Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/T2RE5fWwWIHMDbDPWRa0i5e4aW4.roa
File: T2RE5fWwWIHMDbDPWRa0i5e4aW4.roa (raw, json)
Hash identifier: d6a7Sw92OZMSx1UMz7C2AI/F8pdSVlnvJ6rb7A3WtcM=
Subject key identifier: 4F:64:44:E5:F5:B0:58:81:CC:0D:B0:CF:59:16:B4:8B:97:B8:69:6E
Certificate issuer: /CN=da6dc4192645c842a4fa2f88234f2e5a184c7664
Certificate serial: 018A4B85A5C9563A994EEB763F13DE5A539B
Authority key identifier: DA:6D:C4:19:26:45:C8:42:A4:FA:2F:88:23:4F:2E:5A:18:4C:76:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2m3EGSZFyEKk-i-II08uWhhMdmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/T2RE5fWwWIHMDbDPWRa0i5e4aW4.roa
Signing time: Thu 31 Aug 2023 12:16:04 +0000
ROA not before: Thu 31 Aug 2023 12:16:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49065
IP address blocks: 5.252.129.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4b:85:a5:c9:56:3a:99:4e:eb:76:3f:13:de:5a:53:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da6dc4192645c842a4fa2f88234f2e5a184c7664
Validity
Not Before: Aug 31 12:16:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f6444e5f5b05881cc0db0cf5916b48b97b8696e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:34:1d:75:e3:c9:71:fc:b4:22:e0:04:5c:da:
96:b3:85:28:c0:f7:d0:1e:ad:11:d7:08:06:6c:1d:
a2:5c:3d:a5:62:e5:df:32:b0:b2:97:f5:22:ea:cf:
fe:2f:b7:2a:8d:3d:87:0c:44:59:3f:ab:c1:9c:6d:
70:ee:84:e2:d3:4a:dc:f7:6b:03:2b:f1:6d:f6:63:
9d:f9:be:3f:f1:25:77:51:d4:7a:0a:1a:89:88:d6:
34:cc:ff:05:95:9d:10:42:0b:4a:8f:18:43:02:1f:
a5:75:71:06:de:f5:e2:e8:fc:c7:9f:60:ef:16:d7:
ba:b5:5e:d9:0d:fe:08:5b:33:4d:49:54:56:8f:2e:
64:13:42:e5:9a:db:2e:50:94:13:97:1a:43:43:54:
16:2a:4d:93:77:f6:7d:6d:0d:ee:37:b5:46:b1:c0:
49:cd:2c:79:73:15:20:1f:f9:3a:0e:e5:68:18:e3:
6b:3e:22:a2:93:a8:1e:c2:c8:9b:5c:68:a5:84:dc:
e4:eb:1b:19:25:af:81:7b:72:40:bf:6b:66:90:2a:
64:94:fd:5e:f3:86:e8:c5:3f:f4:5b:fc:a0:38:60:
cf:01:0b:37:a6:66:5e:7d:a7:9b:1c:6b:f2:d6:c3:
da:7a:ba:30:e5:3a:d4:46:e8:d3:19:83:41:6b:12:
03:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:64:44:E5:F5:B0:58:81:CC:0D:B0:CF:59:16:B4:8B:97:B8:69:6E
X509v3 Authority Key Identifier:
keyid:DA:6D:C4:19:26:45:C8:42:A4:FA:2F:88:23:4F:2E:5A:18:4C:76:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2m3EGSZFyEKk-i-II08uWhhMdmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/T2RE5fWwWIHMDbDPWRa0i5e4aW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.129.0/24
Signature Algorithm: sha256WithRSAEncryption
14:1e:a0:87:3c:f9:5f:bf:cc:2e:4d:5a:5d:99:df:91:ed:8e:
d3:69:00:62:4e:e8:1e:ca:36:4a:fd:10:62:e5:cd:16:1c:b6:
ba:1d:31:06:d3:76:3f:58:2c:0e:2b:1f:5c:5b:59:78:6e:32:
5d:71:25:65:cc:61:46:5d:d1:80:60:65:38:0b:ce:e8:40:ea:
33:53:03:f5:4c:76:1f:a8:aa:74:a7:98:9f:b6:6e:9f:a6:21:
d6:ea:60:19:3a:2b:89:1a:d4:4b:76:a4:61:28:d4:7e:4a:00:
3b:c3:16:90:a3:8f:bd:7e:24:bb:0c:29:ac:2a:4b:23:27:e0:
b8:41:00:a7:c3:08:db:74:8d:6c:50:de:46:a7:d0:01:cb:8d:
fa:81:a9:0e:9e:f0:40:e5:d6:89:1f:48:cc:48:6b:9f:63:da:
3b:9b:b1:fc:96:28:87:40:ff:e8:4c:0e:c2:be:4c:eb:0e:12:
e1:3e:fa:08:f8:5f:bf:8f:01:8a:ca:2b:a9:f2:84:b1:b0:9b:
9a:62:97:f0:64:85:9b:ee:95:c0:f4:fd:61:4d:fe:b7:73:1c:
3d:b0:56:95:e3:ee:c5:8c:cf:20:20:a8:95:3d:48:b5:68:9f:
cd:51:cc:c7:6e:17:93:71:a3:ba:70:83:93:d3:2f:f9:40:8d:
46:e5:d9:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:06 2024 by rpki-client on console-fra.rpki-client.org