Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/5T3J7T5wA2J_K4dzzZ1IURqz2m4.roa
File: 5T3J7T5wA2J_K4dzzZ1IURqz2m4.roa (raw, json)
Hash identifier: xOr0jTazHTow/qwWG9Srpei8zGx1HIGlC+VtwaXZFHo=
Subject key identifier: E5:3D:C9:ED:3E:70:03:62:7F:2B:87:73:CD:9D:48:51:1A:B3:DA:6E
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018CC5DC9DB8141BC04FEEB40023227DBF96
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/5T3J7T5wA2J_K4dzzZ1IURqz2m4.roa
Signing time: Mon 01 Jan 2024 16:30:19 +0000
ROA not before: Mon 01 Jan 2024 16:30:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207084
IP address blocks: 164.215.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Mar 2024 13:28:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:9d:b8:14:1b:c0:4f:ee:b4:00:23:22:7d:bf:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jan 1 16:30:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e53dc9ed3e7003627f2b8773cd9d48511ab3da6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:7c:d6:b6:7b:fb:17:dc:6c:cf:ba:be:57:69:
fc:17:31:ef:bf:0f:f0:9b:f7:2a:b1:91:7a:80:a6:
fb:c7:f7:90:b3:d0:62:ee:a8:91:e8:d7:5a:08:f8:
63:e5:5d:ed:02:0e:0d:6f:3b:46:a2:a2:35:f6:bb:
ca:0f:4a:e6:a7:73:ef:0f:e0:9f:f9:19:42:6f:a0:
f2:de:1a:af:ef:b5:5c:10:db:c3:4b:77:d1:45:0b:
25:09:9e:8f:ca:72:b0:ee:8d:58:b8:32:df:14:fd:
b9:2f:14:81:f2:93:dd:57:42:6a:d3:de:67:ee:79:
8e:f0:d0:15:f7:36:d8:e5:0b:a0:69:c4:7c:35:e1:
62:c9:84:97:21:28:7a:2b:68:5e:e5:22:73:46:90:
73:26:2c:f1:88:a3:2a:21:b1:55:29:07:df:9e:a4:
c5:eb:58:5d:90:c2:de:d3:8c:82:0e:f2:e0:eb:f0:
e2:e4:27:dd:cd:42:5a:78:b3:5e:03:54:6a:36:6e:
ae:f7:b0:54:17:4d:2d:a8:d7:3e:c6:4b:a2:62:83:
cd:b8:e2:e6:5b:ce:16:b9:a3:10:fc:ab:6f:ba:70:
36:01:d9:60:cf:ea:17:c4:71:b4:0d:89:6c:6d:64:
ee:8a:f4:f3:7f:4b:ac:af:54:f0:0b:02:78:09:c4:
28:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:3D:C9:ED:3E:70:03:62:7F:2B:87:73:CD:9D:48:51:1A:B3:DA:6E
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/5T3J7T5wA2J_K4dzzZ1IURqz2m4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.215.102.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:02:2c:f4:c2:0b:41:a0:f4:e8:04:18:a1:bf:b4:11:4d:b1:
50:6e:09:15:fb:fe:1d:38:f0:d5:eb:05:d4:f4:a9:bb:b2:be:
32:2b:75:c4:c2:b1:b2:98:49:4f:2d:98:0b:11:3e:8e:1c:e2:
3e:90:6c:80:b9:e2:be:ec:78:02:43:64:b2:fa:ce:b0:70:dd:
41:1c:0a:94:cb:9e:53:ea:2a:5c:fa:6d:aa:7e:60:39:8c:72:
18:a7:5e:b7:08:98:ab:69:e4:64:c9:d5:e6:fa:fb:36:59:89:
35:92:be:a0:1a:43:24:68:79:19:bc:57:dd:7c:12:1a:d9:37:
65:4d:29:8e:f4:13:d6:ca:e5:cb:87:2c:1a:a5:fb:c3:bb:b9:
e6:8f:a1:4f:b8:e2:90:07:e6:2d:b7:63:42:91:f8:a9:0c:3a:
3c:6d:f2:43:b3:b5:b1:bf:1c:25:84:78:2c:f6:8a:bc:79:0e:
71:91:20:74:76:31:ce:7f:a1:33:4c:4d:f0:de:af:05:09:bd:
03:63:0a:1d:d4:32:97:a5:8c:eb:68:1b:86:1d:c8:93:5c:05:
45:4b:e3:27:1f:84:22:1c:89:7c:aa:49:8d:91:fa:7d:9d:ec:
2a:e4:c4:1b:72:6a:07:2f:16:ce:f0:1f:0a:b8:ca:e1:3f:25:
d2:d9:f2:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 15 16:00:26 2024 by rpki-client on console-fra.rpki-client.org