Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/VGkCNl8YNa6mqoGpOVtJt1MTcJ0.roa
File: VGkCNl8YNa6mqoGpOVtJt1MTcJ0.roa (raw, json)
Hash identifier: DajWdBg81PpnpfYKOnKGkxOylrBVC8A2FOPaLNmBBCE=
Subject key identifier: 54:69:02:36:5F:18:35:AE:A6:AA:81:A9:39:5B:49:B7:53:13:70:9D
Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Certificate serial: 018AF5B60E9E91B4E4AF393CD35694D4668B
Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/VGkCNl8YNa6mqoGpOVtJt1MTcJ0.roa
Signing time: Tue 03 Oct 2023 13:24:23 +0000
ROA not before: Tue 03 Oct 2023 13:24:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201671
IP address blocks: 5.104.75.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f5:b6:0e:9e:91:b4:e4:af:39:3c:d3:56:94:d4:66:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Validity
Not Before: Oct 3 13:24:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=546902365f1835aea6aa81a9395b49b75313709d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:bc:37:bd:ff:af:54:25:6b:e2:b4:c2:9c:6a:
bc:e5:2e:5b:e4:a4:63:8e:ad:d6:5d:f5:90:90:1a:
da:52:47:19:b0:07:03:b5:a3:7d:cb:97:79:d6:2d:
1a:17:c9:5d:c8:5b:dd:7b:1c:d1:99:f8:b4:6e:7d:
9c:8c:e7:4f:49:42:90:ea:02:92:a0:c5:d1:39:06:
11:3d:f7:62:20:cd:8d:07:e8:26:5f:c3:12:52:88:
8e:5d:a9:d2:98:66:9b:8a:71:ca:c7:58:9e:6c:31:
49:69:b2:bc:1a:fe:8e:38:4b:c9:ba:78:1f:37:5a:
67:01:bf:f0:c4:5a:26:9d:e2:ea:b6:8e:a1:7a:a4:
77:ab:ca:cf:11:d1:9c:5a:e7:be:e3:c6:a1:fd:3e:
8f:5e:6f:c6:6e:ec:11:50:26:0f:70:3c:ae:7d:16:
c5:03:27:43:ea:43:a9:9a:bc:a4:e4:88:60:8d:15:
1b:a3:76:33:89:fb:2c:d5:c7:34:28:41:ac:ec:d7:
49:fe:04:35:b2:16:fd:f4:6d:14:30:cf:92:3e:2a:
cc:21:0c:f6:d2:34:0e:56:7c:45:e0:c4:27:83:5d:
da:1f:08:bc:f6:8d:11:6f:27:17:9e:f4:f4:c8:22:
fb:c2:bc:52:57:6f:8f:25:9d:7f:6e:b8:5d:68:a3:
f9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:69:02:36:5F:18:35:AE:A6:AA:81:A9:39:5B:49:B7:53:13:70:9D
X509v3 Authority Key Identifier:
keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/VGkCNl8YNa6mqoGpOVtJt1MTcJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.75.0/24
Signature Algorithm: sha256WithRSAEncryption
03:da:18:df:26:1d:7e:30:79:d8:ab:f4:a2:4f:7b:9c:08:89:
1d:65:fd:e6:51:07:ea:d5:1a:2a:06:44:33:49:40:97:76:d7:
ab:d1:e6:9e:5c:70:b7:cc:f2:54:fc:8d:98:b9:92:00:65:74:
9a:56:ef:8c:0f:32:84:41:39:27:b3:e9:96:37:58:29:50:c5:
d7:a6:2f:4d:27:55:18:7d:20:67:af:20:2a:b3:7d:08:bf:10:
c0:ca:8a:45:9a:ba:6c:bd:86:0e:b4:66:ad:a7:6f:2b:59:34:
3a:40:80:f2:09:2a:4c:61:58:23:2a:d9:6d:00:15:15:c5:67:
d2:eb:f4:6e:04:5a:5f:3d:37:11:eb:34:aa:30:1e:5d:2f:a8:
96:02:c1:cd:a8:41:6c:2b:05:57:88:2c:3e:99:15:76:9f:eb:
7f:a0:16:09:fb:44:f1:af:09:1a:e2:a7:a4:61:9c:46:2b:56:
9d:f3:a0:07:e6:88:2b:f1:34:1c:dc:fc:36:db:e4:91:67:89:
e3:b4:9c:9b:78:ef:12:71:e4:4f:1a:58:ac:c2:7a:b6:ad:3d:
4c:f1:65:13:ae:1a:4f:d3:2d:f5:fb:9f:bb:d3:f2:1e:b5:42:
52:24:9d:a6:eb:49:e0:ea:9e:5f:11:8d:fb:9c:c2:60:c0:6a:
4d:98:28:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:39 2024 by rpki-client on console-ams.rpki-client.org