Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/5260d0-1855-4f30-b8ef-7c998079a6a9/1/jP5KuvyZZwutR1sEhVpfOl_lsSQ.roa
File: jP5KuvyZZwutR1sEhVpfOl_lsSQ.roa (raw, json)
Hash identifier: Ac1HeLFjJRAPpPQh2Egg1Ks3anJtvyVtVee2T15sySc=
Subject key identifier: 8C:FE:4A:BA:FC:99:67:0B:AD:47:5B:04:85:5A:5F:3A:5F:E5:B1:24
Certificate issuer: /CN=5cfe3881f3c44774f51cc75ee7e6f91c5565a606
Certificate serial: 018CC7940E50191A68A69AAFA3E0E002ABB2
Authority key identifier: 5C:FE:38:81:F3:C4:47:74:F5:1C:C7:5E:E7:E6:F9:1C:55:65:A6:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XP44gfPER3T1HMde5-b5HFVlpgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/5260d0-1855-4f30-b8ef-7c998079a6a9/1/jP5KuvyZZwutR1sEhVpfOl_lsSQ.roa
Signing time: Tue 02 Jan 2024 00:30:18 +0000
ROA not before: Tue 02 Jan 2024 00:30:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 185.133.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Apr 2024 16:21:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:0e:50:19:1a:68:a6:9a:af:a3:e0:e0:02:ab:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cfe3881f3c44774f51cc75ee7e6f91c5565a606
Validity
Not Before: Jan 2 00:30:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8cfe4abafc99670bad475b04855a5f3a5fe5b124
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:12:44:16:7e:23:01:41:96:74:fd:e9:4c:df:
6f:88:9e:34:f3:3c:97:a4:bc:b8:b4:08:20:80:fc:
ce:b2:36:3a:1a:85:01:74:b2:7c:82:f1:ac:8c:0b:
6b:df:08:f8:ef:81:4e:e4:e7:e8:3a:57:6e:4e:be:
07:be:0d:0a:d4:79:5f:3c:3d:94:b4:52:35:7f:ec:
b6:c9:48:9b:2d:50:6b:9f:2a:81:dd:f8:23:02:33:
e8:5a:6e:b3:97:9b:f2:83:73:15:40:a0:ad:04:17:
44:90:2c:e9:b5:26:7d:8b:02:50:6d:49:3d:c0:ff:
bd:e8:ad:91:dc:a7:3d:c5:ed:95:0f:9d:bf:e4:da:
78:1b:1e:c3:55:2f:4f:ce:59:e1:40:1d:e9:b1:52:
4e:d1:05:06:52:4e:24:3a:d4:a7:f5:ce:a0:65:2e:
b1:b6:ac:f5:d3:19:40:a2:28:a9:80:50:cc:94:aa:
45:8f:4e:02:23:38:d8:20:54:f0:ca:2a:30:b6:84:
b5:3e:c7:ca:80:28:c1:c2:80:5c:40:4d:8e:20:ee:
c1:70:37:f5:a8:d7:e0:7d:2e:e6:cd:e1:e2:af:6f:
4c:86:c7:66:6a:96:14:1e:57:45:dc:6e:36:72:98:
ea:4f:99:6c:f0:04:47:fe:a9:87:6e:68:fe:55:6b:
9a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:FE:4A:BA:FC:99:67:0B:AD:47:5B:04:85:5A:5F:3A:5F:E5:B1:24
X509v3 Authority Key Identifier:
keyid:5C:FE:38:81:F3:C4:47:74:F5:1C:C7:5E:E7:E6:F9:1C:55:65:A6:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XP44gfPER3T1HMde5-b5HFVlpgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5260d0-1855-4f30-b8ef-7c998079a6a9/1/jP5KuvyZZwutR1sEhVpfOl_lsSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5260d0-1855-4f30-b8ef-7c998079a6a9/1/XP44gfPER3T1HMde5-b5HFVlpgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.70.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:0a:d9:de:14:ca:bf:c0:85:be:2b:8f:a8:9d:4d:73:79:dc:
27:b9:1d:b1:ef:40:8d:48:d5:6e:c2:b6:f7:85:ab:f4:22:da:
8c:95:42:08:71:cf:89:54:35:00:90:0f:34:d1:22:41:e9:34:
4a:3d:d8:ae:9c:56:09:81:d0:75:27:09:00:39:e5:4d:58:b6:
24:7e:5c:c5:dc:d0:34:27:2d:40:82:94:b1:4a:b4:46:b8:30:
4d:db:bb:50:c0:e9:13:1e:55:5b:2b:73:30:6c:ef:00:af:56:
39:1d:5d:40:ba:9a:4e:1d:5c:d9:89:96:8c:b7:27:c8:6d:59:
7f:e5:cf:36:16:95:4e:09:25:80:f6:bf:7f:28:53:9c:c3:0d:
37:86:9a:30:2d:cd:33:64:ed:58:29:38:62:d7:bf:02:fe:70:
f4:c9:e1:8b:01:e0:a6:56:f0:04:e0:f8:29:f1:ff:ea:31:92:
05:14:22:15:da:22:a2:f0:8d:85:96:96:12:ee:c6:9d:93:84:
ef:b6:c5:71:f5:12:96:75:98:1d:58:7f:05:0b:ee:b1:f1:3a:
2c:47:7b:a9:ba:4c:b9:47:c3:a5:d6:52:9d:77:14:db:8f:01:
7c:d4:1e:dc:1c:31:e7:63:38:35:f5:9d:95:8e:15:fd:31:1d:
4e:83:fc:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:27 2024 by rpki-client on console-ams.rpki-client.org