Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/hbdYehjs0o_hXBpu5bE7rb50E80.roa
File: hbdYehjs0o_hXBpu5bE7rb50E80.roa (raw, json)
Hash identifier: EbdTiMWFZfm+WTGIcfVKs+mzf88mwn78PFwYiERWKRc=
Subject key identifier: 85:B7:58:7A:18:EC:D2:8F:E1:5C:1A:6E:E5:B1:3B:AD:BE:74:13:CD
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018AFB9321B66CF7784CF53578C79AF9AC6B
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/hbdYehjs0o_hXBpu5bE7rb50E80.roa
Signing time: Wed 04 Oct 2023 16:43:58 +0000
ROA not before: Wed 04 Oct 2023 16:43:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216226
IP address blocks: 5.253.245.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fb:93:21:b6:6c:f7:78:4c:f5:35:78:c7:9a:f9:ac:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Oct 4 16:43:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85b7587a18ecd28fe15c1a6ee5b13badbe7413cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:48:64:25:5e:6d:d2:85:39:6c:52:66:34:74:
2e:c9:14:53:88:35:0f:f3:82:cf:00:a9:86:d5:e2:
40:3f:13:66:20:ce:e5:51:b6:17:a2:8b:12:b3:55:
2e:83:25:ce:2a:ab:75:d8:c4:c2:ca:d8:36:88:78:
32:06:ea:0e:03:60:ed:ae:9a:6e:9e:f2:81:f7:1b:
15:e1:73:0e:49:7b:09:db:1a:b7:04:09:92:bd:c4:
ed:81:41:d8:6e:b8:af:89:2d:cb:a2:03:25:e5:0a:
4e:33:0b:7d:10:ec:cc:6e:e0:16:12:c5:75:28:73:
54:0f:7d:32:68:fb:28:52:80:4e:19:2e:0c:2d:a1:
0c:ee:b8:91:b9:b5:75:2d:10:b4:dc:91:df:85:5e:
a0:a7:6a:bb:92:04:e9:48:6e:61:1a:51:40:01:c5:
cc:d6:a4:33:fb:27:6f:5a:c1:b4:9a:a6:bb:b8:fc:
90:f1:9b:1e:12:01:6a:0b:44:ae:88:40:87:a5:b7:
b5:09:9b:36:0b:f7:88:d7:a4:39:d7:59:c7:a3:e9:
17:ff:7a:22:12:4e:3d:81:91:6a:dc:fc:26:86:18:
75:33:fd:83:72:1d:fa:8c:c5:2c:6c:39:e9:a6:c8:
b1:fd:7f:a2:46:b5:94:66:74:11:4e:df:76:79:c1:
28:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:B7:58:7A:18:EC:D2:8F:E1:5C:1A:6E:E5:B1:3B:AD:BE:74:13:CD
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/hbdYehjs0o_hXBpu5bE7rb50E80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.245.0/24
Signature Algorithm: sha256WithRSAEncryption
20:92:4b:35:6d:e4:0a:f7:55:41:30:be:0d:85:e5:d7:2c:3c:
2c:2f:ec:25:24:82:25:ad:f3:d0:95:99:c6:3a:4f:c4:a3:57:
45:51:00:bb:bc:0a:7c:81:f4:d3:88:c6:87:b7:fd:02:1a:99:
4f:b5:3c:5a:1d:fc:5a:d9:c8:cc:b9:ff:2a:d5:f8:d2:a6:17:
12:10:71:b3:f8:c1:21:e0:f8:09:44:9b:4d:be:06:87:d5:34:
26:b7:16:53:af:fe:80:32:46:5f:c1:9d:6d:7c:f5:80:d1:bc:
aa:c1:11:e4:4b:d9:21:e6:f4:da:98:bb:0d:4a:97:38:d8:76:
f3:42:08:1b:61:2a:49:0a:36:17:28:20:26:e7:1d:62:c2:f0:
2c:66:5b:aa:82:e4:f1:d2:95:04:ff:dd:1f:fb:0e:40:45:0a:
9a:2c:6f:0e:82:7c:d1:7e:b0:9e:9f:e5:29:6b:e5:ed:dc:9f:
48:19:a4:d7:19:55:bb:92:a0:87:35:99:45:d3:70:bd:6b:71:
27:e7:32:5b:c0:38:ac:0f:1c:8e:b1:e8:62:33:7d:1d:86:ba:
c1:8c:35:73:05:bd:c6:89:30:54:5a:f4:05:00:8c:d9:a9:ff:
8c:dc:c5:da:b4:04:04:fc:e2:67:80:8e:2b:ff:70:87:2c:43:
b2:96:06:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:13 2024 by rpki-client on console-fra.rpki-client.org