Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/CPZm2SeFOIGe_OgN0NPISykbiEU.roa
File: CPZm2SeFOIGe_OgN0NPISykbiEU.roa (raw, json)
Hash identifier: iOxyfFeCOL3cFVMmvyVRSSGebiCRbb0DtD7NcsgUnZ0=
Subject key identifier: 08:F6:66:D9:27:85:38:81:9E:FC:E8:0D:D0:D3:C8:4B:29:1B:88:45
Certificate issuer: /CN=7bab6c11d41162db0306858f83e5e65121132a6b
Certificate serial: 01856CF87AA3613C71E811AA3A9728786061
Authority key identifier: 7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/CPZm2SeFOIGe_OgN0NPISykbiEU.roa
Signing time: Sun 01 Jan 2023 10:55:01 +0000
ROA not before: Sun 01 Jan 2023 10:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205630
IP address blocks: 5.183.79.0/24 maxlen: 24
2a07:22c0:8004::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:7a:a3:61:3c:71:e8:11:aa:3a:97:28:78:60:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bab6c11d41162db0306858f83e5e65121132a6b
Validity
Not Before: Jan 1 10:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=08f666d9278538819efce80dd0d3c84b291b8845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:fe:e6:3d:94:49:05:cd:f1:5b:53:9e:cb:65:
16:39:c4:51:13:b6:c8:f0:13:18:c9:ac:66:49:5a:
21:03:3b:36:6f:e5:d0:0b:b0:d8:9e:42:ec:81:fb:
40:b1:34:fe:00:49:b7:40:ed:ac:fa:44:28:cd:2c:
d8:25:15:ad:41:c8:20:56:de:a2:2b:9a:17:4e:ea:
c0:37:eb:37:b3:97:c0:a1:d9:17:4e:a0:48:cb:78:
d2:c4:1c:b3:4b:37:7b:ca:e5:a0:34:b7:1d:17:5c:
d2:53:06:f4:8d:1d:82:1a:fe:07:8f:a3:d2:b4:24:
a7:be:f2:06:78:30:5a:7f:53:38:49:0e:eb:62:ef:
f7:d5:74:71:63:e5:57:1a:c3:9e:2c:11:92:f6:a7:
72:6f:26:59:85:53:47:b0:c1:e5:f8:88:3f:49:16:
f7:c0:27:fb:60:e1:34:ed:c9:8b:70:5f:74:c6:a0:
61:19:c7:dd:b7:c2:85:08:fb:fb:f1:ca:6e:fc:a6:
b4:b0:7c:c2:47:42:cf:8e:ec:8d:3d:41:14:f4:e0:
35:49:ff:64:51:03:92:83:f1:a7:29:c3:93:c1:d2:
37:5a:cf:b6:ef:63:6a:0f:15:72:1d:73:45:d8:e0:
a8:24:45:bf:01:ca:54:d9:a6:67:34:27:4f:65:c1:
1f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:F6:66:D9:27:85:38:81:9E:FC:E8:0D:D0:D3:C8:4B:29:1B:88:45
X509v3 Authority Key Identifier:
keyid:7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/CPZm2SeFOIGe_OgN0NPISykbiEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.79.0/24
IPv6:
2a07:22c0:8004::/48
Signature Algorithm: sha256WithRSAEncryption
a2:42:7f:60:03:7b:b8:01:01:ad:c8:da:13:d4:42:dd:d7:5e:
dd:1f:c1:da:0f:e3:3c:bd:76:83:23:4d:04:fd:38:b7:41:b0:
37:b0:01:96:4f:f1:08:d0:a4:e3:9f:e6:9a:fb:d4:c8:6b:36:
3e:62:66:c4:9c:74:ce:11:b9:0f:20:7e:37:a0:80:dc:85:ac:
06:c0:fd:7c:e7:3f:5a:1f:c8:08:99:b0:3e:df:0b:0e:13:f7:
95:aa:c8:25:31:e0:38:de:5e:3b:68:41:fc:71:34:2b:b3:d6:
ec:c4:92:36:89:92:ef:21:4e:9a:23:4e:54:70:c3:e0:18:1e:
a8:2b:c2:5c:79:4f:2b:d0:90:a0:cb:ef:10:1d:62:9a:36:83:
d9:1e:92:84:55:94:51:d6:59:a0:60:f9:18:2f:76:7c:cd:62:
13:98:06:0d:7b:9b:ff:17:f2:43:77:9f:86:65:f1:d1:ba:ae:
4a:0b:13:0e:8b:90:af:21:b1:09:3a:c1:23:fd:dc:4f:77:d0:
ac:86:59:69:34:05:14:eb:2a:08:e8:50:18:ed:f1:22:46:16:
d1:db:af:fd:69:fb:fb:1d:34:fd:da:18:11:7f:47:69:9f:b8:
8d:4a:de:fc:02:47:46:22:63:99:51:20:21:c5:73:7d:d9:00:
65:ed:5b:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:28 2023 by rpki-client on console-ams.rpki-client.org