Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/9OpSae1KD-zf75MdVykBX3RLAfw.roa
File: 9OpSae1KD-zf75MdVykBX3RLAfw.roa (raw, json)
Hash identifier: fXNqi9Bl0urFHDklv8MUMUW8RpB2Mtu759FtJdvyhE0=
Subject key identifier: F4:EA:52:69:ED:4A:0F:EC:DF:EF:93:1D:57:29:01:5F:74:4B:01:FC
Certificate issuer: /CN=12fd558a64e97586a43dc7ee50a8d6b292365b60
Certificate serial: 01856B37A7AFD49B1C695F9FE49A9D31EBEB
Authority key identifier: 12:FD:55:8A:64:E9:75:86:A4:3D:C7:EE:50:A8:D6:B2:92:36:5B:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ev1VimTpdYakPcfuUKjWspI2W2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/9OpSae1KD-zf75MdVykBX3RLAfw.roa
Signing time: Sun 01 Jan 2023 02:44:47 +0000
ROA not before: Sun 01 Jan 2023 02:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 394548
IP address blocks: 5.183.196.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 23 Mar 2023 10:12:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:37:a7:af:d4:9b:1c:69:5f:9f:e4:9a:9d:31:eb:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12fd558a64e97586a43dc7ee50a8d6b292365b60
Validity
Not Before: Jan 1 02:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4ea5269ed4a0fecdfef931d5729015f744b01fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:56:b4:0b:e4:15:84:e4:2e:45:10:2c:da:bb:
1b:de:be:ae:2f:4e:c3:4b:0f:d3:f2:d3:dd:67:00:
df:e8:4c:8a:d6:0c:a0:76:dc:40:a1:9a:cf:82:0e:
8f:db:57:09:b5:68:de:78:32:c4:2d:68:78:ff:59:
60:fc:d7:ad:21:12:cc:5b:c9:98:8a:35:4a:3f:c9:
d0:b4:48:0e:2d:91:f8:f8:42:62:bf:f9:18:b6:53:
8e:77:92:6d:8a:a9:39:a9:2d:5c:5a:89:23:bd:88:
f7:76:61:96:4c:c7:58:64:35:32:02:81:e3:c3:90:
72:f0:b9:2d:9d:fb:b1:e0:c1:92:df:9f:46:dc:bd:
96:8b:7f:59:da:47:9f:88:f3:67:9c:19:ef:53:37:
9a:b2:7f:8a:d6:eb:af:e5:d9:d4:22:71:62:f2:4e:
c6:7b:9f:36:e9:89:96:0b:2b:ea:8f:e0:a6:06:64:
58:01:46:88:4e:d2:a1:67:bb:da:f9:b2:de:dd:86:
37:59:b4:30:87:e8:3e:63:40:26:7a:03:6f:21:81:
be:72:6b:f2:d8:cd:6e:bb:a9:86:2e:01:cf:0e:57:
6c:62:4b:eb:d0:34:2c:09:89:a6:7c:43:54:71:f6:
d5:5c:07:a3:05:1a:61:94:04:c3:96:fb:e8:d4:e8:
c8:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:EA:52:69:ED:4A:0F:EC:DF:EF:93:1D:57:29:01:5F:74:4B:01:FC
X509v3 Authority Key Identifier:
keyid:12:FD:55:8A:64:E9:75:86:A4:3D:C7:EE:50:A8:D6:B2:92:36:5B:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ev1VimTpdYakPcfuUKjWspI2W2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/9OpSae1KD-zf75MdVykBX3RLAfw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/Ev1VimTpdYakPcfuUKjWspI2W2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.196.0/22
Signature Algorithm: sha256WithRSAEncryption
16:d2:17:c8:4e:1d:73:6d:38:70:74:e6:24:32:75:27:2b:8d:
40:12:96:48:b8:37:77:ea:37:5d:b8:b7:76:2d:4d:5f:af:b9:
3b:09:3d:9d:94:72:e2:b4:ef:95:5f:5f:11:fa:0f:ea:c8:46:
65:8a:2b:72:82:2b:a7:3f:55:81:25:4e:42:0d:66:bc:5c:7f:
0d:a4:91:9e:05:d5:99:a0:6d:af:0b:51:cc:ab:6e:29:ce:98:
2e:0b:78:8d:fc:ad:64:60:48:fd:28:4d:88:ea:e5:7c:25:45:
01:45:e8:ba:8c:0e:71:93:7a:c4:63:4f:77:a3:87:2f:54:ef:
83:97:e9:4f:97:19:fd:04:0b:69:20:e3:c3:1a:28:e2:3d:84:
71:72:dc:9e:11:17:5f:ed:75:bb:94:83:bd:e8:b8:a6:a8:3f:
61:73:e3:a6:3f:f8:d9:58:d9:ba:19:65:f0:6f:8d:08:38:0c:
c5:52:d7:8e:f6:de:4d:e8:68:da:2a:5d:26:5c:fd:32:c0:b1:
42:e2:68:a8:83:23:36:89:79:70:e1:73:9a:86:32:f4:22:ac:
23:7c:cd:72:5f:27:9c:79:93:fe:13:bf:c3:8b:39:db:69:ca:
6f:bf:c1:a6:08:f8:aa:d3:f0:75:84:9a:96:f4:4a:a3:13:e9:
66:99:59:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:48 2024 by rpki-client on console-fra.rpki-client.org