Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/aHJVZekA8455dhPmWf0LEygfZqI.roa
File: aHJVZekA8455dhPmWf0LEygfZqI.roa (raw, json)
Hash identifier: HjdBAGQvcJeMsXN3CIORmt+Gh5Jrr9XG612GOUV/zBE=
Subject key identifier: 68:72:55:65:E9:00:F3:8E:79:76:13:E6:59:FD:0B:13:28:1F:66:A2
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 018A5CC36857DE0395E86A375C6A44154D5C
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/aHJVZekA8455dhPmWf0LEygfZqI.roa
Signing time: Sun 03 Sep 2023 20:37:04 +0000
ROA not before: Sun 03 Sep 2023 20:37:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60117
IP address blocks: 5.105.85.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5c:c3:68:57:de:03:95:e8:6a:37:5c:6a:44:15:4d:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Sep 3 20:37:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68725565e900f38e797613e659fd0b13281f66a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:e7:fb:c9:a5:b4:7d:89:94:92:29:ef:0d:4b:
91:1d:83:99:63:d1:cb:c1:2d:e6:21:e6:bc:6a:d3:
a8:e9:7a:55:e1:45:36:f4:1c:66:50:5e:c0:87:b6:
43:7b:bc:33:c4:52:1b:b5:c9:f6:82:de:e6:ee:e5:
ff:75:e8:ca:73:e0:60:17:5a:e6:59:10:5e:ff:92:
13:ec:6c:75:b9:2a:e6:fa:e7:b2:ad:23:49:df:68:
b1:86:4e:e1:fd:7c:3a:25:bb:d1:e3:73:d1:38:a2:
0d:5e:fb:41:11:8a:6c:c7:15:32:f6:14:86:eb:52:
e9:a9:bd:4d:54:98:44:5c:6e:7e:8b:5e:f5:39:47:
e4:84:b3:4c:ec:4d:28:cc:28:01:40:82:70:c2:8d:
3f:f2:e0:a6:44:4c:cb:dc:8a:88:25:e7:a9:b9:91:
85:42:4b:30:d1:fd:7d:cc:ef:da:f9:c5:8d:ef:5d:
a7:92:70:a7:1f:a5:7c:8d:5f:e7:94:dc:0c:a3:07:
e3:9c:5b:3e:a8:e1:55:62:a9:87:3e:16:57:58:3e:
6b:d7:66:29:a1:45:dd:db:24:ae:00:3e:51:96:20:
e2:9d:2f:d6:97:1e:9b:1f:76:31:7d:22:75:81:8a:
5c:8d:4f:3c:9e:38:43:77:1f:6b:34:dc:47:47:d9:
5f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:72:55:65:E9:00:F3:8E:79:76:13:E6:59:FD:0B:13:28:1F:66:A2
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/aHJVZekA8455dhPmWf0LEygfZqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.85.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:35:cb:40:49:03:0f:39:5b:c2:da:79:59:00:cf:8c:3d:d4:
74:fe:c2:0f:9a:44:d9:91:aa:d2:60:ee:93:d9:9f:44:64:a9:
ba:9f:13:74:21:18:78:63:fe:d2:18:e3:c6:ed:a5:be:a1:08:
00:10:d6:f1:cc:b1:9b:e2:22:5f:46:b5:0e:8a:c7:05:88:98:
a6:df:26:fd:5d:3d:86:13:a8:3a:17:4a:5f:29:52:5b:3e:4f:
aa:64:ac:c7:ec:21:6e:25:3c:c9:44:47:48:8e:d9:3a:ba:ad:
1c:ff:be:43:0b:e1:e5:fd:11:55:33:6f:85:95:76:3b:45:6d:
b2:7b:e1:6f:99:22:4c:c0:0c:23:3e:89:0f:62:6c:00:bb:84:
99:c3:69:f5:0a:93:fb:86:7f:5b:b6:d4:62:1d:d0:3e:e2:ee:
c2:b7:28:3a:fb:7f:98:2b:45:21:54:c8:f2:fa:52:b5:30:91:
8c:39:d7:51:8b:53:18:b6:a6:cd:d0:37:0b:1d:ed:a4:0d:5d:
2a:a5:b0:99:ba:dc:ee:42:c4:d4:ff:bd:7f:85:3a:27:ec:28:
26:d0:19:b7:f9:33:57:21:7c:04:a6:77:c4:2c:69:64:a9:25:
7e:0d:c4:0b:c5:c3:d7:97:86:30:41:81:66:11:67:00:48:62:
7c:87:dc:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 9 18:33:32 2023 by rpki-client on console-fra.rpki-client.org