Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/SGXz1CvUMrJTPXFXo8vB6cXz9oA.roa
File: SGXz1CvUMrJTPXFXo8vB6cXz9oA.roa (raw, json)
Hash identifier: nVwzVItCC7h7KreGONMEvQadc8IB6ZrxsSiBHy3AKUA=
Subject key identifier: 48:65:F3:D4:2B:D4:32:B2:53:3D:71:57:A3:CB:C1:E9:C5:F3:F6:80
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01856BE5B0A23E05B53350D3F4AD2F946F58
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/SGXz1CvUMrJTPXFXo8vB6cXz9oA.roa
Signing time: Sun 01 Jan 2023 05:54:53 +0000
ROA not before: Sun 01 Jan 2023 05:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 5.105.23.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:e5:b0:a2:3e:05:b5:33:50:d3:f4:ad:2f:94:6f:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jan 1 05:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4865f3d42bd432b2533d7157a3cbc1e9c5f3f680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:30:9d:ef:15:20:58:6f:24:47:b4:5f:65:ca:
96:ab:f8:1f:9d:77:d8:b5:2e:3b:f0:83:a5:bf:03:
7d:1c:f6:48:7f:ab:ab:7e:86:e8:a8:3a:45:06:90:
d5:fc:ef:db:03:46:2a:92:3d:fd:11:54:c2:a6:e7:
77:d4:a4:7f:a3:49:0b:0c:1a:3e:71:6d:12:d9:08:
3f:af:08:f1:34:af:57:6c:4d:3a:b0:d7:a1:99:63:
d3:91:96:ef:70:fd:73:77:7b:3a:c6:85:48:aa:e8:
5d:cd:ff:d8:1c:45:b6:b9:cf:fc:21:3a:4c:2c:25:
cb:fe:4f:b3:81:c4:64:20:91:f1:f3:68:24:86:e0:
2a:e4:32:42:42:f7:63:2b:3d:6a:c4:a4:b6:63:89:
e3:f2:ff:e6:ef:c9:43:08:99:4a:36:15:9a:da:2d:
db:0f:05:76:76:74:56:2d:9a:b4:bd:e3:cb:8f:3f:
65:6f:c4:bc:e3:7a:56:dd:84:82:59:39:a6:0f:9b:
a6:31:01:54:5f:9d:60:3b:de:42:88:71:37:ba:4f:
ac:63:de:50:e1:5b:2a:70:00:d4:8e:24:34:4d:f5:
c7:91:e9:dc:75:26:1e:ca:ec:68:52:fb:35:39:07:
4f:4c:b7:f0:3c:4b:1e:24:5c:d6:92:e1:c3:c1:f1:
41:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:65:F3:D4:2B:D4:32:B2:53:3D:71:57:A3:CB:C1:E9:C5:F3:F6:80
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/SGXz1CvUMrJTPXFXo8vB6cXz9oA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.23.0/24
Signature Algorithm: sha256WithRSAEncryption
69:01:48:64:07:bc:7d:b4:e4:b0:2f:f9:17:2e:c0:60:14:9c:
ed:26:e0:e5:3e:27:83:b7:c3:a2:34:59:25:52:b6:84:83:c8:
56:47:73:73:bb:42:5c:43:9f:d1:f9:0f:9e:bc:08:98:f3:f4:
01:fa:37:f4:67:42:e8:30:27:55:f4:be:64:7d:15:3c:ca:96:
1a:fa:bf:74:ee:11:a6:78:60:54:c3:a6:e6:ad:7f:cd:7d:3a:
02:ba:0a:68:58:67:b4:d7:ce:24:62:25:53:64:5f:ed:c5:7f:
77:43:97:aa:44:21:0a:fe:21:41:54:56:af:e4:cf:f3:00:7c:
9a:15:09:0e:41:4c:a4:70:eb:53:4a:45:bc:ab:d7:55:82:7c:
3f:cb:01:aa:a5:cb:1c:7d:56:2e:51:00:84:bc:56:c7:d9:4f:
53:ee:b4:5a:82:0d:98:e1:9e:05:e8:5a:85:ec:ba:4b:6d:d4:
75:96:00:d0:59:f6:bb:9b:af:17:b0:d9:a1:67:59:95:62:b8:
d4:ce:5d:4c:97:37:c3:94:e9:e2:a9:9f:18:c0:cf:25:90:05:
bf:69:cd:38:93:be:6b:ff:4d:f1:55:d3:bc:b4:ae:74:af:61:
39:47:98:e3:70:e8:33:f5:b2:f4:18:02:48:8f:8e:f4:ca:cc:
92:06:09:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:00 2023 by rpki-client on console-ams.rpki-client.org