Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1b7635-e6ff-4969-b2c0-89fb8fe69633/1/0URxZKKTO6J1M2wbGw54ylB-A0s.roa
File: 0URxZKKTO6J1M2wbGw54ylB-A0s.roa (raw, json)
Hash identifier: K+z0cwdA29d+bnSfzZqdiseScuV7vUFTGf0Lq2O26lI=
Subject key identifier: D1:44:71:64:A2:93:3B:A2:75:33:6C:1B:1B:0E:78:CA:50:7E:03:4B
Certificate issuer: /CN=9ba90d66d2ddeb646a61406912ffddfa14e39910
Certificate serial: 01856C414F3AA1996ECEBA964732C8D91310
Authority key identifier: 9B:A9:0D:66:D2:DD:EB:64:6A:61:40:69:12:FF:DD:FA:14:E3:99:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m6kNZtLd62RqYUBpEv_d-hTjmRA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1b7635-e6ff-4969-b2c0-89fb8fe69633/1/0URxZKKTO6J1M2wbGw54ylB-A0s.roa
Signing time: Sun 01 Jan 2023 07:34:57 +0000
ROA not before: Sun 01 Jan 2023 07:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197540
IP address blocks: 5.182.200.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:4f:3a:a1:99:6e:ce:ba:96:47:32:c8:d9:13:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ba90d66d2ddeb646a61406912ffddfa14e39910
Validity
Not Before: Jan 1 07:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1447164a2933ba275336c1b1b0e78ca507e034b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a9:12:2f:7e:29:82:da:db:8c:d4:75:8f:e5:
2b:e4:6a:13:0f:da:c3:2a:2c:9c:55:da:37:34:a2:
ee:cc:69:ff:bf:71:d2:a0:42:e7:4c:2a:1c:78:1b:
6d:24:b6:1e:0d:bf:65:cc:c0:21:4d:8f:f2:47:50:
3b:f2:07:11:f2:8f:a9:dc:6b:2e:5a:98:63:0f:5e:
91:6d:e5:0b:ae:37:33:c3:44:23:17:aa:d1:29:0d:
d4:17:06:ea:4a:66:b5:c0:4b:03:9b:39:58:ad:e2:
79:22:b4:1c:db:ea:ed:53:92:32:14:3a:bf:b2:c6:
94:be:70:23:d7:ce:95:72:e4:dd:f3:0a:4e:06:5f:
bd:83:7f:b3:85:7e:24:43:ce:f6:a9:20:a0:fa:61:
b2:08:c3:3a:2f:2c:bc:0b:f7:35:4a:79:05:f5:91:
a0:0d:37:99:80:a4:98:f0:f1:de:82:68:13:37:03:
ce:ab:8f:13:60:b7:84:6a:27:3e:cf:bf:3c:5d:f4:
17:d1:7b:4f:b0:b9:09:1d:2c:06:86:b6:f0:bb:77:
69:0e:64:68:cd:49:8a:58:9d:52:10:6d:89:ba:c9:
3d:16:65:f2:ea:4c:27:fb:79:19:aa:01:ea:2f:ce:
ab:e2:4f:a6:07:27:71:76:f2:ea:c7:85:62:53:65:
1c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:44:71:64:A2:93:3B:A2:75:33:6C:1B:1B:0E:78:CA:50:7E:03:4B
X509v3 Authority Key Identifier:
keyid:9B:A9:0D:66:D2:DD:EB:64:6A:61:40:69:12:FF:DD:FA:14:E3:99:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m6kNZtLd62RqYUBpEv_d-hTjmRA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1b7635-e6ff-4969-b2c0-89fb8fe69633/1/0URxZKKTO6J1M2wbGw54ylB-A0s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1b7635-e6ff-4969-b2c0-89fb8fe69633/1/m6kNZtLd62RqYUBpEv_d-hTjmRA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.200.0/23
Signature Algorithm: sha256WithRSAEncryption
bb:66:e5:bb:df:43:7d:a5:ec:85:24:46:e7:72:b5:05:eb:58:
1e:cd:d4:8c:ca:35:bd:a7:6c:f6:2b:58:12:14:c9:72:70:1c:
f4:07:6d:b1:36:8b:f4:9a:a1:88:6b:d0:e9:5a:a1:a8:d4:4f:
84:9a:3b:b2:2c:f0:36:e4:8c:84:3d:c4:55:e2:b9:c1:b7:8f:
ea:4c:ac:6a:08:2a:ce:0c:cc:e7:af:5e:c6:7f:8a:da:a0:56:
68:9d:77:fb:c4:e0:40:24:ed:8b:71:35:5c:3d:10:52:cb:ce:
04:e9:ce:69:1a:02:06:5a:8e:b3:50:36:10:5f:8a:63:04:72:
1f:4b:90:4e:1b:e1:58:7c:8d:31:64:cb:25:e1:0f:03:28:84:
a6:9b:c3:37:b8:38:22:1a:f5:88:5f:e7:b5:54:c6:ff:d9:91:
de:a3:82:d4:52:7d:60:05:40:87:77:3c:96:f8:2a:5b:fe:dd:
ef:a9:11:0f:ea:88:0d:e7:43:a2:b1:4e:e3:b0:e2:fd:d0:e6:
e0:12:d4:89:14:4a:71:15:0f:c2:da:18:63:b4:5a:75:a4:5b:
92:bf:8b:ff:37:91:39:9e:ff:f1:75:ff:50:0a:c7:22:3b:3c:
6b:c6:98:5d:1a:5e:df:90:4f:31:bb:26:71:00:dd:08:bf:43:
98:b1:a0:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:35 2024 by rpki-client on console-ams.rpki-client.org