Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/OW9Ei-XIJXGjxjs5AU4cTz5df34.roa
File: OW9Ei-XIJXGjxjs5AU4cTz5df34.roa (raw, json)
Hash identifier: LxqxL5MzHZjXL5M6AUwPUOmkF90gzsjfTPbhGeao/ho=
Subject key identifier: 39:6F:44:8B:E5:C8:25:71:A3:C6:3B:39:01:4E:1C:4F:3E:5D:7F:7E
Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255
Certificate serial: 018A0782754363E332FDE35D8869DF32760E
Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/OW9Ei-XIJXGjxjs5AU4cTz5df34.roa
Signing time: Fri 18 Aug 2023 07:18:24 +0000
ROA not before: Fri 18 Aug 2023 07:18:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207734
IP address blocks: 5.11.26.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:07:82:75:43:63:e3:32:fd:e3:5d:88:69:df:32:76:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255
Validity
Not Before: Aug 18 07:18:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=396f448be5c82571a3c63b39014e1c4f3e5d7f7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:d6:c3:28:2e:d5:9a:56:47:90:5f:b8:38:b6:
86:94:dd:a5:77:7b:ac:d6:2a:c4:55:15:88:b8:b3:
74:59:95:a9:14:e6:e4:f8:ef:c0:ed:ee:37:cf:fe:
ea:bd:be:d5:1b:7a:8d:ea:1c:da:f5:0f:25:b8:ab:
bb:c5:87:91:37:1a:e8:3d:00:03:a3:0d:2a:e7:90:
4d:60:35:9c:63:ae:f1:7d:5a:38:2c:d2:a5:b4:2e:
21:ac:e6:a1:fd:23:8d:3a:1a:80:7b:5a:a2:54:bc:
6c:b2:ba:db:15:9c:cb:c0:14:e2:60:96:19:7a:84:
d4:11:66:58:7b:65:34:52:0c:5d:62:09:05:1c:2f:
c7:68:7b:d6:23:c0:b6:2c:e1:18:9a:c9:60:33:17:
17:2e:cf:74:0a:22:ac:93:f8:2f:17:7e:88:9f:a5:
3e:a0:41:1e:82:00:de:e1:6b:21:51:06:ba:42:b2:
f7:da:4a:71:b0:ec:cb:d3:cd:c9:d9:4b:72:ab:31:
77:af:d1:bd:b6:2a:f4:cb:95:53:80:c3:02:50:42:
a5:63:d5:3c:78:74:55:44:33:20:e7:73:b8:b3:d2:
37:4a:f7:ab:8e:98:c7:02:b4:dd:65:b2:52:1c:c1:
4c:a2:72:7f:59:ff:a0:2b:48:d9:60:86:58:cd:a2:
26:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:6F:44:8B:E5:C8:25:71:A3:C6:3B:39:01:4E:1C:4F:3E:5D:7F:7E
X509v3 Authority Key Identifier:
keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/OW9Ei-XIJXGjxjs5AU4cTz5df34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.11.26.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:b1:b5:64:58:2e:f5:39:9f:ba:ea:12:f0:33:4a:b7:f0:58:
6b:36:5c:c4:1f:b7:a1:04:8e:75:ef:2a:c1:91:cf:c9:89:6c:
b0:58:e9:58:cc:5c:3a:0a:fb:f9:3a:97:bd:7d:97:3c:ad:60:
82:69:53:9a:bc:5e:3a:b3:f8:af:4f:db:64:54:b3:67:6c:4f:
89:15:b8:c1:bc:5b:3c:ee:dd:2b:7a:a2:22:65:7e:c3:63:c8:
d3:92:12:04:03:87:a5:fe:8b:e7:5f:81:65:eb:ba:5e:00:28:
3e:97:d3:7f:c0:8d:e1:69:4d:23:7d:5e:97:ec:86:b5:57:d4:
91:35:b9:87:3e:7a:93:e5:91:65:28:9a:34:4d:2d:fc:45:5b:
06:af:6a:0c:5b:2c:3c:d2:bd:8e:ef:92:7b:86:6e:c5:1e:bb:
a5:37:15:9b:50:c1:30:8a:4a:f9:29:c9:a4:40:ad:2a:9b:38:
6e:12:13:76:37:fe:d2:cf:c6:53:b3:3f:14:ce:ee:cb:86:0a:
01:50:8b:f1:b9:0c:49:86:b6:fa:8a:f7:72:1d:4a:16:39:9a:
d8:6b:a4:40:70:fc:86:1d:ed:28:8a:e1:19:57:77:0b:76:2a:
21:87:3f:d8:41:27:6d:f7:02:b1:5f:59:61:0b:30:64:ae:f9:
ad:43:60:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:02 2024 by rpki-client on console-ams.rpki-client.org