Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/X4rVvdXADNqoS4PtupmpkJMWoNQ.roa
File: X4rVvdXADNqoS4PtupmpkJMWoNQ.roa (raw, json)
Hash identifier: nEpJ+4J4/9s3j11qipNbtIgWbIuJtAnyjQFHvvXqHHc=
Subject key identifier: 5F:8A:D5:BD:D5:C0:0C:DA:A8:4B:83:ED:BA:99:A9:90:93:16:A0:D4
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 018C4B953C426F2D9A0A2C3E6D3E63A7C742
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/X4rVvdXADNqoS4PtupmpkJMWoNQ.roa
Signing time: Fri 08 Dec 2023 22:38:40 +0000
ROA not before: Fri 08 Dec 2023 22:38:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1273
IP address blocks: 5.28.192.0/18 maxlen: 18
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4b:95:3c:42:6f:2d:9a:0a:2c:3e:6d:3e:63:a7:c7:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Dec 8 22:38:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f8ad5bdd5c00cdaa84b83edba99a9909316a0d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d1:83:28:c4:4a:2b:f9:ab:7d:45:6e:22:e6:
85:2d:af:09:bb:93:df:90:c3:7e:81:b1:71:e5:d2:
56:22:eb:14:0c:8c:f3:f3:9f:b8:3b:3b:e9:de:ea:
8f:de:64:dc:52:81:44:ad:0a:57:6b:fd:a9:fc:05:
7f:e2:f0:04:8d:07:db:18:a8:23:77:6f:c4:4e:c1:
49:59:4a:6c:ad:94:ca:b5:47:ba:bc:b5:cd:74:23:
75:83:f0:e5:ec:56:29:da:28:9f:06:16:e9:3b:43:
57:ef:ec:e7:24:d2:65:92:f1:8b:40:a8:02:7e:e2:
dd:06:da:13:e9:89:fa:7f:aa:5b:5b:93:d9:b6:9a:
3f:92:c6:58:3a:3c:8b:12:3b:61:4f:5c:c6:b4:72:
15:b7:07:48:a5:c2:f3:fc:c0:27:b2:fa:36:12:86:
97:91:c9:8c:8f:5e:c0:1e:de:69:3d:7f:03:b1:66:
64:97:75:f9:d0:a2:82:fb:f5:2e:5a:92:1d:27:6c:
b9:11:bb:ea:82:c1:f9:15:fc:8d:02:c4:81:62:20:
3f:3f:eb:6f:66:b5:30:9a:ea:2f:b8:06:d5:d2:9f:
64:46:52:1d:34:01:0c:48:2b:a0:e4:85:94:e8:d0:
56:07:25:98:84:92:a5:f5:08:92:15:0f:64:e3:f4:
68:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:8A:D5:BD:D5:C0:0C:DA:A8:4B:83:ED:BA:99:A9:90:93:16:A0:D4
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/X4rVvdXADNqoS4PtupmpkJMWoNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.28.192.0/18
Signature Algorithm: sha256WithRSAEncryption
01:29:71:e0:f7:5c:e2:9b:9b:46:58:37:53:4e:f0:b5:1c:56:
56:50:82:d2:69:64:12:a9:b4:52:f7:b7:10:b1:21:12:e2:b2:
05:b6:ca:a8:0f:68:87:18:09:5b:57:2f:05:04:df:77:01:4c:
b0:4d:31:4b:bb:31:f4:f6:9c:68:77:2e:7c:7d:56:33:b3:f9:
ad:4a:ab:13:1e:11:a9:4b:86:48:f9:e6:94:b4:2d:32:3f:7a:
5e:08:1f:79:23:79:98:d2:03:52:61:ff:d4:67:d6:7b:b5:da:
cb:a8:cd:86:08:64:9a:d0:f1:1b:1e:01:77:5c:f8:e1:7d:36:
21:fd:bb:b8:f5:81:b8:65:4f:4a:c6:40:c4:9e:bf:fb:d3:59:
9f:ec:a9:36:da:45:24:43:a0:e0:1a:f9:0c:fe:44:15:01:c1:
95:92:d3:e8:df:57:dd:92:78:58:72:d4:9a:9d:36:ee:dc:bb:
ab:bb:5c:f1:05:dc:e3:02:0a:2a:84:57:b6:59:d8:dd:38:69:
1c:5f:b5:7c:7b:4f:84:38:c8:35:ae:dd:45:c7:16:88:d7:06:
10:c0:b2:e5:c3:2f:bd:3d:9e:02:25:35:97:d0:f3:70:f5:9f:
4c:fe:0b:ad:5b:0b:2c:04:5a:32:8a:fb:8d:4d:9a:c6:9e:83:
b3:ff:39:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:00 2024 by rpki-client on console-fra.rpki-client.org