Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/376662-87eb-4c97-9373-a1dce6ad150c/1/5U4bc_72hR65gf7R-17SHpi_X2o.roa
File: 5U4bc_72hR65gf7R-17SHpi_X2o.roa (raw, json)
Hash identifier: RHxGNT2UIfNbBAFd1Nak6IKsjWvnLmDbldcmeNMbjlU=
Subject key identifier: E5:4E:1B:73:FE:F6:85:1E:B9:81:FE:D1:FB:5E:D2:1E:98:BF:5F:6A
Certificate issuer: /CN=e858338dea6ae4ddbb24850a0707f43aa1794c3f
Certificate serial: 018570CBF569E1210189EC285A03493281C0
Authority key identifier: E8:58:33:8D:EA:6A:E4:DD:BB:24:85:0A:07:07:F4:3A:A1:79:4C:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Fgzjepq5N27JIUKBwf0OqF5TD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/376662-87eb-4c97-9373-a1dce6ad150c/1/5U4bc_72hR65gf7R-17SHpi_X2o.roa
Signing time: Mon 02 Jan 2023 04:44:52 +0000
ROA not before: Mon 02 Jan 2023 04:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205262
IP address blocks: 185.246.100.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:f5:69:e1:21:01:89:ec:28:5a:03:49:32:81:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e858338dea6ae4ddbb24850a0707f43aa1794c3f
Validity
Not Before: Jan 2 04:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e54e1b73fef6851eb981fed1fb5ed21e98bf5f6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a3:9e:74:63:93:d4:d7:5d:5e:09:16:67:af:
a2:76:39:68:92:82:d8:09:47:b2:2a:fa:b8:45:e5:
28:98:1d:cf:ea:5a:02:61:4b:03:35:7c:d2:07:6f:
ab:9a:ea:77:1d:52:cc:c3:6a:8a:51:b0:30:fd:c4:
75:0a:53:ea:f8:0d:fd:cc:1a:9d:88:93:79:30:62:
20:2b:8e:22:74:00:2e:67:f0:f1:db:4e:c1:16:67:
5d:a8:b2:26:98:c8:1a:a3:6a:de:37:f2:4b:2c:d5:
12:25:53:54:15:67:e1:92:fe:8c:3f:d4:ad:7e:8c:
e1:a1:e9:79:8f:bd:e7:58:95:57:f7:3c:3f:ba:6e:
9f:a2:e4:a6:2e:1a:3a:98:bf:89:f5:13:8a:42:00:
9e:2d:11:8f:d9:66:f3:24:cb:de:b4:c5:ea:67:1b:
19:11:4a:c4:13:d6:32:71:e7:75:69:e6:15:0f:f5:
53:3f:5e:64:9b:02:3b:6b:0f:5a:37:a7:c0:5a:b8:
a1:d9:38:d5:94:a9:5d:9e:64:d4:a0:0c:59:e7:0c:
8f:0a:a8:0a:55:b4:a7:4e:c6:57:36:16:62:f9:65:
08:0e:c4:99:85:00:e2:ad:23:56:85:17:57:57:ba:
16:da:26:2e:84:6b:e7:7a:60:3e:1b:36:fd:19:3b:
a5:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:4E:1B:73:FE:F6:85:1E:B9:81:FE:D1:FB:5E:D2:1E:98:BF:5F:6A
X509v3 Authority Key Identifier:
keyid:E8:58:33:8D:EA:6A:E4:DD:BB:24:85:0A:07:07:F4:3A:A1:79:4C:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Fgzjepq5N27JIUKBwf0OqF5TD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/376662-87eb-4c97-9373-a1dce6ad150c/1/5U4bc_72hR65gf7R-17SHpi_X2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/376662-87eb-4c97-9373-a1dce6ad150c/1/6Fgzjepq5N27JIUKBwf0OqF5TD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.100.0/22
Signature Algorithm: sha256WithRSAEncryption
53:4a:09:8a:5b:82:e0:e1:c8:b3:6f:c2:66:91:c5:e7:04:d7:
4d:18:09:80:7a:52:62:93:85:da:58:8e:f9:a3:96:a9:46:ff:
1b:88:f6:c4:2d:34:3b:a1:11:32:4d:a5:52:f1:9e:ff:07:73:
47:ae:d9:de:e2:68:d6:e2:ab:7a:7c:07:e1:43:52:51:4d:45:
29:31:22:69:7c:c7:1c:68:61:30:d9:e8:e6:c0:c7:a1:26:35:
8b:cf:ad:9c:16:07:06:7c:7f:70:a7:b5:31:f6:23:f6:68:cf:
12:ae:19:db:e5:38:bb:d2:bd:e6:a3:72:f8:1a:75:38:d0:03:
b0:a6:60:1a:01:b8:a2:98:4b:53:fe:f5:99:8f:dc:8d:d9:44:
ff:63:d1:e0:3c:39:57:53:22:86:ce:0a:18:55:9b:bb:a3:5d:
a4:19:28:98:53:4a:ab:b7:28:1c:c1:e5:d0:46:2f:71:da:14:
9f:0b:17:65:d5:5d:d5:8d:a1:19:aa:91:34:9e:e4:59:4e:b1:
a0:b4:6e:37:ec:96:9d:45:f0:10:8a:1b:36:b6:84:15:e6:19:
3f:c7:1c:c3:f0:3c:2f:70:eb:66:d7:ee:26:1a:f2:fa:56:54:
e1:6a:e6:59:7c:f7:d6:25:cf:a6:49:c3:4e:27:37:b0:40:91:
c0:e3:b3:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:13 2024 by rpki-client on console-ams.rpki-client.org