Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/slyOgMw6zbzMy6AwGyfTNDbMkio.roa
File: slyOgMw6zbzMy6AwGyfTNDbMkio.roa (raw, json)
Hash identifier: lexN9wM4P2Ib5+SyeX9i4ORhZZ76KisRNRd6SAixRu4=
Subject key identifier: B2:5C:8E:80:CC:3A:CD:BC:CC:CB:A0:30:1B:27:D3:34:36:CC:92:2A
Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255
Certificate serial: 01896DDD9A6F36FB6BFB55C76F26D06BC9A6
Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/slyOgMw6zbzMy6AwGyfTNDbMkio.roa
Signing time: Wed 19 Jul 2023 11:16:26 +0000
ROA not before: Wed 19 Jul 2023 11:16:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205020
IP address blocks: 5.11.28.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 14 Aug 2023 08:51:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6d:dd:9a:6f:36:fb:6b:fb:55:c7:6f:26:d0:6b:c9:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255
Validity
Not Before: Jul 19 11:16:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b25c8e80cc3acdbccccba0301b27d33436cc922a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:fd:9e:b0:6b:b5:ee:5b:34:ec:02:34:7a:18:
46:77:4f:32:3f:f0:65:e0:44:5e:c4:56:85:ba:28:
10:f4:41:9c:48:2c:bc:27:22:3c:27:af:6c:da:c6:
88:61:5e:9d:3c:f4:fa:95:d2:3b:df:ff:b4:eb:59:
4e:2a:94:4a:19:ae:3d:27:27:c8:64:28:95:13:08:
40:97:a3:0d:58:b7:8c:9f:eb:5e:cc:62:1c:82:3f:
16:98:9f:04:11:a4:87:f8:d0:b4:48:82:5d:1d:fd:
dd:7f:1d:be:6f:96:43:8f:f9:fb:d5:23:cc:17:89:
29:7e:1f:3c:f6:89:4e:f9:ec:ac:c5:b0:51:4b:39:
be:57:e5:0f:6c:e2:43:37:83:82:c7:5b:a0:b8:23:
7f:2c:39:bc:0c:d3:44:73:1e:0e:42:ee:7a:d9:86:
f9:b5:ea:69:44:47:62:9f:ce:94:d7:b1:55:17:46:
e5:26:81:6c:e1:a9:3f:ca:ba:e4:15:9a:41:1d:dc:
24:e9:39:d3:64:3f:f0:62:a6:2b:39:a0:0c:df:e4:
3c:13:64:a6:cf:f3:52:13:2d:48:9d:19:32:e0:0b:
f0:e4:ab:15:8d:de:ea:4c:5e:22:45:62:33:67:01:
72:25:f1:25:08:d3:ae:ce:06:b9:30:06:a6:cd:e7:
b0:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:5C:8E:80:CC:3A:CD:BC:CC:CB:A0:30:1B:27:D3:34:36:CC:92:2A
X509v3 Authority Key Identifier:
keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/slyOgMw6zbzMy6AwGyfTNDbMkio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.11.28.0/22
Signature Algorithm: sha256WithRSAEncryption
07:5e:e9:4f:c1:74:57:71:c5:2d:92:63:62:a0:bd:19:95:9f:
e0:3f:7a:31:75:1c:7e:80:a5:4a:8c:0d:14:1f:4c:f1:45:6d:
8c:fa:eb:2f:01:ec:69:b0:e8:74:ab:85:d9:44:0a:3a:9a:05:
5c:f1:82:86:ca:68:84:7f:5e:db:87:28:b9:43:50:77:74:61:
8a:7c:18:27:1b:a0:e8:41:81:14:31:dc:16:f0:10:0d:91:79:
13:96:d5:d4:00:0e:cd:fb:fe:76:b5:c8:48:77:fa:9d:65:27:
a2:0b:04:e8:b4:22:67:40:b9:e5:9f:a6:f2:c5:8b:88:65:d3:
45:4a:25:d3:e4:b5:96:74:fd:f0:77:95:32:c3:8f:5a:c4:29:
2f:3d:f7:cc:66:30:0b:50:14:cb:59:fd:6d:8f:cd:57:1e:9c:
ef:57:ca:1c:a6:08:c3:30:37:e5:eb:b1:e6:72:48:65:b1:5e:
68:49:51:3e:a0:c1:8b:fb:fe:08:75:71:69:2f:c3:fa:25:7f:
40:95:8d:49:55:58:c7:59:63:0a:e1:d8:53:66:6a:f5:1c:74:
ab:15:e8:81:1a:24:16:60:89:61:19:51:0b:2d:5b:04:df:d4:
2e:36:4d:5e:3a:35:c0:d6:27:66:45:b7:38:97:81:bb:9c:0f:
cb:ee:45:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:06 2024 by rpki-client on console-fra.rpki-client.org