Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/QfWEyD5n0QMAh4wE_l-leQuR1y4.roa
File: QfWEyD5n0QMAh4wE_l-leQuR1y4.roa (raw, json)
Hash identifier: KNS696DW8JcgI4YR0iVcyIDhjcCxzDAroRxl7H2FenA=
Subject key identifier: 41:F5:84:C8:3E:67:D1:03:00:87:8C:04:FE:5F:A5:79:0B:91:D7:2E
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0188A67BD0589C322F8CCA493E3C559408E9
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/QfWEyD5n0QMAh4wE_l-leQuR1y4.roa
Signing time: Sat 10 Jun 2023 18:05:12 +0000
ROA not before: Sat 10 Jun 2023 18:05:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204372
IP address blocks: 5.105.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a6:7b:d0:58:9c:32:2f:8c:ca:49:3e:3c:55:94:08:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jun 10 18:05:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41f584c83e67d10300878c04fe5fa5790b91d72e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d2:60:29:a2:e5:bd:39:3d:95:cf:46:81:96:
f9:04:4d:cc:1c:b9:f1:0e:a1:a0:47:af:33:05:0b:
83:64:19:a1:bd:64:04:a5:6f:c6:4b:0f:73:18:79:
8a:c5:b9:66:f9:53:de:77:f7:fb:c4:4a:0c:42:8d:
38:79:9c:58:45:6c:84:13:7f:2f:90:95:32:68:f9:
e7:17:bb:a7:10:bb:f9:7d:b7:57:ee:56:19:a1:0a:
42:52:3e:40:0c:af:2b:32:3f:b0:a6:75:39:c6:1f:
4a:80:24:60:dd:fe:86:7f:da:c8:1b:79:e4:98:c9:
8b:15:8b:e3:f6:82:e1:ad:6e:cf:d8:8c:62:eb:8a:
10:4b:23:95:40:18:7b:2d:2c:24:6e:4f:fd:dd:3b:
f9:22:d4:33:3d:7e:39:fa:b8:aa:49:25:f1:27:9a:
6d:d3:49:b7:ed:59:29:2a:45:74:4f:ed:ef:9b:47:
f5:83:66:c3:91:68:85:bb:1a:f4:a6:89:ed:92:b3:
54:46:0b:e0:8e:c5:a4:b6:3b:9c:6e:b3:3a:cf:36:
de:9d:a5:b8:dc:f1:3c:55:e0:4e:86:64:1f:0f:12:
0b:d2:ce:1e:df:6c:06:f2:9f:49:95:34:46:97:23:
03:b2:1e:bf:68:b0:e0:3b:16:a9:48:95:33:3c:13:
1a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:F5:84:C8:3E:67:D1:03:00:87:8C:04:FE:5F:A5:79:0B:91:D7:2E
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/QfWEyD5n0QMAh4wE_l-leQuR1y4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.3.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:29:61:c2:a2:dc:fd:f1:01:4b:a4:2f:5f:89:30:d9:dc:cb:
77:f6:eb:a9:1a:71:49:50:a2:73:c5:d9:72:2e:8b:31:c3:71:
de:fc:72:e4:af:4f:ae:e4:42:c4:97:cb:19:ca:02:c0:7f:54:
13:d4:53:e9:9a:79:08:34:fd:3f:cc:bd:90:ee:b6:63:d9:c3:
8b:dc:bd:f4:65:45:b3:56:55:5f:ab:2f:03:07:58:25:4f:09:
cb:58:26:0b:e4:dc:5a:33:a5:05:d6:4e:ba:7a:08:1a:ef:d7:
b8:f4:9c:6e:02:c1:e6:60:35:97:28:92:a5:4f:af:24:e1:72:
25:cf:81:8c:ba:28:cc:59:f4:1b:de:6a:c8:5e:a0:ec:88:37:
da:94:2c:fc:d5:b7:15:3a:f4:c1:4e:cd:86:fc:a4:d0:8f:7c:
90:17:18:40:86:88:24:19:3c:75:29:58:94:16:f7:e0:e2:3e:
3a:21:dd:94:95:b8:25:8c:be:9b:1e:ea:67:ca:6a:e0:cf:42:
34:77:ca:96:b2:8d:10:77:0f:b6:a5:f7:61:da:03:52:dd:cf:
a7:94:5b:a7:33:4f:9c:fc:c8:86:2f:0b:25:e9:f4:96:c7:eb:
3c:be:fa:7e:f5:82:87:14:d8:ef:f2:33:5c:fe:0a:8f:7e:db:
e3:59:31:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:00 2023 by rpki-client on console-ams.rpki-client.org