Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/41dec1-1eb1-49c7-9d50-ca595e34d5ac/1/5DqZycUs957-_cG_3gDH1RIo_u0.roa
File: 5DqZycUs957-_cG_3gDH1RIo_u0.roa (raw, json)
Hash identifier: XoFToT5fqY1Z0Ua1rDypCxNF2gM0Gl1n3oG8jNtUM5M=
Subject key identifier: E4:3A:99:C9:C5:2C:F7:9E:FE:FD:C1:BF:DE:00:C7:D5:12:28:FE:ED
Certificate issuer: /CN=4e984a5a4b7808bb4ea32d310bdd07ecc9575113
Certificate serial: 01856D5D1D42EF38EB5299FB4EDE68E8BB72
Authority key identifier: 4E:98:4A:5A:4B:78:08:BB:4E:A3:2D:31:0B:DD:07:EC:C9:57:51:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TphKWkt4CLtOoy0xC90H7MlXURM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/41dec1-1eb1-49c7-9d50-ca595e34d5ac/1/5DqZycUs957-_cG_3gDH1RIo_u0.roa
Signing time: Sun 01 Jan 2023 12:44:56 +0000
ROA not before: Sun 01 Jan 2023 12:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 4755
IP address blocks: 5.157.88.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5d:1d:42:ef:38:eb:52:99:fb:4e:de:68:e8:bb:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e984a5a4b7808bb4ea32d310bdd07ecc9575113
Validity
Not Before: Jan 1 12:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e43a99c9c52cf79efefdc1bfde00c7d51228feed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:42:12:03:cb:d7:e5:b4:57:e9:37:71:55:76:
d7:78:62:d0:43:18:b6:09:57:ed:a5:f8:e1:34:95:
c5:f6:c8:86:b5:b0:9b:ec:1e:b3:e1:fe:53:83:f8:
7b:5c:88:e9:b1:5a:ad:01:5a:95:bc:9a:ab:ab:33:
5e:da:b2:83:13:7a:1e:e3:b6:bf:b4:4c:02:86:e6:
a0:6f:34:4a:6a:b5:70:33:37:1c:3a:66:3d:d0:44:
d1:fb:ea:82:92:01:db:8f:42:cb:6f:84:da:c1:57:
0a:97:92:d6:4a:af:8a:b6:69:1f:d8:07:e6:a6:01:
76:a8:ef:31:ed:03:48:e6:08:e4:c4:ec:50:2f:56:
c6:6e:e0:f4:61:37:1c:3b:4e:5b:44:26:3e:62:e7:
7b:49:37:09:0b:ea:e9:5d:7b:70:1a:52:75:5b:4c:
4b:e8:7d:89:1b:97:86:83:15:70:ee:88:1d:b0:28:
96:ce:27:c7:92:22:26:3c:a6:48:d5:c0:ab:3b:df:
00:15:4e:96:af:1e:90:df:8e:71:ef:a6:4b:2f:78:
9d:38:a1:f4:79:39:b0:e8:0e:b2:96:20:e8:bf:0b:
7b:9e:01:8e:ec:e9:ca:ab:8d:4c:3d:25:a2:34:22:
c2:6d:41:03:d5:5c:2c:dc:cd:66:78:e8:7a:a5:40:
e2:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:3A:99:C9:C5:2C:F7:9E:FE:FD:C1:BF:DE:00:C7:D5:12:28:FE:ED
X509v3 Authority Key Identifier:
keyid:4E:98:4A:5A:4B:78:08:BB:4E:A3:2D:31:0B:DD:07:EC:C9:57:51:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TphKWkt4CLtOoy0xC90H7MlXURM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/41dec1-1eb1-49c7-9d50-ca595e34d5ac/1/5DqZycUs957-_cG_3gDH1RIo_u0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/41dec1-1eb1-49c7-9d50-ca595e34d5ac/1/TphKWkt4CLtOoy0xC90H7MlXURM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.88.0/24
Signature Algorithm: sha256WithRSAEncryption
58:8b:28:0f:10:db:7d:c6:f5:8a:30:45:92:c6:f4:a8:4f:be:
74:1c:da:e0:77:d3:5d:1d:e4:62:19:8e:f4:4e:aa:0d:7b:c3:
92:f9:92:ba:db:2a:91:b0:d7:74:70:17:b2:d8:d4:2f:73:58:
74:42:68:d2:ef:7a:69:2b:07:01:b5:d3:f5:cc:5b:94:c9:79:
0f:2e:02:2f:5a:0b:db:1b:a7:f8:c7:c5:9f:29:bd:d0:02:11:
c1:25:fc:33:e7:b8:a9:73:57:09:06:9e:76:37:22:22:e6:d7:
5d:95:e1:96:aa:0d:e3:8c:13:a8:ab:b8:2b:2a:90:ad:19:88:
f1:61:7a:b7:49:4e:77:c2:02:98:09:0a:30:b2:71:5f:c7:6f:
68:58:c4:84:80:1b:a2:85:c1:9b:93:62:7f:00:51:01:0d:1a:
36:c8:e4:cc:a5:81:9e:c8:80:a1:a0:6a:59:16:e8:be:74:84:
74:85:40:37:a9:6e:25:b3:c6:be:f4:98:8e:f1:9d:50:ad:43:
2e:fa:15:1b:a2:97:02:3e:4a:37:b8:72:1f:fd:90:6e:4e:59:
2c:a3:32:b7:ff:6f:7f:f7:12:d1:6a:8e:2c:ac:52:53:4e:e0:
b8:90:33:78:ba:0e:c6:1e:e6:72:8d:7d:47:38:0e:54:66:f3:
0f:84:38:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:44 2024 by rpki-client on console-ams.rpki-client.org