Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/hxV2fAiiwKN0bMP5Gmw7IInbJTU.roa
File: hxV2fAiiwKN0bMP5Gmw7IInbJTU.roa (raw, json)
Hash identifier: 7Yr1yK51Lp1ZX4fP8PfQO+7roSiICWIEU3N632GNokk=
Subject key identifier: 87:15:76:7C:08:A2:C0:A3:74:6C:C3:F9:1A:6C:3B:20:89:DB:25:35
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 0185706721DD24EE8D452313359DC534A274
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/hxV2fAiiwKN0bMP5Gmw7IInbJTU.roa
Signing time: Mon 02 Jan 2023 02:54:45 +0000
ROA not before: Mon 02 Jan 2023 02:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200376
IP address blocks: 5.202.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:21:dd:24:ee:8d:45:23:13:35:9d:c5:34:a2:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: Jan 2 02:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8715767c08a2c0a3746cc3f91a6c3b2089db2535
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:6f:91:fd:ed:f0:3d:dd:c7:b1:4c:22:ea:68:
34:81:0f:6f:40:1b:66:42:65:85:af:20:6d:48:5c:
29:0c:47:24:e3:bf:bf:ff:72:0d:ed:d7:8b:30:01:
02:f6:33:f3:f2:ad:ce:82:d2:ce:79:45:6a:3b:22:
bb:35:e9:76:1a:37:e3:bc:8a:2c:cd:81:77:33:09:
a1:e3:ac:f9:32:66:c7:cd:3b:3f:4b:ab:68:b1:89:
e7:02:fc:66:59:77:83:e3:a0:05:d0:dd:5b:97:cb:
c2:cb:d0:f5:9a:31:91:44:4b:77:ca:ef:3a:e6:14:
1c:99:97:ea:94:d1:ed:d2:23:03:da:3c:27:76:6c:
91:c0:e6:bc:55:95:cc:24:bf:00:6a:25:47:4f:95:
79:7c:76:68:d1:39:ce:03:69:bf:07:ee:eb:2f:fa:
55:3b:43:7b:ca:5b:11:de:86:83:85:e0:e7:51:54:
53:51:7a:f0:d1:f8:76:66:24:ce:62:55:04:f8:81:
96:ce:86:a4:6d:1b:20:63:9c:6d:dc:dc:f9:d7:95:
b2:34:2c:b6:ae:0b:dd:c3:d3:e5:d5:51:20:bd:76:
4a:c2:00:39:2d:e7:e0:37:28:bf:62:eb:bc:59:c9:
a3:18:7f:eb:c1:aa:ca:09:3d:73:99:2c:13:69:5f:
b0:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:15:76:7C:08:A2:C0:A3:74:6C:C3:F9:1A:6C:3B:20:89:DB:25:35
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/hxV2fAiiwKN0bMP5Gmw7IInbJTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.202.86.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:61:b9:cf:9f:af:26:1f:ca:f1:3c:79:7b:88:57:b3:36:07:
c8:7c:84:1f:1e:e3:47:c1:1c:ef:3f:e1:ba:00:76:aa:f8:53:
a4:26:30:0e:07:25:13:af:a2:c7:ae:54:b5:58:71:a4:d6:c5:
f0:db:65:a3:1e:ef:03:2c:87:ae:77:47:0a:73:d7:24:bc:69:
bf:8b:1d:04:49:07:90:f7:ed:a5:79:2b:4f:92:3a:50:30:d6:
a8:8a:3c:8d:51:2c:6d:8b:e5:a5:39:b7:b1:cc:08:45:e3:3b:
8d:a0:21:50:87:b4:cf:8f:c5:bf:7a:8e:f7:2d:fc:25:42:a8:
7d:fc:90:3e:a2:1d:11:e8:20:f9:5e:dd:42:de:89:ae:7b:6c:
77:36:eb:6d:e7:3c:fd:3e:4b:38:d4:34:a2:43:c1:11:6f:7a:
af:3a:a1:17:f7:45:77:4e:36:23:23:83:e9:25:7c:e0:72:5a:
21:17:15:15:a2:ef:bb:68:0c:84:7e:14:21:d1:43:04:68:95:
96:65:ca:ad:85:49:7d:96:7f:d6:58:e9:16:87:ce:46:ea:ca:
a3:ae:46:1e:c9:b3:08:97:11:99:9c:31:31:d2:33:4a:18:d7:
21:80:7f:76:a4:65:de:94:68:70:e2:71:4a:1c:ba:00:5e:16:
29:48:d2:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:34 2024 by rpki-client on console-ams.rpki-client.org