Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/5nyR-ZyvkVh0bkNVlr_Hp7mosu4.roa
File: 5nyR-ZyvkVh0bkNVlr_Hp7mosu4.roa (raw, json)
Hash identifier: QcPQsHuOudy5AyMVX1/5Z+pJzWpvgN9nrlHW+XbwiYU=
Subject key identifier: E6:7C:91:F9:9C:AF:91:58:74:6E:43:55:96:BF:C7:A7:B9:A8:B2:EE
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 0190DB07CA0CD1709B0981676CE3A62A8671
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/5nyR-ZyvkVh0bkNVlr_Hp7mosu4.roa
Signing time: Mon 22 Jul 2024 15:20:38 +0000
ROA not before: Mon 22 Jul 2024 15:20:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 128.65.172.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Jul 2024 12:55:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:db:07:ca:0c:d1:70:9b:09:81:67:6c:e3:a6:2a:86:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Jul 22 15:20:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e67c91f99caf9158746e435596bfc7a7b9a8b2ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4e:75:c5:03:b8:ba:c5:9f:b0:4e:6f:07:72:
d0:f5:f7:bb:1d:4a:d0:30:c4:7a:e3:69:34:c4:c7:
7a:63:30:25:79:bb:61:dd:84:95:93:4d:06:b7:7f:
3a:e3:e6:bf:f1:3f:72:ec:37:94:0c:b0:46:8b:7c:
07:74:b6:95:84:5f:1f:02:7f:f8:f6:4d:2c:3a:6b:
19:1d:1b:c6:20:a5:31:c2:61:26:12:08:c3:f7:5a:
29:21:81:cf:68:23:46:a7:97:bf:b8:f3:d0:de:58:
54:25:c6:ff:da:85:d7:1a:d6:63:f4:99:9c:ed:95:
0b:49:ac:d9:b7:67:43:78:3b:4b:9b:12:b4:3e:74:
85:d3:b1:48:99:6f:60:ba:8c:91:9a:bc:ca:ac:7d:
ff:38:25:89:f8:26:68:4f:9f:10:d9:58:54:6b:64:
03:40:df:2f:f8:d1:b1:10:b7:58:19:89:34:6a:31:
4d:51:bb:9d:3f:df:f0:14:4f:c3:d9:32:72:53:70:
fe:8a:de:3e:90:88:4c:a4:61:0c:ee:7c:fe:8b:22:
d1:82:48:0b:89:2e:37:eb:4f:8a:cc:3f:d6:b4:7a:
49:0c:15:34:02:8c:a9:d0:c4:51:3e:ae:d9:fe:83:
45:c7:5e:86:a6:42:26:2a:d3:dd:52:bc:1d:4b:ab:
33:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:7C:91:F9:9C:AF:91:58:74:6E:43:55:96:BF:C7:A7:B9:A8:B2:EE
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/5nyR-ZyvkVh0bkNVlr_Hp7mosu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.65.172.0/22
Signature Algorithm: sha256WithRSAEncryption
86:3c:b9:89:07:93:b5:40:75:77:6e:39:03:f4:6c:e8:5b:3d:
f1:0b:e8:74:30:9e:81:f2:0f:f1:77:68:50:0b:2a:59:35:83:
bf:c4:db:5d:1c:fd:82:23:8e:3e:e3:f6:fa:9b:0a:03:48:fb:
79:e4:ff:e6:38:9d:da:a1:3f:03:2b:b9:80:d7:09:79:7e:e9:
43:9c:bd:6b:0c:f4:a4:3d:0a:3a:81:4f:3c:eb:bf:6d:b6:57:
85:a9:bc:e2:24:1f:49:dd:b2:1b:da:a4:92:b3:ef:8f:99:fb:
2e:18:34:ce:b5:9c:e1:1d:53:76:0c:87:05:eb:ca:b1:79:a9:
5c:8d:8c:fe:64:17:27:34:82:ad:1d:af:35:ec:34:11:6d:0e:
31:84:a1:9d:7b:58:2b:03:99:e6:8c:49:a3:92:43:ef:2f:c4:
28:ad:1a:e8:d6:b8:82:ba:30:33:95:b0:f6:d3:44:ed:26:ec:
f6:14:15:84:43:20:20:20:0b:a4:ef:d8:8c:5b:46:31:5f:dd:
2b:bb:52:9e:8b:1d:e0:4d:97:06:84:fe:b0:13:f8:cb:da:45:
a6:b6:72:64:02:3a:1f:ef:06:b4:af:45:fb:9e:f9:05:50:f9:
41:38:b0:a7:25:ca:82:b0:2b:71:13:ec:b5:75:81:12:81:ae:
b9:9d:b8:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 25 16:40:23 2024 by rpki-client on console-ams.rpki-client.org