Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/pl8Abucm01dpJbez9lENHzzLIMg.roa
File: pl8Abucm01dpJbez9lENHzzLIMg.roa (raw, json)
Hash identifier: nX3Tm2BjDTtrjKjicZyRX/2vmuknufExt/F7OcpW8Tc=
Subject key identifier: A6:5F:00:6E:E7:26:D3:57:69:25:B7:B3:F6:51:0D:1F:3C:CB:20:C8
Certificate issuer: /CN=cb952f9c339cabd14234d00c84a252d7ec71a2a2
Certificate serial: 01856E78DAD29A043AA69928A87E8A1F0C07
Authority key identifier: CB:95:2F:9C:33:9C:AB:D1:42:34:D0:0C:84:A2:52:D7:EC:71:A2:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y5UvnDOcq9FCNNAMhKJS1-xxoqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/pl8Abucm01dpJbez9lENHzzLIMg.roa
Signing time: Sun 01 Jan 2023 17:54:52 +0000
ROA not before: Sun 01 Jan 2023 17:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202634
IP address blocks: 212.5.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:78:da:d2:9a:04:3a:a6:99:28:a8:7e:8a:1f:0c:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb952f9c339cabd14234d00c84a252d7ec71a2a2
Validity
Not Before: Jan 1 17:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a65f006ee726d3576925b7b3f6510d1f3ccb20c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:00:57:e6:0b:81:01:f5:80:16:97:6d:fb:36:
3a:87:73:7d:4d:4a:89:e4:73:86:3b:f0:59:12:c4:
b0:65:aa:6a:ce:c6:b5:06:8b:c5:de:80:bb:6b:90:
18:f3:66:d4:33:4f:da:2f:c7:16:b2:c3:66:cc:21:
1d:46:eb:ef:f9:ed:cc:e8:b4:88:6b:a3:49:92:26:
14:65:3d:d5:41:03:98:f9:46:94:44:98:34:db:ae:
d9:50:5d:36:27:cb:b0:a8:f4:ab:3c:4a:b3:6c:4a:
23:82:a7:9b:93:70:02:35:57:70:8c:24:ba:8d:af:
55:35:c7:a4:90:c2:22:03:a0:8a:48:b0:a6:ee:3c:
b8:51:2f:a5:7b:38:2d:40:64:46:56:18:0b:13:78:
a7:b9:d6:5b:ac:dc:32:df:10:07:c8:64:31:e4:4e:
a4:3e:d0:05:79:0d:b9:3b:9b:25:17:00:69:33:14:
a4:36:90:de:b8:43:df:24:01:d0:15:28:6e:a4:a1:
96:88:2d:b7:5b:d7:88:c7:36:a7:df:b3:ff:ef:17:
e7:42:e3:45:20:92:a3:b7:f0:7f:ed:37:3d:f3:53:
8b:b6:1e:60:b7:5e:94:d6:5d:1a:20:11:d0:c0:0b:
c1:87:50:2c:da:f7:da:8f:3d:cd:69:ef:1f:a9:ee:
68:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:5F:00:6E:E7:26:D3:57:69:25:B7:B3:F6:51:0D:1F:3C:CB:20:C8
X509v3 Authority Key Identifier:
keyid:CB:95:2F:9C:33:9C:AB:D1:42:34:D0:0C:84:A2:52:D7:EC:71:A2:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y5UvnDOcq9FCNNAMhKJS1-xxoqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/pl8Abucm01dpJbez9lENHzzLIMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/y5UvnDOcq9FCNNAMhKJS1-xxoqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.5.51.0/24
Signature Algorithm: sha256WithRSAEncryption
21:c7:c6:de:53:c0:d5:a1:cb:44:3f:83:40:17:e8:85:bc:49:
d6:8e:c0:75:9a:02:0a:2d:2b:53:9b:89:c2:b6:cf:f7:08:f2:
85:b7:0c:f6:4b:c8:e3:c0:40:7f:30:22:10:af:b4:34:9f:ee:
13:b6:40:6e:87:70:4c:9f:a9:67:61:96:29:64:17:c0:1a:6f:
d1:ec:a4:a0:a3:e0:f2:10:28:9e:3a:7e:b7:ab:34:16:87:60:
fc:36:db:e2:3b:b5:3c:9b:78:a0:fc:76:14:f5:74:89:4d:fe:
f9:f8:c0:5b:78:23:b8:fd:9b:e2:1f:5c:95:6c:3b:08:02:3b:
41:06:16:0e:14:03:39:2f:81:66:88:9e:61:0f:83:45:98:a3:
5d:88:85:58:12:17:b3:fb:e2:bc:85:a6:c4:c6:37:1a:5e:12:
1a:32:c4:69:15:6b:d7:0a:8a:e3:8f:69:bb:8a:a7:28:73:81:
fe:e3:fa:3d:fe:97:a3:2f:ce:2b:69:8d:d7:b4:04:92:00:be:
70:77:be:90:a8:22:24:ca:39:0e:40:17:8e:8d:3e:8e:a6:26:
87:8d:73:35:19:d0:0d:ec:3e:93:15:80:ab:cc:fd:02:24:80:
d0:d0:4c:da:ca:63:c8:c8:cf:ff:76:da:d6:71:c4:32:7f:c4:
fe:3f:7f:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:41 2024 by rpki-client on console-ams.rpki-client.org