Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/UX2vVFntPpdCRsyv_wfk2Lb7KBE.roa
File: UX2vVFntPpdCRsyv_wfk2Lb7KBE.roa (raw, json)
Hash identifier: TdtJgtP+1C6N4F3stkXjW48A+udPsazq48G97yflERQ=
Subject key identifier: 51:7D:AF:54:59:ED:3E:97:42:46:CC:AF:FF:07:E4:D8:B6:FB:28:11
Certificate issuer: /CN=01f3ef3e0ea95a975537d5c25d93cb76af687234
Certificate serial: 018678FDFF331FB4899EB4EC32FEF72E649E
Authority key identifier: 01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/UX2vVFntPpdCRsyv_wfk2Lb7KBE.roa
Signing time: Wed 22 Feb 2023 11:59:17 +0000
ROA not before: Wed 22 Feb 2023 11:59:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49209
IP address blocks: 5.10.141.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:78:fd:ff:33:1f:b4:89:9e:b4:ec:32:fe:f7:2e:64:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01f3ef3e0ea95a975537d5c25d93cb76af687234
Validity
Not Before: Feb 22 11:59:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=517daf5459ed3e974246ccafff07e4d8b6fb2811
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:25:6a:fb:4e:f3:a0:be:70:bb:77:59:2e:c1:
d2:bb:80:2c:b8:28:fb:7c:ed:21:07:dc:99:b2:de:
a5:8f:d6:7c:6e:38:85:0c:f5:c1:d8:d2:ff:f4:42:
cf:83:ea:9e:f2:d9:a2:78:94:de:b9:91:d9:30:0b:
06:1b:bc:cb:d1:3d:8d:96:97:f4:71:62:59:d5:09:
1f:20:89:7f:52:73:89:d7:27:6f:55:65:b1:87:c1:
5a:06:1a:f1:71:49:6f:e5:6b:45:73:9b:13:00:79:
c3:67:31:9b:f3:e8:b5:6a:7d:a7:f8:f1:73:a5:76:
b3:16:3e:d0:9d:06:e3:39:60:bb:bb:03:5a:a4:8d:
5e:12:b0:d0:34:c3:40:f2:f7:0c:bd:47:45:5f:3d:
c6:5f:50:7c:68:48:f3:f0:40:85:ef:9c:0c:78:9a:
81:01:b6:cb:12:09:e5:fb:2d:f9:ed:95:fc:42:68:
43:a2:1c:e3:f4:3b:c1:c1:32:62:dd:c9:90:e3:8a:
de:7f:8f:2c:ef:44:f2:bc:69:2c:f8:b9:74:e0:c7:
a3:cd:bf:41:99:c0:9b:ad:3b:5d:17:d0:32:0d:35:
e5:fb:2d:0f:9c:f3:47:55:ff:1f:6b:6a:7a:51:d7:
59:d9:62:f4:28:7d:ae:10:c3:7c:fb:79:5f:3e:91:
61:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:7D:AF:54:59:ED:3E:97:42:46:CC:AF:FF:07:E4:D8:B6:FB:28:11
X509v3 Authority Key Identifier:
keyid:01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/UX2vVFntPpdCRsyv_wfk2Lb7KBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.141.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:48:cf:f2:1b:86:c0:51:d5:c8:6c:87:14:34:96:77:ae:2a:
99:28:f5:44:75:54:50:99:98:f8:e2:d5:5e:e8:34:71:17:4d:
bb:0b:f1:0f:01:bf:5a:40:99:9e:2b:ef:e4:88:8e:73:33:42:
32:75:d9:b3:b8:ef:ad:d9:80:75:db:6d:4e:5a:bc:ef:09:77:
4f:e5:e5:3b:bc:2d:e8:a9:d1:07:9d:6c:db:43:d5:eb:80:54:
11:18:5b:a3:f9:3f:1b:50:5d:b2:ab:c4:bf:e7:7c:0c:82:0e:
bf:cf:bc:65:09:e8:d5:e3:37:a5:c4:60:be:f2:67:17:34:a4:
21:e3:91:d6:cf:03:dc:d6:d0:4d:35:0f:28:1c:c9:20:8b:b0:
d4:cb:df:73:36:73:e8:5d:bf:81:49:07:8b:8a:da:45:ae:15:
6e:52:d1:2d:0f:c4:ba:5b:ae:74:2d:f9:2a:bb:b0:54:ce:a7:
07:97:ad:9b:2a:67:29:6c:4a:e0:aa:1b:22:b9:f8:0d:96:2c:
3a:ee:37:23:28:47:1d:47:d8:9a:a2:37:ea:9e:13:11:9f:27:
a7:8e:e1:d9:ba:b4:f5:60:54:e2:48:72:ed:b2:4c:4a:75:dd:
92:b8:ee:2a:72:49:2f:ef:29:f9:bb:69:4b:7b:a3:1c:b9:1c:
3f:37:e8:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:40:37 2024 by rpki-client on console-ams.rpki-client.org