Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/1df764-2b83-4343-9102-47a9f96ca586/1/5PfR_28Q0UDIRXVbg1ZyU-8dLl8.roa
File: 5PfR_28Q0UDIRXVbg1ZyU-8dLl8.roa (raw, json)
Hash identifier: UTbzvNdkzLcD8WSDxRycWeXdnPDGRqscgqdWnn6wzcQ=
Subject key identifier: E4:F7:D1:FF:6F:10:D1:40:C8:45:75:5B:83:56:72:53:EF:1D:2E:5F
Certificate issuer: /CN=5d656b2013e851516b942fa90706c72090dcddef
Certificate serial: 0185727A270620EA74761958EFEE754591F4
Authority key identifier: 5D:65:6B:20:13:E8:51:51:6B:94:2F:A9:07:06:C7:20:90:DC:DD:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWVrIBPoUVFrlC-pBwbHIJDc3e8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/1df764-2b83-4343-9102-47a9f96ca586/1/5PfR_28Q0UDIRXVbg1ZyU-8dLl8.roa
Signing time: Mon 02 Jan 2023 12:34:46 +0000
ROA not before: Mon 02 Jan 2023 12:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206347
IP address blocks: 194.49.12.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:7a:27:06:20:ea:74:76:19:58:ef:ee:75:45:91:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d656b2013e851516b942fa90706c72090dcddef
Validity
Not Before: Jan 2 12:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4f7d1ff6f10d140c845755b83567253ef1d2e5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:83:f6:bc:e0:f0:9f:29:24:f6:ea:08:d8:24:
3a:03:b6:58:e8:41:c8:70:c2:99:d1:84:de:b8:b6:
d1:69:68:e5:db:5d:7c:2c:7d:54:91:11:5b:b8:c3:
94:d4:fc:5f:9b:18:b7:21:94:76:63:7e:5f:0c:d8:
2e:ae:c3:f6:e5:f0:f6:55:a7:72:22:e8:ab:8d:8d:
85:1d:a5:f0:7d:eb:de:d7:aa:36:7d:ce:e3:aa:a5:
24:be:6a:d9:19:c7:d3:4f:85:36:5b:2a:e8:80:43:
2d:cb:73:36:f4:2c:6b:31:e4:e4:eb:f7:5e:20:70:
38:6e:d9:6f:17:91:8a:aa:40:e0:ca:bb:60:cf:85:
75:29:91:07:49:a4:fe:5d:fd:0f:c0:97:0d:70:4c:
1a:cf:32:cd:a3:e7:45:94:a4:f7:fa:89:69:68:d1:
e5:e3:d4:6f:7d:df:e2:ef:92:ab:67:03:ef:6b:d3:
f5:59:49:f5:23:04:a7:1f:98:2a:f0:23:5c:7f:67:
04:26:3e:7b:b2:ad:e4:4d:e4:5c:22:7e:c6:4b:1f:
cb:db:ae:82:b1:3f:43:6b:f6:b2:80:4b:37:c7:aa:
59:72:33:65:5c:63:44:3b:e4:02:76:87:5a:77:cf:
2a:91:22:2f:a3:db:65:3c:87:f1:cd:96:ab:f1:55:
40:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:F7:D1:FF:6F:10:D1:40:C8:45:75:5B:83:56:72:53:EF:1D:2E:5F
X509v3 Authority Key Identifier:
keyid:5D:65:6B:20:13:E8:51:51:6B:94:2F:A9:07:06:C7:20:90:DC:DD:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWVrIBPoUVFrlC-pBwbHIJDc3e8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/1df764-2b83-4343-9102-47a9f96ca586/1/5PfR_28Q0UDIRXVbg1ZyU-8dLl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/1df764-2b83-4343-9102-47a9f96ca586/1/XWVrIBPoUVFrlC-pBwbHIJDc3e8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.49.12.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:96:ec:d3:28:3a:1d:d2:73:ef:88:5f:59:58:66:8e:24:c8:
fd:b7:73:04:b1:73:a3:14:79:61:5d:77:c5:77:e4:d1:bf:c2:
82:ab:e1:ce:96:34:90:a0:13:ac:02:86:61:b0:89:ba:34:4e:
5c:6e:37:a0:6f:a0:cc:2f:20:68:0d:17:4e:80:e7:65:7f:c7:
68:b1:08:3b:05:09:19:25:6a:3f:23:52:d6:09:6f:1a:db:1a:
e0:f0:0c:9c:30:e9:f4:6c:fe:97:77:26:87:3d:89:c4:15:ec:
30:16:30:37:d1:3a:76:16:d2:39:14:a0:46:af:a0:dc:f6:a3:
a7:f0:ed:23:70:6f:27:5f:cb:89:89:98:69:82:df:a9:c1:30:
d7:8d:09:4c:62:71:ad:98:0e:45:49:cd:47:2f:65:22:a7:b6:
9b:db:4a:a8:f3:13:f8:83:7e:93:2d:86:5c:35:2d:dc:2a:07:
f7:27:76:f9:2e:0b:0e:37:08:ce:0d:2f:ae:5e:41:35:13:27:
36:92:67:07:47:27:43:6b:d1:9c:6a:ae:fe:87:e3:3c:17:fb:
9a:8f:79:e5:c6:a8:18:75:7f:e1:45:d8:20:e4:da:81:df:8b:
b7:7a:b2:c5:71:1e:a7:8d:49:0d:99:8b:58:64:31:33:6e:c1:
60:a2:dc:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:15 2024 by rpki-client on console-ams.rpki-client.org