Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/IivbfZsJxWTARLtSTfmiHwoIKls.roa
File: IivbfZsJxWTARLtSTfmiHwoIKls.roa (raw, json)
Hash identifier: VPIQSoA7Q8YUSUz9K4EhFkQXk43PxSlacqMq2VkxcZk=
Subject key identifier: 22:2B:DB:7D:9B:09:C5:64:C0:44:BB:52:4D:F9:A2:1F:0A:08:2A:5B
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 018A3130DA600E5EAE6CC9221871DDF6C926
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/IivbfZsJxWTARLtSTfmiHwoIKls.roa
Signing time: Sat 26 Aug 2023 09:33:19 +0000
ROA not before: Sat 26 Aug 2023 09:33:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207459
IP address blocks: 5.105.4.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:31:30:da:60:0e:5e:ae:6c:c9:22:18:71:dd:f6:c9:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Aug 26 09:33:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=222bdb7d9b09c564c044bb524df9a21f0a082a5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:98:31:b3:26:cf:b3:4c:b9:b9:32:cd:0a:29:
62:ae:25:68:73:f9:d2:e3:a3:05:75:f5:a5:a4:c6:
8f:f5:55:fd:57:dc:81:6b:0c:a0:11:8d:06:a1:c3:
3e:15:5c:32:12:cb:7d:e5:6c:c9:cb:0f:38:76:72:
66:33:1c:5a:87:a5:55:72:75:61:3a:c6:87:ae:53:
55:e0:11:d8:89:42:4b:2f:72:8f:3c:73:08:73:44:
da:12:ef:58:d5:5b:9d:1d:83:52:e4:4b:d4:40:56:
b2:15:f4:b5:76:02:ff:90:ad:c4:55:af:61:ab:44:
c2:41:3c:47:fd:27:12:36:d3:02:e9:a8:7b:db:96:
cd:a4:ae:21:cf:3d:f1:20:ba:42:b0:ef:a5:bc:50:
69:44:c5:8a:fe:6c:7c:37:4c:35:29:ce:1a:ba:9f:
7f:41:94:7b:64:72:63:96:d3:2a:9a:58:f5:92:22:
83:70:80:a3:0a:ac:bf:82:ff:a1:fd:c8:fe:bf:b2:
53:34:ca:bd:25:1f:8d:c6:98:8b:5d:4c:cd:c3:75:
c5:1b:6a:2a:b9:3e:50:3b:08:93:e0:42:43:81:b5:
52:ce:c2:48:fb:3b:2f:c4:af:73:8c:e7:2e:1c:45:
e5:ba:c6:5c:63:6e:f6:51:5f:76:46:01:ff:89:91:
d0:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:2B:DB:7D:9B:09:C5:64:C0:44:BB:52:4D:F9:A2:1F:0A:08:2A:5B
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/IivbfZsJxWTARLtSTfmiHwoIKls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.4.0/24
Signature Algorithm: sha256WithRSAEncryption
41:d6:26:c5:aa:88:2f:46:c1:9e:92:8d:1c:1c:ba:16:4d:81:
14:9e:80:85:78:4e:f0:1c:64:93:f4:42:d0:2e:2f:46:5f:b0:
7d:48:95:3b:05:d4:6a:d7:61:bc:c0:3f:af:48:a6:36:60:22:
20:89:17:fe:12:1c:09:6d:ad:a1:75:c3:8f:e3:65:9e:c2:dc:
fa:d4:86:73:17:51:24:00:6a:69:46:25:33:da:73:cc:85:a7:
06:ba:5c:40:e4:1a:3f:b4:47:01:a0:54:a5:ac:22:8a:5d:5f:
76:95:a2:55:af:07:25:81:95:be:8f:1f:27:db:bd:d8:94:15:
23:cb:37:3e:df:93:ef:4a:eb:4d:75:55:67:71:e2:84:ea:2f:
4a:ea:45:55:3f:b1:5d:5e:68:0e:d1:16:6d:08:6b:a7:b1:a0:
37:71:c4:b2:72:c8:8b:fc:3a:b1:6c:7a:96:28:ed:fa:08:f1:
4f:3f:1c:d9:5e:c0:a9:75:4a:db:71:39:d9:70:0d:74:80:71:
21:0b:cf:dd:22:f6:98:84:30:e4:44:f8:76:d7:04:4a:90:f5:
96:1c:88:1f:7b:9c:5b:2b:7f:b0:c9:d5:2e:17:60:a1:3f:57:
e7:ac:ef:6f:06:5c:d2:42:91:05:c2:13:cd:a7:56:21:78:75:
3c:52:11:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 19 11:03:39 2023 by rpki-client on console-fra.rpki-client.org