Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/cmP41bxysQVxQeSfgp151FKJa0I.roa
File: cmP41bxysQVxQeSfgp151FKJa0I.roa (raw, json)
Hash identifier: 85LtI7xw6BARcXjCsyBpPBh9fZHyVBElyU2UuTGUC+s=
Subject key identifier: 72:63:F8:D5:BC:72:B1:05:71:41:E4:9F:82:9D:79:D4:52:89:6B:42
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 0185706720671E4EDD116F64EDA487F3611E
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/cmP41bxysQVxQeSfgp151FKJa0I.roa
Signing time: Mon 02 Jan 2023 02:54:44 +0000
ROA not before: Mon 02 Jan 2023 02:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58142
IP address blocks: 5.202.168.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:20:67:1e:4e:dd:11:6f:64:ed:a4:87:f3:61:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: Jan 2 02:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7263f8d5bc72b1057141e49f829d79d452896b42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:4d:5f:82:d7:8c:06:53:d4:eb:28:09:6f:4c:
e0:ea:e8:de:df:d1:9a:f1:c1:8b:da:da:d5:62:a0:
40:fa:2b:53:9c:0a:e1:cf:c4:0b:6a:28:25:13:36:
e5:3c:26:3b:5c:d3:6f:32:ef:e0:b1:17:9b:dc:27:
09:57:41:09:ef:62:f6:c4:c7:f7:a0:0e:9e:58:13:
91:b9:29:52:f8:3c:60:67:6c:db:0a:51:f3:15:8e:
9e:48:96:f4:06:2b:fe:d6:14:4b:07:95:d3:17:11:
5a:5c:b0:7d:23:11:df:42:2b:b5:0b:09:9c:9e:cf:
b8:80:1e:7d:37:24:d1:bb:6e:3d:f4:a0:f3:a7:4d:
b5:dd:03:7a:0d:b4:10:ae:02:b9:aa:05:80:70:e2:
63:7e:da:c1:4b:71:3c:a1:93:8c:17:58:7c:86:2e:
fd:aa:46:17:05:1f:34:44:ba:f6:80:f7:af:a3:e2:
17:c0:92:86:cf:fa:d3:f3:96:ee:cd:af:d0:ac:06:
1f:44:a9:d4:95:2c:a5:9b:a6:e1:79:da:ca:dc:47:
97:b8:48:bb:b6:7e:b1:7a:2a:76:66:1a:e0:e1:2e:
b1:b1:db:8c:57:d5:32:31:f1:42:c0:c6:b5:bf:48:
89:39:06:42:e5:d3:11:b8:42:83:9d:3c:95:2c:99:
ad:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:63:F8:D5:BC:72:B1:05:71:41:E4:9F:82:9D:79:D4:52:89:6B:42
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/cmP41bxysQVxQeSfgp151FKJa0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.202.168.0/21
Signature Algorithm: sha256WithRSAEncryption
88:6c:57:71:84:bf:df:90:8e:3c:a5:e1:48:56:91:04:5c:a0:
72:22:c1:f1:36:15:25:31:91:a3:b5:e5:41:83:5b:43:84:a3:
b2:ae:0b:e1:b4:3a:90:53:92:c8:68:3d:ba:ad:fb:e5:3c:a9:
08:3c:bf:43:24:5a:a3:67:ac:b4:46:8d:98:69:74:4d:38:0d:
df:64:61:e0:6d:51:6f:03:75:0a:02:98:be:fd:09:63:21:93:
5a:50:89:f8:a6:36:34:36:d8:a3:08:b8:17:94:e1:45:29:12:
ed:21:f0:15:f9:3b:18:eb:b6:ec:5f:7c:7c:ce:6b:80:a4:60:
70:6f:c9:03:d6:a0:5e:21:99:7e:d0:1a:6f:8f:05:1e:66:a1:
a3:af:62:9a:40:77:86:07:6b:20:9c:70:8d:5a:9e:7c:89:ea:
5a:97:96:6e:33:cf:e5:00:ca:97:8c:bb:3b:27:66:ef:f3:b7:
3b:cc:90:43:77:db:af:40:0c:87:0a:df:40:b7:15:11:af:22:
d9:73:da:87:d5:57:2d:a3:b4:e5:c9:f6:71:55:7a:98:d6:05:
3f:e1:9b:ff:12:ef:15:43:dd:17:3f:10:ba:c9:5c:45:2d:6e:
7e:6d:53:54:f9:27:d6:ca:c6:d0:cb:09:46:76:9e:e6:d4:54:
4b:da:40:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:33 2024 by rpki-client on console-ams.rpki-client.org