Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/CazbJuyCBO9mCxj9G7VmAVS1gDE.roa
File: CazbJuyCBO9mCxj9G7VmAVS1gDE.roa (raw, json)
Hash identifier: Ta5njNndaN0HFkaXpUB+rtMPUBQrQcdIvv67guELBXs=
Subject key identifier: 09:AC:DB:26:EC:82:04:EF:66:0B:18:FD:1B:B5:66:01:54:B5:80:31
Certificate issuer: /CN=73975d5da9da8a074b33fbcb5c09d503a3b443a1
Certificate serial: 018CC56EAC79A7A7C01F46E83F2E038A7F3F
Authority key identifier: 73:97:5D:5D:A9:DA:8A:07:4B:33:FB:CB:5C:09:D5:03:A3:B4:43:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c5ddXanaigdLM_vLXAnVA6O0Q6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/CazbJuyCBO9mCxj9G7VmAVS1gDE.roa
Signing time: Mon 01 Jan 2024 14:30:13 +0000
ROA not before: Mon 01 Jan 2024 14:30:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58299
IP address blocks: 5.226.144.0/21 maxlen: 24
5.226.151.0/24 maxlen: 24
2a00:6340::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 25 Mar 2024 08:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:ac:79:a7:a7:c0:1f:46:e8:3f:2e:03:8a:7f:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73975d5da9da8a074b33fbcb5c09d503a3b443a1
Validity
Not Before: Jan 1 14:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=09acdb26ec8204ef660b18fd1bb5660154b58031
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f5:88:5b:ee:7b:53:a6:6c:7d:6e:4c:8b:3b:
c8:c2:dc:86:3b:f9:ee:64:af:8e:c5:d2:4e:19:04:
ef:b6:a9:44:6c:4d:f9:9d:c2:94:27:53:aa:24:24:
f4:5c:10:1e:4e:30:07:18:89:5d:fe:e1:85:4a:1a:
0b:e7:a4:e9:1e:27:2e:6f:73:dd:99:2f:3a:22:d9:
92:21:98:ef:62:69:9a:ea:8b:99:2b:f8:d4:9a:44:
51:96:32:33:af:20:b1:1f:9c:db:91:16:c0:0c:fc:
73:f3:76:96:91:29:ee:05:d7:78:0b:f6:b2:57:dc:
36:bf:de:b6:d6:d6:92:7d:fa:68:fd:51:ff:d2:e2:
bd:f2:ad:db:b7:63:41:34:af:50:d6:85:62:61:9c:
77:21:16:9f:8c:b4:ad:1a:14:bf:b1:52:a7:6f:17:
d2:5a:e5:1f:80:e9:21:9c:2e:62:18:2b:08:19:17:
57:7b:c5:ec:ab:cf:61:43:11:fc:5b:43:62:fe:2f:
07:4a:fe:96:c1:74:0c:8a:47:6d:10:95:db:eb:6b:
b1:6e:21:72:ca:c8:1c:1e:d3:81:f9:76:55:71:5d:
10:e3:20:18:a6:8f:8a:c7:70:d7:09:d0:ab:e0:f5:
e9:25:e0:65:f8:14:c3:7f:9e:13:ad:63:d7:25:ab:
50:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:AC:DB:26:EC:82:04:EF:66:0B:18:FD:1B:B5:66:01:54:B5:80:31
X509v3 Authority Key Identifier:
keyid:73:97:5D:5D:A9:DA:8A:07:4B:33:FB:CB:5C:09:D5:03:A3:B4:43:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5ddXanaigdLM_vLXAnVA6O0Q6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/CazbJuyCBO9mCxj9G7VmAVS1gDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/c5ddXanaigdLM_vLXAnVA6O0Q6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.144.0/21
IPv6:
2a00:6340::/32
Signature Algorithm: sha256WithRSAEncryption
95:70:c5:65:29:03:26:43:23:ac:42:d2:fb:41:8a:52:a0:16:
c7:7a:0a:47:b3:f0:82:27:b2:83:4d:db:1f:f4:46:73:e4:c5:
79:9b:ec:05:0e:1d:71:84:87:cc:0f:b0:36:6f:d6:2c:f3:1f:
7d:ef:10:49:ba:25:2f:82:4a:61:d6:99:79:12:95:81:d0:21:
ec:17:72:44:f1:03:98:4f:f3:e8:c7:b6:17:7c:ea:a3:4d:80:
96:25:1c:b2:e7:a0:e1:77:34:fc:c4:ad:a8:fe:b8:fa:a5:88:
07:88:7a:8a:be:f6:05:ab:86:25:a4:b9:82:c5:1b:a1:fd:14:
02:e6:68:93:3b:8f:22:da:7d:68:53:6b:07:59:62:c9:2c:d0:
10:83:d2:19:bd:80:6c:ea:9d:76:5c:d9:b3:4e:be:56:c0:78:
2e:63:76:37:e8:63:68:33:59:0f:f4:f0:79:14:c3:87:54:07:
e0:e4:72:64:2e:10:90:1d:63:18:18:3e:3c:59:8e:43:f4:59:
33:9d:a0:cb:ac:c1:55:dc:a7:64:42:7a:ff:df:6e:2b:c6:f7:
08:4c:81:7a:f3:85:46:65:11:0d:f1:91:39:12:2b:1f:15:f6:
1e:50:31:dc:45:ec:d1:d0:db:51:1f:1b:60:a6:e7:c0:51:5a:
68:3d:de:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 25 14:09:45 2024 by rpki-client on console.sobornost.net