Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/2f516d-96c9-4bf2-81c8-8b48f3f40625/1/5bPwxCB_PMl1HgfVroodElN1_e0.roa
File: 5bPwxCB_PMl1HgfVroodElN1_e0.roa (raw, json)
Hash identifier: rSLpaZXSikw60qO4FeK2vf/u8jdVHcHVCH/nBkcsp0s=
Subject key identifier: E5:B3:F0:C4:20:7F:3C:C9:75:1E:07:D5:AE:8A:1D:12:53:75:FD:ED
Certificate issuer: /CN=ba99d4db12e4f0b002f60e92cc533e6f882d1508
Certificate serial: 01856FF95116C4C68F8D14415CA4574E499F
Authority key identifier: BA:99:D4:DB:12:E4:F0:B0:02:F6:0E:92:CC:53:3E:6F:88:2D:15:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upnU2xLk8LAC9g6SzFM-b4gtFQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/2f516d-96c9-4bf2-81c8-8b48f3f40625/1/5bPwxCB_PMl1HgfVroodElN1_e0.roa
Signing time: Mon 02 Jan 2023 00:54:48 +0000
ROA not before: Mon 02 Jan 2023 00:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.69.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:51:16:c4:c6:8f:8d:14:41:5c:a4:57:4e:49:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba99d4db12e4f0b002f60e92cc533e6f882d1508
Validity
Not Before: Jan 2 00:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5b3f0c4207f3cc9751e07d5ae8a1d125375fded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:34:5d:39:68:ad:01:b4:76:db:22:9a:62:32:
30:d3:fb:46:31:12:f5:ca:9d:93:a9:d5:65:12:2f:
31:99:a1:23:6e:a9:50:d4:a2:d9:c4:82:71:54:1b:
a7:44:70:3a:6b:38:53:3e:e2:29:bd:50:0a:d0:d7:
ae:cd:83:d4:91:2d:de:11:8f:70:b2:3c:7a:05:08:
41:b5:4a:26:59:1c:18:42:77:2c:91:82:88:6e:6c:
c2:d8:52:5c:f1:bd:8c:3f:fc:2d:01:a1:80:12:ef:
c2:7f:ba:67:16:90:77:fc:39:7b:da:67:ff:8d:13:
7d:d2:01:b8:cc:6e:98:6d:d6:22:92:09:f4:60:74:
ee:2a:ea:f1:d2:4a:00:6c:eb:ed:7f:69:8e:37:0b:
cf:9e:8b:c6:b0:ab:c5:db:9d:ef:bb:67:58:41:a3:
4e:8c:0b:e1:7f:d4:53:fb:b9:19:68:29:5b:69:0a:
2a:14:bb:1d:6f:d6:ab:de:c4:e5:5f:8c:a4:5f:f4:
8c:27:cc:8c:8c:83:c6:e9:34:79:ea:65:94:26:57:
03:5c:c7:6f:eb:a5:52:e5:ba:ef:ac:0a:60:1e:c2:
9a:5f:2b:5a:99:1e:8e:00:a4:1a:2f:48:56:45:f9:
d4:27:d2:31:9b:6a:76:31:2e:56:17:54:a8:c1:e8:
d9:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:B3:F0:C4:20:7F:3C:C9:75:1E:07:D5:AE:8A:1D:12:53:75:FD:ED
X509v3 Authority Key Identifier:
keyid:BA:99:D4:DB:12:E4:F0:B0:02:F6:0E:92:CC:53:3E:6F:88:2D:15:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upnU2xLk8LAC9g6SzFM-b4gtFQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2f516d-96c9-4bf2-81c8-8b48f3f40625/1/5bPwxCB_PMl1HgfVroodElN1_e0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2f516d-96c9-4bf2-81c8-8b48f3f40625/1/upnU2xLk8LAC9g6SzFM-b4gtFQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.1.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:3b:ac:0b:af:a3:e0:c7:87:74:db:8b:33:3c:ec:66:b1:c6:
d9:77:84:5c:bd:d2:fb:48:15:05:fa:68:2a:6e:f7:60:7d:d0:
8c:7e:67:1b:34:09:3d:dd:4a:d9:bc:69:79:68:cf:2f:56:fa:
7c:51:fe:3f:90:e3:28:b1:6c:b3:54:7a:6d:12:05:00:2d:be:
fd:66:e3:a2:74:12:4c:6d:38:67:40:6b:69:bf:bb:60:70:29:
ca:18:30:de:03:5d:01:39:56:0f:e6:29:bc:66:7e:c7:b3:08:
3c:bb:f0:16:00:60:a6:12:00:0b:cb:e8:b6:5d:d8:b6:b8:9d:
92:1c:ec:a0:a5:8d:72:63:2f:b9:d5:90:51:33:ff:d8:84:89:
9a:de:c8:37:e5:01:b3:46:bc:3a:5a:3c:55:95:76:6e:9c:4c:
e0:ce:10:9d:bb:9f:e0:20:3b:e4:a4:19:8a:ba:68:d8:7c:c4:
e9:0e:39:43:66:51:a9:db:fd:9a:3b:47:06:c8:91:9b:d7:39:
9b:ab:9a:af:56:bc:94:a6:9f:b0:f8:e5:5b:dd:ac:ee:ab:03:
5e:79:a2:47:b8:b3:9e:20:77:d2:de:79:35:24:59:04:e6:3e:
48:1d:58:a8:43:42:d0:f2:55:ca:51:bb:cc:ea:1d:8b:b6:be:
87:9c:35:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:39 2024 by rpki-client on console-fra.rpki-client.org