Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/y1WXd5dO-lnjcOvB5c3CyaHT5jc.roa
File: y1WXd5dO-lnjcOvB5c3CyaHT5jc.roa (raw, json)
Hash identifier: 2kNOcgf2THVIiYLBC/oRlksgE68vtaptG6HvRg+xF8c=
Subject key identifier: CB:55:97:77:97:4E:FA:59:E3:70:EB:C1:E5:CD:C2:C9:A1:D3:E6:37
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018CC9BB07CF0A317FD8BB6E609A3C1E9C37
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/y1WXd5dO-lnjcOvB5c3CyaHT5jc.roa
Signing time: Tue 02 Jan 2024 10:32:06 +0000
ROA not before: Tue 02 Jan 2024 10:32:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47869
IP address blocks: 185.144.156.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 10 Apr 2024 12:16:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:07:cf:0a:31:7f:d8:bb:6e:60:9a:3c:1e:9c:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Jan 2 10:32:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cb559777974efa59e370ebc1e5cdc2c9a1d3e637
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5e:6c:fc:0f:d1:eb:81:df:e2:8a:80:26:fd:
f5:a1:0f:b1:c2:ca:a9:a7:48:e7:88:72:2b:e7:62:
95:b5:27:2a:fd:dd:68:bf:c9:1d:41:0f:91:57:c2:
5e:66:98:e8:5c:41:d1:14:3d:3e:14:66:61:12:81:
cf:49:9a:b5:6d:a0:5b:c2:10:c4:29:ce:db:3a:70:
29:5e:e7:ba:73:bb:ad:e5:13:41:d9:18:c3:02:09:
c6:af:97:dc:82:d1:b5:02:1c:92:e0:f2:8a:05:e4:
17:ee:82:18:50:e0:86:39:6e:17:18:ec:51:09:f7:
0f:63:53:02:93:eb:f9:6e:84:b7:f7:37:ab:18:75:
8b:4b:ab:4d:32:46:13:77:34:0b:ea:64:eb:3f:49:
1e:e1:09:3d:8d:75:47:e9:4a:6a:96:39:65:b3:b9:
12:98:54:06:2b:ec:5e:67:21:02:00:d2:76:f7:a5:
c4:ee:dc:d7:e5:73:b2:91:ce:d9:4c:87:b5:2a:ac:
99:22:7a:98:11:ff:20:23:e7:c5:b2:22:a3:0f:62:
ce:60:02:28:e6:bc:34:54:d6:4e:85:b7:dd:42:93:
40:9d:b4:b5:8b:f3:42:ef:ab:e8:d1:73:35:42:9f:
ec:03:65:65:a4:39:8d:b9:32:b5:a3:2d:9f:a9:61:
f4:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:55:97:77:97:4E:FA:59:E3:70:EB:C1:E5:CD:C2:C9:A1:D3:E6:37
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/y1WXd5dO-lnjcOvB5c3CyaHT5jc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.156.0/22
Signature Algorithm: sha256WithRSAEncryption
c4:cb:a1:35:06:c9:27:f1:f2:19:59:a1:72:d9:bc:9c:80:26:
dd:6f:f8:63:3f:a3:b0:7d:20:a6:b9:72:87:91:4d:8c:1f:5a:
6c:cb:74:25:6a:c7:07:06:10:85:a6:6a:2a:4f:ff:dd:1b:00:
67:1e:45:63:91:37:69:a2:05:1b:9a:86:05:61:fa:45:59:f4:
c5:d0:5a:b2:47:2a:e0:4a:ec:40:4a:f2:48:83:48:2a:30:48:
45:59:22:b4:ac:3d:aa:cf:35:53:7a:3c:0e:98:ab:a1:ef:f2:
29:be:86:cf:bb:ab:ae:45:a0:49:32:a0:86:50:db:e1:50:fe:
bf:d1:7e:0d:8a:cb:26:ec:a6:28:8e:1e:99:fa:8f:4b:6d:a9:
a8:10:29:76:e5:01:30:1a:79:16:ce:25:f8:c7:53:85:e5:60:
16:79:6f:2b:d0:c4:09:fc:4e:36:d3:c7:e4:45:23:75:0f:36:
cd:71:90:3c:69:e6:e0:c4:b3:38:e4:b6:57:8d:fd:32:45:cc:
87:e1:7f:78:a6:2d:96:b5:fb:44:d5:8d:47:67:49:ac:dc:91:
57:97:53:29:dc:a7:4d:6e:d5:d1:75:f0:8a:37:77:8f:56:6d:
8f:d2:88:0f:1f:31:ec:58:0c:31:33:de:71:1d:ee:c2:00:b5:
d7:45:83:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 10 16:40:20 2024 by rpki-client on console-ams.rpki-client.org