Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/3e72ed-1d65-4982-ad9a-9c37478a593f/1/5xFQA9m6YaeqJAaQvazpTQb64Hc.roa
File: 5xFQA9m6YaeqJAaQvazpTQb64Hc.roa (raw, json)
Hash identifier: p7k9fsh1zSMZ4kl+CBeeuhIANHq8hcUX5D3vcsf50HY=
Subject key identifier: E7:11:50:03:D9:BA:61:A7:AA:24:06:90:BD:AC:E9:4D:06:FA:E0:77
Certificate issuer: /CN=5ceb0ebd878b77d42f2ca9dd08f70c323c5d03db
Certificate serial: 01856C6EE2515F987450583E93F229D9ACA2
Authority key identifier: 5C:EB:0E:BD:87:8B:77:D4:2F:2C:A9:DD:08:F7:0C:32:3C:5D:03:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XOsOvYeLd9QvLKndCPcMMjxdA9s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/3e72ed-1d65-4982-ad9a-9c37478a593f/1/5xFQA9m6YaeqJAaQvazpTQb64Hc.roa
Signing time: Sun 01 Jan 2023 08:24:44 +0000
ROA not before: Sun 01 Jan 2023 08:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44180
IP address blocks: 93.89.8.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6e:e2:51:5f:98:74:50:58:3e:93:f2:29:d9:ac:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ceb0ebd878b77d42f2ca9dd08f70c323c5d03db
Validity
Not Before: Jan 1 08:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7115003d9ba61a7aa240690bdace94d06fae077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:5d:70:dd:cf:06:d6:f9:ae:68:e0:41:b1:e6:
76:d3:40:d2:8e:4c:a5:48:5b:e7:12:58:77:23:93:
40:64:9e:30:34:e9:50:09:1b:c3:8c:3f:3e:1b:9d:
60:2a:c1:a3:22:06:cd:bb:d0:21:f7:47:8e:55:27:
5e:83:72:44:f1:ca:5d:98:81:45:30:bd:04:e6:3f:
30:6d:f4:fe:2b:24:ae:9d:d8:35:26:2f:d0:2b:9c:
8e:d1:90:ae:27:77:f5:d4:a2:2c:c8:5d:ab:9c:31:
a8:ac:cb:71:ff:3e:f9:00:4d:d9:26:5c:8a:ad:cf:
19:11:2b:86:fa:97:4b:e6:c3:f6:2f:f9:ff:ec:ac:
3a:d7:25:b0:79:71:95:77:c1:14:db:cc:94:3c:2a:
be:22:1e:cb:9d:83:33:cd:38:9a:1b:bd:58:64:2a:
37:da:d5:d3:25:74:f9:df:8a:4d:89:4b:e0:c1:56:
89:bf:09:7f:ea:d6:9a:2e:de:b2:5a:a0:24:ff:cb:
33:9f:d3:18:f3:e2:f1:76:25:ff:bf:84:53:d8:86:
e3:9c:56:29:47:90:63:85:8e:e2:ee:a9:fb:74:d0:
2f:30:84:db:1b:81:11:20:0e:33:3b:c2:92:69:20:
a9:20:ec:80:c4:c2:3b:8a:34:3f:2e:22:29:3c:bd:
0e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:11:50:03:D9:BA:61:A7:AA:24:06:90:BD:AC:E9:4D:06:FA:E0:77
X509v3 Authority Key Identifier:
keyid:5C:EB:0E:BD:87:8B:77:D4:2F:2C:A9:DD:08:F7:0C:32:3C:5D:03:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XOsOvYeLd9QvLKndCPcMMjxdA9s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/3e72ed-1d65-4982-ad9a-9c37478a593f/1/5xFQA9m6YaeqJAaQvazpTQb64Hc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/3e72ed-1d65-4982-ad9a-9c37478a593f/1/XOsOvYeLd9QvLKndCPcMMjxdA9s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.89.8.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:7b:53:e0:7b:4f:fa:ad:24:df:c1:b2:2d:e2:94:62:f4:26:
53:45:fa:b7:cb:e8:54:ca:ed:d3:d4:76:ba:24:8f:af:f1:d4:
f6:7b:a1:6d:e8:a1:08:50:72:e7:e1:34:d7:67:d0:d4:a3:84:
99:e8:81:87:9e:28:f6:26:85:9c:14:83:96:18:ea:0d:f5:1f:
8e:a9:4b:bf:aa:66:31:26:00:77:66:17:2d:50:80:5b:3f:18:
0c:c3:82:5b:91:5c:35:28:e5:dd:f4:49:4f:a4:9a:b2:6b:f8:
d2:5f:b1:fe:b9:fd:b2:86:4d:5c:07:92:32:70:b0:29:51:bd:
18:54:21:c4:86:90:23:6b:25:26:cb:b6:23:c6:79:7f:00:41:
ee:33:8d:64:f3:9f:22:d4:59:33:ce:aa:c8:a3:7b:fb:3f:55:
1e:d3:b1:33:ab:64:fa:ef:b2:00:52:e5:fc:d4:ca:df:10:d3:
ab:e2:ae:6c:a3:29:0e:b5:69:d0:f0:49:6e:60:6a:8a:5b:38:
bc:13:88:88:19:f6:bf:73:1f:a5:51:85:c2:2a:b2:20:3c:05:
8e:a2:eb:c7:00:a2:df:1a:d7:cd:06:8f:c3:ae:b8:ad:27:f1:
4e:ab:30:32:d0:9b:dd:be:20:c5:5a:94:a6:ff:fa:2c:90:41:
60:34:f6:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:24 2024 by rpki-client on console-ams.rpki-client.org