Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/yEFAb1BgZtZFeyK_cJjdhjiNtdA.roa
File: yEFAb1BgZtZFeyK_cJjdhjiNtdA.roa (raw, json)
Hash identifier: 782VUIaI0KtDPMGunDpFNqTdw0TOV1wD+KYQzQEePeg=
Subject key identifier: C8:41:40:6F:50:60:66:D6:45:7B:22:BF:70:98:DD:86:38:8D:B5:D0
Certificate issuer: /CN=d43b22130aa9a7734254769ec13bfe171fa1e28b
Certificate serial: 018A21935B7E7CC1466EC6C403B5C8359302
Authority key identifier: D4:3B:22:13:0A:A9:A7:73:42:54:76:9E:C1:3B:FE:17:1F:A1:E2:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DsiEwqpp3NCVHaewTv-Fx-h4os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/yEFAb1BgZtZFeyK_cJjdhjiNtdA.roa
Signing time: Wed 23 Aug 2023 08:46:59 +0000
ROA not before: Wed 23 Aug 2023 08:46:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205192
IP address blocks: 5.250.253.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:21:93:5b:7e:7c:c1:46:6e:c6:c4:03:b5:c8:35:93:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d43b22130aa9a7734254769ec13bfe171fa1e28b
Validity
Not Before: Aug 23 08:46:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c841406f506066d6457b22bf7098dd86388db5d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:11:09:6e:10:1c:16:50:60:f6:71:58:de:93:
3e:e2:ac:df:7c:c1:3d:76:88:ea:f3:0a:b4:b8:10:
64:c9:50:29:40:28:31:a3:a3:85:67:62:f7:8b:1d:
f9:c8:73:a4:64:4d:cc:24:e4:60:98:67:1f:ba:2d:
02:cd:29:e1:a6:47:60:c7:a0:d3:fa:00:1d:91:45:
0d:df:47:d7:83:f9:3d:b8:cd:bd:e9:29:92:b1:05:
74:62:40:1b:b9:e3:03:af:75:fe:8a:00:c3:15:19:
fb:00:2b:7a:6b:42:2e:ba:87:3f:e8:04:d5:e2:d0:
d1:bf:96:c4:a9:fb:e7:c3:98:0e:f5:b8:68:86:ae:
d0:8e:c2:5b:1b:e5:45:fb:fe:39:82:94:b7:6e:8f:
ce:66:63:3d:ae:a2:d3:70:60:eb:e9:74:f0:8c:01:
24:06:0c:35:d7:91:de:a2:2a:4e:61:16:43:77:ea:
00:db:f5:b7:e1:b3:96:16:53:d8:5f:84:e9:c8:75:
be:dc:7e:1d:ab:53:28:40:65:e4:9c:ff:64:e1:b5:
da:34:bf:6c:aa:a9:3f:bb:6b:37:b2:87:a7:b0:41:
24:d6:96:00:59:9f:5c:58:cd:1e:1f:c1:27:ed:45:
54:38:37:6a:d5:d3:5c:10:4c:4a:49:29:6d:35:ea:
f0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:41:40:6F:50:60:66:D6:45:7B:22:BF:70:98:DD:86:38:8D:B5:D0
X509v3 Authority Key Identifier:
keyid:D4:3B:22:13:0A:A9:A7:73:42:54:76:9E:C1:3B:FE:17:1F:A1:E2:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DsiEwqpp3NCVHaewTv-Fx-h4os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/yEFAb1BgZtZFeyK_cJjdhjiNtdA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.250.253.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:e2:13:62:26:9c:0b:5d:ee:dd:11:d0:17:8c:62:16:b5:94:
f7:0d:0c:e5:05:79:79:09:cd:f5:45:b4:58:ec:9e:4f:c4:22:
51:27:03:30:57:46:4f:2a:60:a4:2f:dc:a4:28:d5:8d:43:e3:
ba:3c:5c:e8:b0:20:d1:c7:85:4c:f0:ff:b8:08:2a:7f:ba:f8:
4e:c2:75:47:22:da:04:3d:21:c4:73:d7:04:c7:59:d6:51:2f:
b2:05:8c:44:e1:33:ab:7e:a5:d4:52:3e:51:ea:8f:8e:de:bc:
61:ec:e6:a5:06:30:0d:04:76:1c:a8:a8:f6:4c:80:aa:a9:03:
9a:84:df:61:49:18:01:d1:a4:29:59:d4:31:e5:16:cf:3c:b5:
14:a9:3b:2b:b8:54:a8:ca:07:46:fa:37:f0:1a:13:38:b8:a0:
1b:35:9b:0a:4a:35:ef:c7:e1:75:97:fb:35:92:53:7e:f4:0f:
dc:1e:da:30:f1:93:36:b2:08:f7:d3:14:77:93:4b:9d:62:a0:
68:05:09:c1:f6:ce:b3:4e:23:f1:b6:ea:cc:ec:a1:60:fc:27:
1b:b8:fa:61:1f:cf:eb:4d:82:f0:c9:aa:b0:a0:4c:51:9d:85:
0f:a0:9b:7e:55:46:90:f4:c7:fa:2c:d1:40:e8:1a:3b:4a:fd:
37:bc:c0:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:23 2024 by rpki-client on console-fra.rpki-client.org