Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/iziRME2Llgkr8LgwhzvNx3uMLDQ.roa
File: iziRME2Llgkr8LgwhzvNx3uMLDQ.roa (raw, json)
Hash identifier: phPk1qah6WAZZI48g37Iw2UMCr9T56EtU/L26VAS7Yg=
Subject key identifier: 8B:38:91:30:4D:8B:96:09:2B:F0:B8:30:87:3B:CD:C7:7B:8C:2C:34
Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255
Certificate serial: 018570797B53339A0087956CC6B3E897CE17
Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/iziRME2Llgkr8LgwhzvNx3uMLDQ.roa
Signing time: Mon 02 Jan 2023 03:14:47 +0000
ROA not before: Mon 02 Jan 2023 03:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200654
IP address blocks: 5.11.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Jul 2023 12:31:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:7b:53:33:9a:00:87:95:6c:c6:b3:e8:97:ce:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255
Validity
Not Before: Jan 2 03:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b3891304d8b96092bf0b830873bcdc77b8c2c34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:e1:d8:20:9f:45:a0:4e:41:c5:57:c9:e7:34:
12:e6:63:04:39:bc:9b:2f:bb:25:59:8c:d5:21:46:
d5:e7:51:85:46:9b:0b:24:e4:92:db:a6:57:5a:d6:
8a:10:ea:2f:bb:bc:9a:6c:4a:e6:72:4f:89:ff:94:
77:86:12:7e:85:87:c5:cf:f9:d3:6e:c5:08:c8:11:
45:47:17:dd:92:3c:42:be:d3:45:08:08:5b:d7:c2:
be:9c:e6:15:91:b1:2f:a8:12:4b:f9:30:a7:58:64:
8b:34:71:1f:25:85:83:9b:eb:fe:9e:bf:84:ec:c1:
40:15:a1:be:7c:04:f4:38:7b:56:9c:da:72:d2:5c:
c8:08:90:17:fa:4b:72:3c:86:e9:bb:b4:78:84:cf:
41:20:df:c1:dd:37:cc:19:28:18:a3:e4:7e:f6:4b:
a5:38:d4:d9:7b:41:b4:90:cb:40:a9:aa:9c:0a:29:
7f:c4:46:00:fd:d4:3f:13:1c:b5:e3:e9:e4:d6:d3:
c3:eb:3c:42:45:03:b4:2c:a5:56:7c:8e:86:42:94:
32:c6:32:b0:1f:fa:1e:b3:9a:4d:d7:22:f8:4a:9a:
5d:86:fb:ee:ea:f1:7b:6c:01:76:3a:83:97:e3:03:
82:7f:77:0f:54:36:3e:81:7c:2e:b7:1b:a4:c6:39:
42:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:38:91:30:4D:8B:96:09:2B:F0:B8:30:87:3B:CD:C7:7B:8C:2C:34
X509v3 Authority Key Identifier:
keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/iziRME2Llgkr8LgwhzvNx3uMLDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.11.18.0/24
Signature Algorithm: sha256WithRSAEncryption
69:12:c7:9e:23:c4:a0:7a:70:2a:88:4a:d2:06:c8:6e:4d:4f:
2a:78:8f:e5:f8:eb:1f:89:4b:03:f9:10:be:42:10:b2:cb:03:
8d:e4:34:fd:33:be:0f:4a:2d:da:b1:b6:bd:d8:6b:a6:74:68:
f5:9b:be:6d:29:a0:45:5b:d3:eb:4b:77:3b:77:6b:3a:4f:7a:
91:c1:d0:c5:c2:b2:8a:b0:4f:7a:0e:f3:11:12:b2:c3:f9:b6:
9c:40:99:ea:15:5b:8b:99:de:5e:77:7a:b3:44:6a:9c:fb:78:
0f:c6:01:47:e9:a7:4c:fa:bd:f7:dd:1f:fd:79:94:46:98:68:
b0:8c:29:39:c9:c3:e7:5c:84:0c:e2:5a:2b:2a:cb:a9:96:2d:
cf:1c:9e:c1:8c:04:56:66:50:4d:86:7b:07:53:40:8b:ac:0f:
17:e6:4b:41:ce:25:48:6c:f7:c8:22:fe:b5:4c:cf:d8:f4:35:
c4:9a:c6:15:4c:2b:b7:4a:99:82:19:59:a4:88:f1:c4:d9:88:
a0:4b:39:8d:dd:c4:63:c7:ee:ac:e4:cf:90:9a:00:28:e0:f6:
7c:8b:23:fb:7f:c8:e9:70:a4:f1:51:e8:d1:9c:86:71:c4:da:
17:d9:39:43:2b:b4:d5:6a:fc:e5:71:dd:85:9a:38:df:d5:1d:
0a:13:7b:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:02 2024 by rpki-client on console-ams.rpki-client.org