Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/t5nr0vAqsB0EOURbLnH7IQ6NJfs.roa
File: t5nr0vAqsB0EOURbLnH7IQ6NJfs.roa (raw, json)
Hash identifier: sji9sEWT6+E8QgcIIIt45C1dh870Z/R66TE93km0wKw=
Subject key identifier: B7:99:EB:D2:F0:2A:B0:1D:04:39:44:5B:2E:71:FB:21:0E:8D:25:FB
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018760A11673F48E80C54C6746F032EB79A4
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/t5nr0vAqsB0EOURbLnH7IQ6NJfs.roa
Signing time: Sat 08 Apr 2023 11:29:42 +0000
ROA not before: Sat 08 Apr 2023 11:29:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211059
IP address blocks: 5.178.1.0/24 maxlen: 24
5.10.250.0/24 maxlen: 24
5.10.251.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:60:a1:16:73:f4:8e:80:c5:4c:67:46:f0:32:eb:79:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Apr 8 11:29:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b799ebd2f02ab01d0439445b2e71fb210e8d25fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:8a:72:68:80:34:51:63:62:4b:6d:22:81:68:
0a:ba:e1:b0:9b:8e:ff:ea:70:2b:26:e0:12:e3:7c:
3f:45:91:2c:60:fd:b9:7a:01:17:29:e7:6b:d7:94:
69:22:9e:07:07:df:34:63:75:55:c6:62:1f:9e:2e:
50:b6:68:0d:64:12:5d:e2:b2:b7:93:06:99:cb:9a:
6b:ff:db:32:6b:91:c8:f1:9b:d3:13:2f:e9:78:d4:
c1:26:12:35:60:e2:7f:c4:0e:78:bc:8e:ed:68:ca:
2d:64:32:f6:91:45:3c:80:54:13:b2:15:87:28:99:
f3:22:21:06:3b:5b:52:f1:91:00:35:3d:d7:e2:bb:
c0:36:c3:e7:c2:bf:6d:75:5f:25:c3:df:e3:fc:0b:
3f:88:0e:62:56:9e:6d:d5:86:a0:27:e0:ac:e3:41:
b8:d1:5b:a8:12:9a:48:65:0e:d3:5f:7a:44:e1:a9:
73:01:5f:96:92:6b:99:dd:ee:c0:90:64:f6:1a:35:
7b:53:27:a5:6a:a7:b1:bb:42:49:aa:80:2e:39:c4:
9a:80:90:51:7a:11:da:b2:fd:ac:7b:1a:20:ef:93:
d4:f6:e6:3e:e7:35:9e:35:6a:53:ce:b9:98:7d:53:
5d:97:3d:ea:6f:f8:91:b7:1b:60:66:f5:7a:d3:3e:
ad:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:99:EB:D2:F0:2A:B0:1D:04:39:44:5B:2E:71:FB:21:0E:8D:25:FB
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/t5nr0vAqsB0EOURbLnH7IQ6NJfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.250.0/23
5.178.1.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:e1:9f:f3:6e:12:57:e0:f7:ce:80:94:e2:1f:0b:c0:e5:09:
b4:9c:18:45:ce:94:fa:d4:7a:23:79:7d:27:08:93:a3:75:a4:
39:0e:c9:ba:c6:d5:19:75:5d:7f:3b:d6:06:be:62:c0:1d:01:
e9:48:bb:06:f6:6b:9f:bd:af:44:09:d4:a3:f2:64:2a:b2:47:
ae:39:a8:ba:26:c8:2b:99:bb:db:5b:32:a5:3e:50:42:77:ef:
45:12:c0:ca:d7:c2:ce:83:6a:e5:ff:ee:82:95:3d:38:9d:0f:
f1:3d:90:c8:6e:8b:6a:33:76:c2:97:22:82:3c:cf:e0:a0:38:
9b:e9:e9:5e:0e:67:ba:e7:dc:8d:e8:43:cc:ba:33:5e:e0:92:
2f:56:47:40:04:22:6d:4a:cf:8a:0f:5e:9f:c0:da:18:cd:bb:
d6:fc:47:12:2b:b1:a7:3b:21:e2:e9:6f:5d:59:f1:46:8a:b2:
bb:a0:8b:30:3f:ef:32:22:ae:81:13:8f:3f:b5:2a:d0:88:d5:
65:0f:68:06:59:f8:df:de:ac:61:05:02:ee:8b:fe:31:e4:90:
5b:28:a5:8b:d2:3b:cf:26:f9:97:bc:03:86:29:f9:1b:05:e7:
f4:51:33:03:df:d7:2f:12:24:91:dc:da:4b:c5:54:d0:34:49:
78:fa:45:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:01 2023 by rpki-client on console-fra.rpki-client.org