Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/Kv8gOUU2EEg0vHIUnEg-J0sC5GA.roa
File: Kv8gOUU2EEg0vHIUnEg-J0sC5GA.roa (raw, json)
Hash identifier: OqUYarmeom7QbI6wOUhMCQidtIdxrxc56X4seXhRk80=
Subject key identifier: 2A:FF:20:39:45:36:10:48:34:BC:72:14:9C:48:3E:27:4B:02:E4:60
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 0185724716518752790835637C1B62BCCF1B
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/Kv8gOUU2EEg0vHIUnEg-J0sC5GA.roa
Signing time: Mon 02 Jan 2023 11:38:59 +0000
ROA not before: Mon 02 Jan 2023 11:38:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205378
IP address blocks: 5.188.85.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:47:16:51:87:52:79:08:35:63:7c:1b:62:bc:cf:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 2 11:38:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2aff20394536104834bc72149c483e274b02e460
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:25:27:c7:88:08:e0:ca:f7:54:f8:29:97:e8:
57:ed:58:c9:f0:2c:de:65:e9:f9:2d:11:c9:5c:ed:
5a:6f:36:73:40:6f:1e:e3:02:92:fb:cb:67:5c:52:
b1:be:70:fb:ab:9d:50:b1:93:12:12:cd:f8:10:bf:
6a:2f:d0:c6:82:3f:18:2c:87:b3:94:93:7e:c3:1b:
78:18:e2:f9:59:3c:c2:21:89:5c:3c:1e:1e:fb:e6:
f9:bf:b5:0e:af:50:6d:13:79:44:78:09:1e:85:1f:
07:a2:2b:4a:78:b8:fd:4e:09:fa:06:a8:3b:04:37:
35:45:b2:4f:40:e7:d9:6b:92:e4:61:7c:60:43:5a:
d7:08:ee:24:d7:21:2b:f8:65:35:db:8f:99:0a:f8:
87:c7:95:9f:21:39:07:6d:e4:37:7b:ba:fa:f7:9d:
45:85:6b:44:0f:04:f5:6f:77:81:06:6e:d9:31:bf:
44:87:50:d9:02:6b:12:c0:de:b4:dd:21:42:b7:6a:
6e:7a:fd:09:df:e8:a1:24:c6:a2:f9:c7:35:fb:86:
27:b7:8b:01:25:f5:36:6f:37:e5:d4:c4:01:89:c0:
10:8f:bb:fe:c0:33:2d:7d:b6:f6:eb:5b:ae:6a:fb:
74:d4:f5:38:30:55:5e:e8:d1:5b:4d:96:8f:5e:2d:
98:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:FF:20:39:45:36:10:48:34:BC:72:14:9C:48:3E:27:4B:02:E4:60
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/Kv8gOUU2EEg0vHIUnEg-J0sC5GA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.188.85.0/24
Signature Algorithm: sha256WithRSAEncryption
57:b3:90:39:22:3a:70:bb:d7:19:ff:2a:7a:b6:d0:b3:6c:56:
89:6b:9c:f5:c8:ee:78:3b:07:53:03:80:85:5c:7e:a4:ce:63:
74:3d:37:18:09:42:e5:d1:97:80:14:f4:e5:7f:30:12:88:52:
74:66:b1:2e:5e:69:c9:90:06:15:ef:e1:1c:3f:c7:c1:ed:6f:
ef:bd:42:89:7b:84:3d:7d:79:dd:03:1b:61:1f:56:ad:0f:b1:
63:b2:d9:d2:5f:6c:5d:54:01:91:29:39:3a:51:9f:2b:de:8c:
2c:2b:d9:24:09:2a:49:19:be:13:24:f1:3a:d6:ff:f7:a8:b6:
66:b9:98:08:e0:84:b6:fa:e9:e7:97:79:fa:68:75:76:9d:c1:
cb:9d:ba:c0:30:12:9c:b2:6f:42:c4:d2:e2:c0:ba:78:58:f6:
eb:01:ae:7a:1c:79:56:1a:f5:75:d4:0a:1a:ec:dc:78:38:69:
8d:d7:34:ab:3c:eb:80:15:cc:38:6b:92:8c:f7:9e:58:13:4b:
3e:9a:9e:60:7a:a8:36:25:17:db:6c:5f:88:b8:7d:91:fb:b4:
85:38:1b:01:6e:79:46:2b:ad:cb:eb:bf:3b:56:03:f7:f7:f2:
9b:9e:09:97:04:73:82:4e:c9:84:d9:7a:69:22:18:d5:06:3b:
be:06:6c:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:25 2024 by rpki-client on console-fra.rpki-client.org