Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/D5yoxxl6H69nYUoN-XOC8cBI4no.roa
File: D5yoxxl6H69nYUoN-XOC8cBI4no.roa (raw, json)
Hash identifier: ydg68ZdgkoYl+DzK8Du+6QGQ5EXriAEFhE1pl/hovB8=
Subject key identifier: 0F:9C:A8:C7:19:7A:1F:AF:67:61:4A:0D:F9:73:82:F1:C0:48:E2:7A
Certificate issuer: /CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05
Certificate serial: 01856CCAD940E2FA0A89570615566685045A
Authority key identifier: C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/D5yoxxl6H69nYUoN-XOC8cBI4no.roa
Signing time: Sun 01 Jan 2023 10:05:11 +0000
ROA not before: Sun 01 Jan 2023 10:05:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8468
IP address blocks: 151.236.208.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:d9:40:e2:fa:0a:89:57:06:15:56:66:85:04:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05
Validity
Not Before: Jan 1 10:05:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f9ca8c7197a1faf67614a0df97382f1c048e27a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:08:0d:06:0f:e6:47:a1:20:12:28:36:c8:43:
b3:35:36:f0:d1:cf:4f:05:82:44:c2:8b:12:49:2e:
8c:4f:3a:50:14:b2:8a:72:c2:d2:32:14:48:93:5d:
bd:d7:33:5d:50:45:22:18:f9:46:8c:45:8b:37:f2:
f9:8b:c2:0f:65:80:10:61:f7:fb:00:64:0d:ec:91:
6e:5d:41:59:47:58:ec:f4:fb:41:93:ae:0d:dc:63:
1b:65:be:4a:80:05:ab:c4:0c:0d:58:3e:31:10:98:
41:7f:69:6a:8c:af:43:94:f9:47:0a:63:eb:be:e1:
76:15:39:66:72:bb:1a:32:2e:19:03:fc:22:de:8a:
7e:ed:e4:a8:08:e1:53:dc:be:40:fb:84:66:a5:8e:
4c:c3:35:9f:5e:b7:05:83:22:40:aa:a1:97:7b:93:
d5:26:01:30:38:e0:3c:1b:76:1f:d7:f5:7c:a2:ee:
2f:34:0b:80:cb:0e:cf:05:34:91:c2:9e:b8:0d:b6:
c4:f7:91:b9:b9:28:33:9d:73:a3:ab:12:b3:28:08:
f4:13:91:11:87:66:19:cb:67:1a:1b:f6:25:5d:cf:
68:88:78:a4:b2:8b:83:c8:28:d8:06:91:b1:c4:4e:
14:34:f9:e7:68:59:34:56:51:4c:11:dc:31:97:b5:
d6:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:9C:A8:C7:19:7A:1F:AF:67:61:4A:0D:F9:73:82:F1:C0:48:E2:7A
X509v3 Authority Key Identifier:
keyid:C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/D5yoxxl6H69nYUoN-XOC8cBI4no.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/yE1hzRftkuVLszl_HlprOQSsbwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.236.208.0/23
Signature Algorithm: sha256WithRSAEncryption
93:f7:ce:f9:4a:e4:ba:61:66:2f:67:a0:bb:1e:4e:23:a4:41:
9b:6b:c5:f4:53:fe:93:bc:37:a0:7f:9b:87:89:bc:29:05:47:
a5:85:25:90:c0:29:b1:f6:5a:dc:8a:3c:25:c2:61:39:0a:5b:
9e:76:e0:56:37:a0:5e:79:41:27:12:b4:02:bc:34:dd:fc:c3:
06:3a:11:99:33:bc:f5:01:8c:9b:48:cb:b9:01:36:fb:e1:23:
82:cf:e4:f0:b9:d5:57:2d:8b:10:b0:7b:a5:f7:14:69:9a:b4:
b6:88:80:d6:f9:9f:46:01:4d:f8:94:71:15:65:d0:97:d5:5b:
3f:30:a8:14:5f:b9:a6:2a:2d:99:a9:be:18:8c:e9:6f:33:e4:
21:24:2b:e8:8c:f0:d7:b1:78:92:2a:45:ea:75:56:7a:3d:5b:
3b:28:83:60:d8:1e:59:ab:86:76:f0:c6:4d:f7:c1:39:11:49:
45:d5:e6:9a:5b:27:46:03:3e:3e:df:4a:15:55:04:6a:5b:40:
ed:d8:3b:20:43:1a:e7:3a:71:e3:b3:95:1e:43:3c:cb:c3:8a:
1e:e7:77:97:4c:cd:7c:e4:9f:11:9c:8b:ca:1a:a3:b0:bc:2a:
70:8c:b8:36:51:b1:a0:0e:39:b7:59:86:99:5a:8a:c3:4e:89:
81:f2:15:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:38 2024 by rpki-client on console-ams.rpki-client.org