Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/602c35-d366-47c0-a334-21dead0c5e9c/1/0n7HWohkQNk5vg0StFNrev894dk.roa
File: 0n7HWohkQNk5vg0StFNrev894dk.roa (raw, json)
Hash identifier: Gqt/N5H3TKALHQFSMxoOE0CDkiKCXiDP8WmuxDRA50w=
Subject key identifier: D2:7E:C7:5A:88:64:40:D9:39:BE:0D:12:B4:53:6B:7A:FF:3D:E1:D9
Certificate issuer: /CN=dcef19adfa6945589bc2d100154e5a58c4498a14
Certificate serial: 01856CAF1E47C9013D2752E29913C1EBEC35
Authority key identifier: DC:EF:19:AD:FA:69:45:58:9B:C2:D1:00:15:4E:5A:58:C4:49:8A:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O8ZrfppRVibwtEAFU5aWMRJihQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/602c35-d366-47c0-a334-21dead0c5e9c/1/0n7HWohkQNk5vg0StFNrev894dk.roa
Signing time: Sun 01 Jan 2023 09:34:53 +0000
ROA not before: Sun 01 Jan 2023 09:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210237
IP address blocks: 5.181.228.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:1e:47:c9:01:3d:27:52:e2:99:13:c1:eb:ec:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef19adfa6945589bc2d100154e5a58c4498a14
Validity
Not Before: Jan 1 09:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d27ec75a886440d939be0d12b4536b7aff3de1d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:3b:7d:1c:66:46:4d:62:0f:fd:e9:08:5b:25:
16:af:5f:f4:27:99:6a:62:26:bc:1f:e7:ed:da:ca:
f7:45:05:a3:65:95:9a:ad:c8:d7:90:2f:c9:c1:50:
c9:50:9b:c6:ee:32:a1:29:fd:da:d3:0a:10:89:21:
11:96:db:34:9f:f5:aa:c0:85:a7:98:5d:7e:df:03:
a8:24:59:bb:65:b7:c3:01:80:36:7c:7d:fa:31:37:
b6:00:36:30:43:94:df:50:22:d7:87:80:33:33:3b:
09:43:97:23:ce:30:74:99:6a:bf:02:e3:d0:bc:fb:
d8:2e:58:da:fa:b0:88:5a:a3:1e:34:56:41:b8:16:
41:28:ec:bf:1c:48:76:c4:48:b3:01:20:d8:f8:da:
88:cc:8c:e6:ae:23:aa:07:bf:0f:ff:f9:bc:1c:95:
38:73:79:61:7f:f2:47:b5:d6:3a:99:8f:07:ab:ac:
69:3f:e9:7c:89:2a:c2:39:88:ab:30:12:a7:82:94:
5f:88:d9:81:11:83:7b:7a:d1:50:0d:14:99:da:d2:
01:67:59:8e:53:85:e6:1a:bb:98:b7:9a:54:8f:38:
db:35:91:a9:2e:b1:e0:b2:7a:e7:eb:d7:37:19:57:
ed:b5:1a:0a:39:ae:46:d8:f3:22:57:5e:16:1e:c5:
c6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:7E:C7:5A:88:64:40:D9:39:BE:0D:12:B4:53:6B:7A:FF:3D:E1:D9
X509v3 Authority Key Identifier:
keyid:DC:EF:19:AD:FA:69:45:58:9B:C2:D1:00:15:4E:5A:58:C4:49:8A:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O8ZrfppRVibwtEAFU5aWMRJihQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/602c35-d366-47c0-a334-21dead0c5e9c/1/0n7HWohkQNk5vg0StFNrev894dk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/602c35-d366-47c0-a334-21dead0c5e9c/1/3O8ZrfppRVibwtEAFU5aWMRJihQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.228.0/22
Signature Algorithm: sha256WithRSAEncryption
62:ec:45:d9:27:95:a1:86:07:8f:ba:88:62:9e:83:b5:e0:2d:
e1:9b:ac:c8:fc:1c:a4:ff:56:6d:03:47:4c:5a:98:b3:66:0f:
45:4a:ab:1f:34:b5:7f:37:4e:6c:ed:7e:e0:00:ad:04:09:8c:
04:ed:29:5d:92:31:47:12:5d:c9:25:93:d6:e6:00:59:b0:ab:
51:00:24:9b:fc:05:eb:e7:ff:b5:d7:4c:6d:43:0c:dd:c0:ad:
30:ac:da:e5:1d:f2:64:2d:55:64:2b:ac:cb:c6:cc:03:f4:fd:
96:c0:3f:50:e5:61:ec:7e:87:86:43:de:77:96:8e:9b:a7:f4:
63:0d:24:b1:84:18:bc:7f:a9:90:35:88:33:6d:4d:0d:21:f2:
7e:6e:66:97:5c:e8:c5:59:f3:bd:19:93:a0:55:50:cf:14:05:
e8:48:48:61:8a:51:db:be:cd:18:c9:20:15:47:bd:81:2b:6e:
3e:a4:ff:9a:e2:80:c6:41:d0:dd:e4:bb:a5:3a:52:fe:11:a9:
f3:70:74:16:b6:24:aa:36:05:d6:13:9c:f4:82:f1:94:38:c9:
9d:d3:a1:61:54:f4:41:9b:d0:63:68:54:20:45:63:c6:ac:46:
73:58:c6:ec:1e:37:98:ea:26:2e:c2:0a:2a:fd:af:f0:83:a9:
94:72:bf:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:51 2024 by rpki-client on console-fra.rpki-client.org