Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/DrN58GqW9-nvtzDsuNrvyBGVdMI.roa
File: DrN58GqW9-nvtzDsuNrvyBGVdMI.roa (raw, json)
Hash identifier: Yqbc44YBMk4LAv0KnXx3X0dWHBQk/S0UX/l82Lg/Njo=
Subject key identifier: 0E:B3:79:F0:6A:96:F7:E9:EF:B7:30:EC:B8:DA:EF:C8:11:95:74:C2
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 018809EAE739D0411C4FC950EB6895CFE137
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/DrN58GqW9-nvtzDsuNrvyBGVdMI.roa
Signing time: Thu 11 May 2023 08:26:09 +0000
ROA not before: Thu 11 May 2023 08:26:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211138
IP address blocks: 5.105.18.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:09:ea:e7:39:d0:41:1c:4f:c9:50:eb:68:95:cf:e1:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: May 11 08:26:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0eb379f06a96f7e9efb730ecb8daefc8119574c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:57:5c:56:22:80:75:ae:79:28:20:90:e7:34:
c1:1b:68:10:0d:c1:89:a3:db:1f:8d:ac:8b:3b:6d:
2e:26:34:6c:d6:3c:81:dc:ea:d5:db:99:a5:65:3d:
c1:34:bd:fb:03:8b:18:1f:85:e3:b4:37:7c:1e:ae:
b0:30:33:3c:1a:43:4b:c4:8b:5d:a2:99:30:f0:c9:
c0:7a:5e:76:ca:c4:a7:d4:85:c2:dc:12:07:e4:7d:
50:c7:ad:6b:93:15:f5:a2:58:50:40:39:aa:b7:4b:
7b:fe:1b:bf:4a:ff:19:50:a2:55:67:4e:1f:4d:3b:
70:7f:96:bc:34:2d:86:3c:c5:65:79:57:03:eb:9f:
aa:55:7f:8c:7a:27:38:2e:b2:ec:62:51:92:dc:d3:
26:7a:06:b8:32:9b:08:28:5b:37:fb:b8:85:d4:f5:
7c:16:33:f2:09:c5:40:b8:3c:d4:0b:72:83:04:49:
28:31:f7:9c:69:7b:49:25:c3:98:d8:b2:f9:d4:10:
d3:18:5b:12:65:d8:2b:6e:d9:7b:4b:6c:89:44:7a:
5b:37:20:5f:56:7c:28:68:e2:a2:64:a4:0c:96:17:
41:80:ef:87:fc:1a:ee:87:e7:5a:ec:b6:7d:72:2d:
c8:83:c0:2d:f7:73:f8:5e:04:2a:98:6a:00:f5:b3:
70:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:B3:79:F0:6A:96:F7:E9:EF:B7:30:EC:B8:DA:EF:C8:11:95:74:C2
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/DrN58GqW9-nvtzDsuNrvyBGVdMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.18.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:27:79:4d:0d:54:14:6f:7d:f7:d5:70:dd:fe:f2:c6:4f:e7:
cd:00:36:f2:16:95:96:b4:22:2d:c5:90:3f:be:a7:3a:7a:42:
c7:a2:40:fd:23:69:b8:13:07:37:e4:4e:6e:0e:5f:c6:a4:80:
51:27:59:be:42:2b:16:4b:fe:28:25:5d:db:8d:90:0f:79:8c:
3e:1d:4f:e9:6a:4c:99:69:37:fe:fb:d3:2d:56:8c:f4:81:f4:
40:da:05:c2:c4:30:1a:8c:87:2d:97:3c:cf:36:5d:68:60:ee:
6f:fc:33:21:3a:58:3a:5f:be:8a:8f:2f:9f:dc:cb:79:f4:77:
1a:d2:a0:63:8f:eb:9e:4b:17:82:8b:d0:44:ba:8f:49:9d:54:
76:1d:44:9a:c2:bc:89:7e:ed:0f:0f:ae:a9:80:ae:c9:87:8c:
ea:fc:fc:74:d2:b4:b2:cf:62:c3:e0:db:38:33:03:d9:a3:a6:
64:c9:d6:d0:42:1c:ac:55:f0:c8:14:db:01:d8:43:bb:49:52:
2c:e7:37:04:2e:e9:52:71:3f:8d:99:6a:ab:ed:8f:23:c3:d8:
84:e6:a9:ee:f6:6b:2e:a6:b0:cd:28:bc:41:0b:9d:da:76:80:
d2:82:73:ab:04:d3:89:1b:08:26:f0:a8:3e:53:d7:38:7e:71:
f1:da:20:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:59 2023 by rpki-client on console-ams.rpki-client.org