Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/NYHfdMNnFF1zpAkwAmN6S_p2v3o.roa
File: NYHfdMNnFF1zpAkwAmN6S_p2v3o.roa (raw, json)
Hash identifier: kpC08ljZ2oio2/6BAQaMwfVMLMEr2lKip5wGDJoxW6w=
Subject key identifier: 35:81:DF:74:C3:67:14:5D:73:A4:09:30:02:63:7A:4B:FA:76:BF:7A
Certificate issuer: /CN=d504e641e55a48aee0141e2c0d26227102caa6d4
Certificate serial: 018B2A16716A61E32685FCCF74F7A68980F6
Authority key identifier: D5:04:E6:41:E5:5A:48:AE:E0:14:1E:2C:0D:26:22:71:02:CA:A6:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QTmQeVaSK7gFB4sDSYicQLKptQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/NYHfdMNnFF1zpAkwAmN6S_p2v3o.roa
Signing time: Fri 13 Oct 2023 17:29:55 +0000
ROA not before: Fri 13 Oct 2023 17:29:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209242
IP address blocks: 5.182.85.0/24 maxlen: 24
5.182.84.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:2a:16:71:6a:61:e3:26:85:fc:cf:74:f7:a6:89:80:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d504e641e55a48aee0141e2c0d26227102caa6d4
Validity
Not Before: Oct 13 17:29:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3581df74c367145d73a4093002637a4bfa76bf7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:8b:20:dd:6f:40:be:b8:0a:c0:16:8a:2a:1a:
74:26:50:97:d2:2f:27:ce:db:8f:01:e6:ec:6e:d0:
0a:45:2a:50:33:55:94:a6:89:d5:be:f7:79:fe:ff:
41:13:7a:c0:a8:f1:ee:e3:69:00:0a:3c:2c:79:1e:
11:a0:7e:88:c3:3c:c8:72:0b:98:5b:33:73:86:b9:
f1:f2:20:a5:ce:9f:79:f4:fd:74:f2:b1:7d:42:86:
c0:e3:e5:d8:87:7f:5f:d3:a1:c9:e5:09:dc:8c:6e:
f9:e9:21:90:ed:6a:9c:71:05:e7:a2:68:48:e8:d1:
32:7c:47:ec:9c:99:67:5f:b8:c3:af:03:82:c6:c8:
18:97:b3:83:9b:b2:a8:d1:57:50:97:59:fe:ad:d0:
8d:4c:8c:97:4a:88:89:64:bb:bf:53:a1:a7:aa:84:
1b:a1:74:4c:36:6c:13:5f:82:c3:ff:ac:a1:2a:f2:
8d:de:04:51:ac:a1:4d:7e:e6:3b:af:bb:8d:18:14:
df:90:e6:2d:74:ed:21:0a:28:73:7a:41:e4:67:45:
0d:b2:05:ff:87:71:0c:e3:08:e8:ed:53:bb:6f:10:
a4:ba:91:1a:bd:ed:a7:af:12:ce:d3:c7:84:1c:31:
e5:bf:98:e0:69:49:79:50:63:4b:c3:74:cb:5c:c9:
36:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:81:DF:74:C3:67:14:5D:73:A4:09:30:02:63:7A:4B:FA:76:BF:7A
X509v3 Authority Key Identifier:
keyid:D5:04:E6:41:E5:5A:48:AE:E0:14:1E:2C:0D:26:22:71:02:CA:A6:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QTmQeVaSK7gFB4sDSYicQLKptQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/NYHfdMNnFF1zpAkwAmN6S_p2v3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/1QTmQeVaSK7gFB4sDSYicQLKptQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.84.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:82:ba:ca:da:93:bc:fc:13:cb:98:52:32:31:92:1e:7d:3a:
f6:d2:7d:0d:44:d7:aa:90:69:cd:c0:54:79:05:25:fc:43:b3:
58:97:6a:17:89:77:35:f8:2e:b4:d0:17:9c:51:1b:35:a5:cd:
00:27:0b:e4:71:c3:4b:0a:5b:a5:ac:72:ab:29:85:50:d9:e7:
82:27:28:a4:b1:6e:19:4c:71:23:39:90:bc:9c:94:89:20:3b:
6b:5b:ee:4d:2f:03:9c:a9:ed:8f:27:ff:bc:cb:f8:e2:ba:11:
41:ce:f9:cf:0b:7f:21:cd:bf:ad:d4:ce:c8:b2:70:62:62:62:
2b:8d:a3:e2:b7:9b:fc:26:ac:7e:a1:3c:b6:ef:61:dd:22:7f:
c1:8c:93:42:04:ef:1c:ab:b4:d8:7f:d2:81:c7:55:8f:2d:65:
cb:6b:0d:11:f9:fc:e2:fa:97:78:69:93:2c:5f:36:1f:ea:f3:
21:21:2f:1e:61:1a:d1:8c:62:a8:bd:61:e2:a0:a1:24:62:b2:
1c:d7:35:ce:4c:8e:7c:b8:21:74:3c:69:f4:71:da:94:3f:59:
c6:9e:28:7a:25:11:63:9a:d5:0b:13:63:cc:2a:e6:5a:27:11:
ec:f8:b4:4c:c4:79:08:75:95:46:c4:48:5c:7f:c7:98:43:b2:
e9:f3:1d:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 20 14:36:21 2023 by rpki-client on console-fra.rpki-client.org