Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/dJnLxp7_TjDOWVIYW9VLC9BxK6M.roa
File: dJnLxp7_TjDOWVIYW9VLC9BxK6M.roa (raw, json)
Hash identifier: ySVz/QnklTL2oX4rDXil5Wq0a5NYwbdCulpLMV/2y6k=
Subject key identifier: 74:99:CB:C6:9E:FF:4E:30:CE:59:52:18:5B:D5:4B:0B:D0:71:2B:A3
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018D922D8F5F23CA4DCABE856813977C420D
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/dJnLxp7_TjDOWVIYW9VLC9BxK6M.roa
Signing time: Sat 10 Feb 2024 08:41:15 +0000
ROA not before: Sat 10 Feb 2024 08:41:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 5.182.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Mar 2024 08:07:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:92:2d:8f:5f:23:ca:4d:ca:be:85:68:13:97:7c:42:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Feb 10 08:41:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7499cbc69eff4e30ce5952185bd54b0bd0712ba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:2a:52:64:4c:6b:f1:41:67:5b:1a:c9:7c:9c:
85:5b:2c:e2:4e:99:5b:85:48:e7:3f:bc:94:ea:73:
d8:37:bf:fd:ff:0a:37:11:87:2a:0c:28:2a:d3:51:
7c:6a:63:a8:fb:ae:38:6f:f1:9d:2d:f8:92:18:49:
97:ae:16:8d:72:94:c9:21:61:96:32:8f:a1:e8:8c:
82:86:5d:43:6c:4f:9d:73:b6:c4:bd:f1:78:6e:2c:
75:b5:f4:d5:47:82:57:1d:fc:38:ce:10:dd:43:ce:
29:ad:40:cc:2a:57:d5:cc:35:8d:b9:2e:5f:f4:f6:
d2:9e:07:77:54:73:42:cd:8a:16:42:49:65:33:56:
5e:b8:19:42:5a:b4:1f:25:a1:b2:38:92:3d:93:b1:
04:32:dc:ee:5e:1f:17:37:84:e0:2b:9d:6c:86:c0:
b9:59:d8:bc:ed:91:0f:13:a4:16:a3:2c:fe:7e:14:
ec:0d:77:a4:9e:d0:3f:8b:20:04:3b:2c:7a:81:4b:
1d:58:8e:32:45:9c:f1:7b:17:b4:ba:8b:8e:97:7d:
5d:04:40:9f:74:df:c9:d4:d5:87:28:e5:af:6e:32:
50:ff:7c:f9:e6:f2:23:56:1a:e4:82:d0:8b:57:70:
0c:da:e4:80:84:c5:9b:c6:40:18:7d:f1:dc:d1:d5:
e8:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:99:CB:C6:9E:FF:4E:30:CE:59:52:18:5B:D5:4B:0B:D0:71:2B:A3
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/dJnLxp7_TjDOWVIYW9VLC9BxK6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.114.0/24
Signature Algorithm: sha256WithRSAEncryption
33:2a:3c:3c:4e:ed:89:87:81:c0:46:f0:23:8e:86:f1:cd:16:
cf:b6:83:53:d5:59:93:77:47:33:9c:2f:da:94:6d:85:33:f1:
03:f2:3b:78:cf:d7:63:f1:fe:06:eb:c6:4d:b5:6a:cc:d9:31:
e2:01:85:ad:a7:9e:07:38:49:22:21:8c:b5:84:7f:e3:08:a8:
06:41:78:0d:6c:e4:53:5d:b6:d6:f1:c5:25:1d:a7:10:c7:63:
e1:99:a2:49:47:03:21:ab:50:f4:2d:f5:ea:33:2e:3d:37:3b:
b7:d3:16:17:59:93:39:d0:0e:04:47:1b:d7:08:13:27:13:b2:
85:5f:52:83:c5:87:28:af:94:0f:ff:8a:9b:bc:2a:5f:61:92:
cb:11:22:e7:91:b2:f8:6c:52:8e:cd:74:25:bf:19:83:03:76:
d1:a1:47:3f:bc:1d:b5:29:56:22:30:98:b6:54:47:86:44:95:
e9:36:c4:f9:cc:3d:5f:e3:a9:83:e3:b4:00:7e:5c:83:47:b8:
96:19:e5:5a:51:7f:4a:32:db:76:45:1c:be:9c:ac:76:08:8d:
89:12:a8:ee:58:3c:cf:33:47:dd:33:d3:66:2d:f2:1f:4a:9b:
68:a4:fa:27:74:82:eb:3b:19:ad:2e:44:fb:9a:17:9b:81:e5:
f1:1b:aa:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:28 2024 by rpki-client on console-fra.rpki-client.org