:
32:33:28:0b:53:ff:c1:8f:de:81:aa:83:07:c6:b2:2c:66:bb:
f5:67:4c:f6:c6:f1:0a:3e:af:88:8c:20:14:9c:ee:08:a7:81:
9c:a1:0c:f7:b2:b4:4a:4c:35:41:14:b2:19:ff:35:95:05:cf:
8f:fc:cb:d0:09:a3:e6:28:db:b9:83:25:b7:d7:d3:9c:0c:e7:
31:f4:50:42:33:99:1a:0d:05:50:9f:ec:d7:c1:8e:3d:df:ee:
38:e6:da:e9:0b:19:30:20:54:33:2c:7a:1a:34:92:46:7d:bc:
f1:65:36:12:fd:30:1b:a9:01:71:a4:76:4e:1d:52:65:88:d9:
67:1f:44:33:61:09:6e:fa:ff:6b:ee:eb:fa:c9:15:26:35:82:
77:6f:1c:ff:3f:e0:bc:ca:5d:04:10:44:41:a8:bd:eb:32:08:
bd:0a:05:37:b9:bd:21:a8:35:c6:41:dc:79:0d:59:61:e4:fd:
eb:75:82:6f:36:85:c1:72:89:22:2a:1c:7b:ae:03:94:d3:83:
87:d8:f3:28:1b:ed:07:19:87:2b:47:8b:2d:d9:e1:b3:aa:8e:
eb:d7:28:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:06 2024 by rpki-client on console-fra.rpki-client.org