Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/JUMqdiJJdTPm37rxjdqAdpnKnI4.roa
File: JUMqdiJJdTPm37rxjdqAdpnKnI4.roa (raw, json)
Hash identifier: +fudmGLV4jBNZ5VVrvU7MFwtIs2V8hPNAmOHpT1P4YE=
Subject key identifier: 25:43:2A:76:22:49:75:33:E6:DF:BA:F1:8D:DA:80:76:99:CA:9C:8E
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01892A7EDCBED4E613E11417818F15B95554
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/JUMqdiJJdTPm37rxjdqAdpnKnI4.roa
Signing time: Thu 06 Jul 2023 09:18:24 +0000
ROA not before: Thu 06 Jul 2023 09:18:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 5.105.75.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2a:7e:dc:be:d4:e6:13:e1:14:17:81:8f:15:b9:55:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jul 6 09:18:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25432a7622497533e6dfbaf18dda807699ca9c8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ce:39:29:8a:a4:54:18:6c:c7:5c:9b:cb:bb:
5d:f1:2e:2f:37:2e:64:02:3d:9e:08:79:d8:ba:73:
c9:96:22:01:f4:19:75:2a:90:f3:2e:f8:f0:9a:b7:
d3:ef:79:1d:95:2e:3e:9e:86:f7:77:ee:20:6b:33:
cf:b0:60:c4:77:49:e7:65:b3:44:d1:b4:fe:22:d7:
ae:5e:04:76:3c:c1:8f:95:11:0b:80:81:dd:68:2a:
6d:38:8e:48:c6:42:d0:d5:ac:36:eb:e7:83:18:3a:
0c:b1:e2:28:8d:da:21:96:f0:01:44:7a:0c:77:75:
85:d6:a5:7d:fa:22:ed:2a:0f:df:ad:2c:dc:ca:62:
3a:ce:ec:54:74:a6:ae:93:0b:19:ca:c6:99:65:e0:
cc:6d:27:32:5d:b6:ca:66:3e:fd:96:ad:25:e3:8b:
f5:d6:3b:94:a3:e7:b4:47:0c:de:e7:6a:8f:6c:01:
9c:30:42:ee:3c:81:71:f7:3e:f8:41:bb:85:65:23:
30:9d:3d:80:95:74:a8:9a:ed:3e:cc:77:48:54:3f:
3a:de:8e:ff:9a:44:ad:5f:5b:21:df:ba:09:96:31:
c0:a4:a5:a7:48:c1:32:f3:6c:9f:66:e0:52:c5:e0:
4d:86:f9:f2:6a:22:70:96:ae:15:5d:0b:6b:08:df:
58:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:43:2A:76:22:49:75:33:E6:DF:BA:F1:8D:DA:80:76:99:CA:9C:8E
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/JUMqdiJJdTPm37rxjdqAdpnKnI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.75.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:a4:4e:16:fa:92:a3:04:d3:8a:3f:9f:cf:eb:4c:72:d9:45:
dd:59:3a:2d:32:53:fe:62:06:24:ca:d3:28:04:c3:3c:5b:cb:
9f:ba:e4:57:32:0f:d2:50:58:9d:09:4b:c7:73:7f:31:aa:a1:
0f:49:52:bb:05:18:ea:01:9f:f0:27:72:98:73:13:d2:d3:86:
dc:02:e4:4a:44:db:d1:7a:37:05:22:db:27:6a:08:b1:89:6f:
d3:ef:01:9b:6c:1c:3d:cb:eb:6a:36:b3:82:31:5f:b1:59:ba:
04:90:5f:ef:fd:10:60:ed:e7:bc:40:d9:37:a5:0e:72:82:cd:
e9:4c:f9:d6:76:6c:a0:00:59:46:b6:6c:9f:d0:40:f3:22:09:
70:57:39:96:80:b0:d9:75:53:be:58:df:7b:4f:13:78:e6:3e:
1c:e0:89:e7:71:5b:34:21:d7:ee:e2:ba:cb:db:30:8d:7e:f7:
98:c0:38:64:1f:2f:ad:f7:ba:cd:29:4a:94:50:f7:0e:66:0c:
cc:fc:28:55:15:54:20:b3:80:65:21:3f:66:62:c4:28:e0:a4:
87:01:d5:cd:a8:20:52:5f:57:fd:c5:0b:06:9f:03:b3:5b:af:
8e:71:bf:1c:9f:2e:8d:9b:3a:a0:31:e8:1e:1d:c4:fc:40:8a:
f9:53:88:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:59 2023 by rpki-client on console-ams.rpki-client.org