Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/5cc337-bc56-4766-a450-f35373da7deb/1/XDGwZY1LnSTO_QzhzOXm3zlvGhg.roa
File: XDGwZY1LnSTO_QzhzOXm3zlvGhg.roa (raw, json)
Hash identifier: ttXlsrneJ8P/qWtg/XPWSZrksTDMOplJrgze4gwz/PA=
Subject key identifier: 5C:31:B0:65:8D:4B:9D:24:CE:FD:0C:E1:CC:E5:E6:DF:39:6F:1A:18
Certificate issuer: /CN=99ce77f7d916513b84914849950fe43f55694fda
Certificate serial: 018570B0788D6B353B403D1962D376B00217
Authority key identifier: 99:CE:77:F7:D9:16:51:3B:84:91:48:49:95:0F:E4:3F:55:69:4F:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mc5399kWUTuEkUhJlQ_kP1VpT9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/5cc337-bc56-4766-a450-f35373da7deb/1/XDGwZY1LnSTO_QzhzOXm3zlvGhg.roa
Signing time: Mon 02 Jan 2023 04:14:51 +0000
ROA not before: Mon 02 Jan 2023 04:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208984
IP address blocks: 5.102.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:78:8d:6b:35:3b:40:3d:19:62:d3:76:b0:02:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99ce77f7d916513b84914849950fe43f55694fda
Validity
Not Before: Jan 2 04:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c31b0658d4b9d24cefd0ce1cce5e6df396f1a18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5e:b0:77:0b:1f:b1:01:0b:64:bc:bc:43:83:
c8:a7:72:d1:06:d0:5e:f1:ed:a7:bb:45:55:8c:ef:
56:3d:c7:0b:89:f3:cc:30:31:83:aa:01:a4:77:0d:
23:63:bc:3f:51:2c:c7:ae:5c:cb:04:27:50:8c:5b:
56:af:e9:c9:dc:b7:0d:ef:2d:00:1c:00:93:2b:8d:
d5:a7:70:43:b9:fd:ce:20:ad:d4:c1:26:c9:3b:fb:
e2:5e:7c:f6:cd:45:76:dd:d7:9b:7a:59:20:84:b4:
96:76:5b:a7:ef:c9:72:e8:90:45:3d:21:76:1f:5d:
c8:78:42:01:ac:54:0f:82:3d:55:cd:48:e7:92:aa:
e6:71:ef:ff:89:97:2c:14:26:9b:4a:1a:5f:2e:5f:
76:4d:6c:54:9b:88:35:c6:62:de:93:90:1a:b3:36:
51:5d:30:c6:fb:2c:fd:b9:b0:16:aa:60:a1:58:83:
a1:12:ce:e9:a8:de:7f:2e:4a:f6:0f:0d:be:1c:c8:
81:bb:5b:8b:d1:75:0d:5f:73:59:37:fa:fc:7e:22:
9c:fb:ba:91:d0:99:b4:e6:1d:a5:a0:d7:14:91:20:
73:f8:d4:7d:3f:64:6b:0c:d2:01:8f:5f:6b:36:9c:
7c:83:db:9f:c1:dd:4c:a9:ac:59:ff:d0:bd:82:99:
32:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:31:B0:65:8D:4B:9D:24:CE:FD:0C:E1:CC:E5:E6:DF:39:6F:1A:18
X509v3 Authority Key Identifier:
keyid:99:CE:77:F7:D9:16:51:3B:84:91:48:49:95:0F:E4:3F:55:69:4F:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mc5399kWUTuEkUhJlQ_kP1VpT9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5cc337-bc56-4766-a450-f35373da7deb/1/XDGwZY1LnSTO_QzhzOXm3zlvGhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5cc337-bc56-4766-a450-f35373da7deb/1/mc5399kWUTuEkUhJlQ_kP1VpT9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.44.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:da:01:f5:ba:dd:ab:0f:8e:c5:30:45:40:10:0c:2d:ed:d7:
b6:9f:a1:96:cc:c3:96:57:71:d9:5d:17:56:ae:de:9a:51:f6:
fc:2d:06:cc:70:9d:fe:08:aa:02:f1:79:65:ea:45:01:db:ab:
3f:08:e9:8a:cd:f5:1e:c9:93:87:d0:94:83:fd:e3:a8:29:81:
1b:62:a9:fd:ef:23:05:58:d9:99:28:e3:fa:f4:cf:54:1f:cc:
68:51:7f:56:8d:50:92:85:7d:f8:6d:e8:4d:04:07:d2:74:83:
98:c8:d0:9a:17:0b:f2:04:a6:3a:2b:e6:e3:60:33:63:e1:a1:
a9:5d:2c:2d:10:32:0a:ab:88:97:59:be:95:8e:3e:7a:53:f7:
83:98:16:16:e1:9a:8c:10:0f:86:b7:f3:08:09:7b:72:d2:27:
43:36:70:5c:e0:bb:30:da:b4:1f:0d:2e:ff:fb:29:60:e4:56:
97:fd:c2:e2:fb:81:26:67:50:5f:e5:d8:17:eb:96:33:dd:75:
b5:52:47:94:ee:54:09:44:5f:ae:7a:51:31:19:ea:f2:c2:47:
cf:25:a0:63:80:3d:cb:89:71:fe:e3:2d:ff:22:e0:76:e9:2b:
2c:d5:d0:e6:7d:91:5b:6f:30:61:dd:2d:6a:da:83:e5:15:a5:
cc:de:e1:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:04 2024 by rpki-client on console-ams.rpki-client.org