Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/bzwZevBM57I946JLQHa3KB97p-4.roa
File: bzwZevBM57I946JLQHa3KB97p-4.roa (raw, json)
Hash identifier: xbSuTh1d4KdXXiE/qgk8JpniHlJ57HAA5B+ehUq1050=
Subject key identifier: 6F:3C:19:7A:F0:4C:E7:B2:3D:E3:A2:4B:40:76:B7:28:1F:7B:A7:EE
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 01856F42E0701E446717CA3520314E15CA1C
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/bzwZevBM57I946JLQHa3KB97p-4.roa
Signing time: Sun 01 Jan 2023 21:35:31 +0000
ROA not before: Sun 01 Jan 2023 21:35:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59501
IP address blocks: 5.160.217.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:e0:70:1e:44:67:17:ca:35:20:31:4e:15:ca:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 21:35:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f3c197af04ce7b23de3a24b4076b7281f7ba7ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:94:98:dc:ef:d1:31:30:17:b0:27:60:fe:b4:
09:78:66:e2:39:e1:7c:93:24:ff:b3:8b:cd:56:40:
86:ad:75:38:16:14:b5:8d:4c:db:ea:3f:af:19:bf:
db:f9:b7:c5:9b:81:56:fb:69:64:61:da:fd:b8:3e:
54:4d:a6:b2:6c:3b:3a:b7:83:96:fe:cc:5b:35:41:
63:a2:b5:94:54:28:15:20:7c:68:d3:ce:d3:dc:29:
92:36:8c:6a:3d:1e:fe:03:be:e1:72:4a:e3:85:2c:
7c:e1:d5:f4:05:4f:ee:8e:af:0a:c1:73:e4:84:76:
c2:53:3e:98:eb:e7:f0:fb:27:49:18:9e:41:7e:36:
7a:c5:df:4f:e3:2f:a1:e3:d9:03:b0:4c:53:e8:9f:
3e:c6:79:b3:37:4c:48:bc:26:64:02:1f:2b:db:28:
5b:2f:1c:4a:90:a2:a2:0d:32:ee:b7:f4:e4:25:67:
41:1d:35:8d:3b:09:53:67:dd:79:25:66:92:bc:6e:
38:1a:89:25:92:ae:23:9b:08:ca:d0:f6:25:82:42:
aa:6c:f8:ba:eb:85:69:96:b5:3e:c4:23:0e:f8:ec:
5c:68:c3:9f:36:58:e9:8d:1d:29:15:64:c8:ed:a9:
50:72:85:85:79:26:6c:cb:ba:d0:22:87:34:0f:e7:
3e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:3C:19:7A:F0:4C:E7:B2:3D:E3:A2:4B:40:76:B7:28:1F:7B:A7:EE
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/bzwZevBM57I946JLQHa3KB97p-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.217.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:1c:db:ed:0c:e0:a6:a1:3e:de:bc:4e:f0:9a:c5:79:eb:a9:
d3:10:3f:74:94:f9:be:54:91:3c:91:a9:3a:02:95:a7:60:50:
9f:5d:0e:e4:b0:42:70:6f:a5:98:a5:93:3c:05:b4:ba:c2:73:
f0:cd:a9:73:01:21:e1:fc:99:9c:7f:b3:cb:91:9a:7d:32:0e:
f0:55:8a:e2:a2:5f:7b:4c:eb:47:ff:bb:b7:b4:fb:75:db:c0:
8b:b8:48:40:5d:1f:1d:54:1b:ed:69:46:3b:9a:0c:e9:51:fd:
cb:5e:67:81:e1:05:44:0f:96:5c:39:76:e8:ff:80:be:34:eb:
5c:07:7b:02:76:bf:95:1f:72:f1:99:9f:9b:60:16:38:e1:25:
fb:fa:d3:82:ff:f7:f9:69:e1:00:a9:a8:f7:5d:87:25:1b:20:
99:ee:b4:7d:6b:dc:7f:a3:81:de:f8:53:24:25:4a:df:a0:98:
19:3a:bc:52:e4:54:79:5f:3e:0a:97:a4:bc:23:4b:f8:23:0e:
87:85:38:98:79:a8:10:71:88:60:67:14:4b:3e:9c:d9:7f:33:
90:53:82:2d:7c:a9:84:ee:99:b7:1d:54:33:41:d0:12:4e:68:
2b:c0:87:63:85:c1:c3:7d:07:0f:6a:51:b2:98:84:41:1c:fb:
97:9d:a5:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:23:49 2024 by rpki-client on console-fra.rpki-client.org