Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/sJgw8O43W5UmM_NLyI3r5pwwBNs.roa
File: sJgw8O43W5UmM_NLyI3r5pwwBNs.roa (raw, json)
Hash identifier: pE2ipfdtCrIUHl1J5hNqxMw7qj/WHgck74prY9D2nMk=
Subject key identifier: B0:98:30:F0:EE:37:5B:95:26:33:F3:4B:C8:8D:EB:E6:9C:30:04:DB
Certificate issuer: /CN=83991afcd455eb1b174fcf89f8e10eaf7f70b355
Certificate serial: 018990C52151697DEE48CFC1948DE753DBEA
Authority key identifier: 83:99:1A:FC:D4:55:EB:1B:17:4F:CF:89:F8:E1:0E:AF:7F:70:B3:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/sJgw8O43W5UmM_NLyI3r5pwwBNs.roa
Signing time: Wed 26 Jul 2023 05:56:25 +0000
ROA not before: Wed 26 Jul 2023 05:56:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 134450
IP address blocks: 45.114.208.0/22 maxlen: 32
103.104.20.0/22 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:90:c5:21:51:69:7d:ee:48:cf:c1:94:8d:e7:53:db:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83991afcd455eb1b174fcf89f8e10eaf7f70b355
Validity
Not Before: Jul 26 05:56:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b09830f0ee375b952633f34bc88debe69c3004db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:fe:fe:98:82:9a:17:79:b2:de:43:cf:10:e8:
44:68:1a:3b:e5:a0:b9:4a:01:4d:f5:53:ac:32:a1:
e0:d5:a4:b1:bb:cb:59:67:f2:2a:59:c7:f8:ed:33:
b4:f9:75:19:eb:3c:a0:26:71:7f:d4:30:8c:37:7c:
d3:b1:71:7d:34:1f:b3:f2:31:59:9c:55:bc:e9:81:
b0:f8:7d:f2:65:73:d6:80:bf:ac:17:5f:13:b9:77:
a2:21:18:25:eb:fc:f0:0e:5d:bd:dd:98:4e:09:61:
0f:4a:3d:b9:37:25:e4:29:ca:30:ed:53:a3:dd:f9:
74:0e:5b:96:a6:2f:f4:72:d1:25:c8:e3:07:f6:c7:
df:5b:77:82:f5:d2:67:33:fe:25:10:b7:39:de:a8:
e6:fd:65:84:01:aa:68:fd:29:4d:e7:b2:2d:64:fd:
c5:8a:f5:d9:39:b4:f6:bb:f6:67:94:eb:fb:56:d9:
4e:6e:98:74:3c:d2:9b:3f:51:8e:8d:0f:25:ef:c5:
25:48:ac:a0:cd:58:7f:c9:39:31:d8:71:41:eb:8d:
8d:7c:e5:68:dd:15:d8:d5:6d:5d:d0:be:e7:b6:d2:
7e:8a:61:91:e1:d5:c8:1b:80:ba:0d:06:81:5d:c2:
9a:8b:5f:e6:fe:06:e3:00:63:e2:25:91:7c:8a:f5:
e9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:98:30:F0:EE:37:5B:95:26:33:F3:4B:C8:8D:EB:E6:9C:30:04:DB
X509v3 Authority Key Identifier:
keyid:83:99:1A:FC:D4:55:EB:1B:17:4F:CF:89:F8:E1:0E:AF:7F:70:B3:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/sJgw8O43W5UmM_NLyI3r5pwwBNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/g5ka_NRV6xsXT8-J-OEOr39ws1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.114.208.0/22
103.104.20.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:9b:a3:51:93:83:ba:40:99:5b:7c:ce:0c:30:fb:e7:49:d4:
a2:c6:74:80:d5:36:c8:e7:b1:83:8c:81:f8:4e:30:37:4c:52:
a2:f7:7c:d6:26:0a:4f:e6:7c:a5:7c:80:41:b3:34:2e:4b:cf:
94:37:de:80:b3:f5:b5:f8:8c:73:f7:ad:35:e1:bc:f9:8a:8a:
57:11:09:31:47:94:af:fc:d9:ad:7f:78:59:37:32:19:1f:50:
fd:40:b6:f7:e5:5e:01:e5:96:90:bd:39:62:04:ca:5f:f6:5d:
dd:13:fb:ff:5c:a9:5f:cc:6e:1b:1e:2b:38:33:05:ca:8b:6b:
4e:5a:47:8a:49:f7:32:2e:2e:c2:cb:08:c3:d5:2a:b8:ea:06:
09:a6:7b:86:5e:5c:ec:31:b9:6d:dd:dd:1d:fe:06:60:81:30:
96:d9:cb:ae:8e:11:66:82:14:9e:52:c6:ce:8a:fc:03:1d:a5:
96:a7:1f:a3:e3:38:90:84:6c:71:a3:e1:7e:4d:db:81:a0:66:
6e:f5:d6:60:87:88:7c:b7:d0:91:c4:02:0f:9d:83:d4:ab:04:
29:96:84:10:bb:07:00:59:7e:e7:34:2c:fe:80:e1:04:8a:8f:
14:f3:b3:28:37:53:f0:a5:06:b5:7e:d4:82:67:45:9a:3a:5e:
dd:25:62:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:07 2024 by rpki-client on console-fra.rpki-client.org