Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/5tCRNkJOPLZk4RkmgsNx8nlPf4w.roa
File: 5tCRNkJOPLZk4RkmgsNx8nlPf4w.roa (raw, json)
Hash identifier: YZnZy+fIVKDOMeeUC3CAs5scku1v5VLQYKfhK5Nm7Yc=
Subject key identifier: E6:D0:91:36:42:4E:3C:B6:64:E1:19:26:82:C3:71:F2:79:4F:7F:8C
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018ACBFEA289D7A6B9DC2F2B6E8097ADF4C4
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/5tCRNkJOPLZk4RkmgsNx8nlPf4w.roa
Signing time: Mon 25 Sep 2023 10:59:37 +0000
ROA not before: Mon 25 Sep 2023 10:59:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15723
IP address blocks: 164.215.96.0/22 maxlen: 22
46.23.99.0/24 maxlen: 24
5.10.244.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cb:fe:a2:89:d7:a6:b9:dc:2f:2b:6e:80:97:ad:f4:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Sep 25 10:59:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6d09136424e3cb664e1192682c371f2794f7f8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:3a:15:cf:99:08:c4:38:46:d2:df:9a:c7:c5:
93:45:70:54:c8:9e:2d:d0:f2:d7:e9:38:69:11:c6:
0a:b3:b4:56:35:c4:75:7f:e8:e9:5b:c0:93:35:6c:
64:ab:82:37:fc:67:80:19:15:c7:cc:82:15:0e:0a:
85:d0:24:52:5d:72:f4:bd:d0:b0:38:81:c9:ef:75:
ba:eb:6c:6e:01:bf:c2:82:c9:79:9a:d0:6a:a5:0f:
21:2b:a1:05:be:87:90:12:38:e0:46:c2:c4:30:8a:
b4:e4:26:84:f1:56:ae:1d:c6:63:7e:65:8d:69:f0:
e5:f5:54:9b:b5:e2:c2:61:aa:37:6f:f8:44:81:97:
bf:92:db:7c:4a:a9:0a:d2:ab:8e:d3:11:76:cb:10:
94:04:44:23:d5:d3:bf:da:38:1d:31:91:b4:61:25:
1f:a4:cc:7a:1d:3e:c5:31:10:f7:92:b2:23:f3:b0:
59:61:8a:0c:4a:ff:23:a9:ef:5d:b0:08:3f:50:ea:
49:6a:76:c6:37:e0:79:88:2b:9e:6a:7d:5d:45:08:
4f:9e:5b:5c:47:08:45:7a:e2:34:94:f4:6c:ca:91:
31:3f:12:74:02:79:75:83:6c:9b:dd:70:01:ba:2b:
22:32:49:f7:eb:12:53:3b:34:60:86:54:d0:8a:01:
bb:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D0:91:36:42:4E:3C:B6:64:E1:19:26:82:C3:71:F2:79:4F:7F:8C
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/5tCRNkJOPLZk4RkmgsNx8nlPf4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.244.0/22
46.23.99.0/24
164.215.96.0/22
Signature Algorithm: sha256WithRSAEncryption
d9:fb:a2:e9:8f:a8:9a:80:c2:de:2c:cb:fb:47:a4:42:1d:4e:
12:e2:c9:c3:64:ff:2e:d2:4b:d2:08:20:3f:c1:41:b8:eb:81:
97:e6:67:84:40:22:ed:d5:1b:51:c3:e6:ee:b6:d6:20:35:76:
23:bf:f2:a0:18:73:89:bd:a0:f6:32:1e:a7:aa:aa:0f:5b:59:
7c:81:62:25:e0:a0:7b:d6:f9:d7:e3:d4:1f:61:c6:3a:9b:18:
47:92:9a:87:b5:3c:e2:fb:e6:a7:aa:33:87:ca:b0:33:eb:e8:
22:2e:4b:de:66:f6:8e:26:d6:9a:a2:e2:5d:f9:ff:4f:42:54:
57:f2:50:c3:6d:6a:3e:8a:77:11:e7:0f:61:13:3a:2c:d7:37:
23:bb:ba:7e:58:53:cb:67:88:61:ef:fe:19:03:93:af:f4:a3:
36:37:5e:fb:ab:1e:84:11:80:55:6b:0c:67:7d:b6:5a:59:82:
5d:de:47:82:92:ec:19:d7:7b:56:33:aa:67:f6:a6:88:1e:8a:
90:46:81:70:7e:4a:30:24:db:fe:19:09:f1:25:3d:84:21:c1:
bf:fb:e6:d2:2a:b2:94:bc:64:7b:13:12:b1:82:95:28:da:80:
df:92:c4:46:f0:37:a7:0c:3e:94:52:25:50:a3:06:68:72:3b:
d9:7b:fb:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 25 13:32:24 2023 by rpki-client on console-fra.rpki-client.org