Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/D_PKtybm6fGz3TDvDl9V0pktHys.roa
File: D_PKtybm6fGz3TDvDl9V0pktHys.roa (raw, json)
Hash identifier: t1zqDBqrX4h/yvcFMC5PHgp7eCm91EpWG8Bk2quiAfo=
Subject key identifier: 0F:F3:CA:B7:26:E6:E9:F1:B3:DD:30:EF:0E:5F:55:D2:99:2D:1F:2B
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0189442F8331A29201FCE648A99ECB32D67A
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/D_PKtybm6fGz3TDvDl9V0pktHys.roa
Signing time: Tue 11 Jul 2023 09:01:51 +0000
ROA not before: Tue 11 Jul 2023 09:01:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211256
IP address blocks: 5.105.57.0/24 maxlen: 24
5.105.169.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Jul 2023 08:26:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:44:2f:83:31:a2:92:01:fc:e6:48:a9:9e:cb:32:d6:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jul 11 09:01:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ff3cab726e6e9f1b3dd30ef0e5f55d2992d1f2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:5c:fd:b8:72:40:ee:59:9e:b0:2e:2e:91:57:
0a:35:22:df:fa:90:3a:8b:7f:7c:34:7f:b5:e1:99:
a3:6b:c2:b7:83:33:ee:51:ee:f3:84:c1:e1:e9:89:
e5:13:e1:e2:f8:c8:f2:db:2e:83:93:95:53:ba:75:
f4:b5:33:68:26:65:a7:42:62:fc:f1:8f:b6:a8:78:
03:e3:d4:33:36:78:af:ef:1a:05:35:4c:77:5a:2e:
dc:e0:b0:67:be:53:b8:98:ed:39:e7:7c:5e:1b:55:
3a:2d:81:fb:c2:b6:a8:c3:b2:cb:79:ee:82:71:9d:
64:33:87:47:06:42:09:32:eb:58:4d:a8:4e:bf:b0:
6c:4f:06:8f:17:64:9f:03:d3:17:64:31:3f:83:38:
eb:b7:8d:91:a7:ef:02:97:d2:1f:37:c1:d1:0f:89:
9e:ef:13:a1:2f:d8:5d:2c:f5:2f:f5:26:3d:c7:28:
00:7f:b2:46:29:cd:7d:f5:7a:93:4c:b4:95:38:e9:
54:a8:ba:33:81:f6:89:69:77:6d:29:71:66:66:2e:
0f:56:20:82:7c:49:6f:b2:bc:b2:e4:57:df:5b:6c:
b0:d8:98:e5:60:e4:a0:46:a7:34:86:35:17:c4:ab:
95:70:98:52:2e:27:93:53:f7:bb:f8:4f:f2:09:4b:
b6:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:F3:CA:B7:26:E6:E9:F1:B3:DD:30:EF:0E:5F:55:D2:99:2D:1F:2B
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/D_PKtybm6fGz3TDvDl9V0pktHys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.57.0/24
5.105.169.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:01:db:43:90:83:df:83:23:22:17:91:e8:8f:7c:9e:98:98:
7b:27:de:c8:1d:4b:15:a2:1f:2d:b9:98:b4:23:14:a2:b1:d6:
dd:e9:eb:cd:75:ac:d7:5c:34:10:1a:f1:54:af:04:2e:a3:27:
50:bd:5f:bf:ba:fd:86:27:8a:1c:98:d4:8f:c5:90:0d:2a:9a:
e6:d4:28:6a:8f:e9:06:c9:37:1a:11:7d:45:5d:5f:36:0c:61:
a9:da:3a:b3:42:69:90:f3:3e:8b:09:4c:a1:b8:16:8c:7a:35:
e4:42:6a:4c:e3:ba:7f:6a:ff:f5:b2:24:02:5c:08:db:9b:fb:
b9:12:72:c4:a0:44:1b:e1:4d:df:85:90:c6:15:a5:66:48:9c:
16:11:4c:aa:0e:61:de:20:53:e5:9f:83:fb:77:34:08:93:48:
a9:ca:8d:f3:44:42:c2:99:f7:70:6d:82:e9:9b:b8:af:1e:6a:
45:61:0c:78:70:fc:94:80:ef:5a:a0:1e:70:89:33:b9:09:01:
58:e3:09:86:14:88:2a:07:77:43:0e:b3:1f:51:14:b5:9d:8f:
6c:72:f5:58:a2:f1:19:cf:c8:4f:ee:8d:61:eb:ce:e5:00:fe:
5b:1f:7a:c1:4c:9d:bd:82:27:9a:d7:5d:23:4c:81:3a:ce:41:
38:66:ae:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:56 2024 by rpki-client on console-ams.rpki-client.org