Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/civZvPD6GlUiNfENhdwGMiwFKG8.roa
File: civZvPD6GlUiNfENhdwGMiwFKG8.roa (raw, json)
Hash identifier: arOuROlkjvOZjFQpAj7TJN1tCNe/Zxfw5vsXSM+yRP4=
Subject key identifier: 72:2B:D9:BC:F0:FA:1A:55:22:35:F1:0D:85:DC:06:32:2C:05:28:6F
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01891C16E8481D0C5117D62C86EC2EDF15EE
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/civZvPD6GlUiNfENhdwGMiwFKG8.roa
Signing time: Mon 03 Jul 2023 14:10:10 +0000
ROA not before: Mon 03 Jul 2023 14:10:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41095
IP address blocks: 5.105.247.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Jul 2023 07:58:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1c:16:e8:48:1d:0c:51:17:d6:2c:86:ec:2e:df:15:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jul 3 14:10:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=722bd9bcf0fa1a552235f10d85dc06322c05286f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:4d:c1:1a:b0:a7:59:12:e7:4e:c4:e8:96:01:
a1:2b:fb:26:38:85:df:21:ee:0b:ee:e3:94:86:23:
9e:0d:6e:8f:03:42:2a:a2:28:e9:43:3d:88:5d:8a:
33:fd:96:b6:a9:fc:cf:76:71:9f:ec:5b:2b:c1:dc:
85:36:3f:0e:7b:fa:36:97:d0:92:da:1e:7f:29:05:
77:ae:9a:0b:66:43:2d:63:b3:9a:48:f3:a2:67:93:
22:22:4c:62:37:17:7e:54:9d:9d:35:9c:96:b0:29:
44:64:b6:9d:53:c9:ce:72:21:06:72:28:3a:6d:6d:
d4:bb:90:40:2f:1b:5f:d2:56:42:92:7d:f1:df:21:
92:43:07:d0:12:17:c1:cb:1d:05:9f:a3:59:fb:05:
c6:d6:e8:a3:6f:99:50:a2:ee:a7:44:a8:a8:f8:02:
47:f1:e9:61:e7:49:f3:c7:4f:ec:63:78:b5:48:13:
59:17:bd:fc:3a:29:ed:03:83:c0:a9:f6:b4:a2:bc:
df:8a:84:af:0b:f5:ca:a4:fa:89:ee:a0:76:bc:15:
f1:2e:7f:c7:8d:c4:81:ee:2f:ef:32:ef:72:e8:54:
4a:ac:18:76:8a:df:52:92:e9:4c:c3:e5:d8:bf:c2:
dd:05:06:ea:79:f0:b4:9d:d5:ea:15:be:59:19:6f:
e0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:2B:D9:BC:F0:FA:1A:55:22:35:F1:0D:85:DC:06:32:2C:05:28:6F
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/civZvPD6GlUiNfENhdwGMiwFKG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.68.0/24
5.105.247.0/24
Signature Algorithm: sha256WithRSAEncryption
97:1a:86:df:64:46:d5:64:28:89:b5:bc:ba:12:55:3c:b0:a7:
84:5d:ea:66:04:b3:4e:82:50:9d:0c:74:b4:73:fe:f3:e0:61:
30:06:9b:af:36:53:a6:45:fb:2f:29:72:07:9e:2e:1b:f4:7b:
ff:d7:ab:64:21:b5:9d:d5:06:d5:98:35:0d:89:f1:d6:43:66:
ec:b6:1a:a1:2c:62:bf:42:8c:23:27:fd:66:ef:c2:f5:95:af:
b1:2c:bb:47:af:dc:72:74:a9:04:71:52:ef:6f:72:c9:94:c7:
56:b8:e1:9b:4f:01:f6:b1:d9:02:60:b3:3c:fb:80:14:9f:dc:
27:6e:e7:fa:f3:76:44:e1:c4:a5:7c:61:7f:2d:b9:b4:c1:98:
3f:91:92:eb:31:a0:26:d0:e9:f2:df:66:a2:55:f0:7b:6b:b9:
60:3f:97:24:d5:b3:ea:ae:4d:9f:98:42:2e:73:a2:28:ee:25:
55:4a:13:d0:0b:8d:a1:0e:c4:f5:03:37:6e:af:8f:b5:6c:2e:
53:c2:6e:17:d3:35:c9:13:b8:d3:bf:ff:1a:71:50:ad:44:69:
7c:37:ba:0f:ce:88:27:65:d4:8a:81:88:b0:ab:b6:06:52:ff:
78:50:e6:ea:9c:1b:64:9b:f9:7a:2d:6c:ab:6f:80:25:ff:04:
c8:b2:b4:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:28 2024 by rpki-client on console-fra.rpki-client.org