Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/lDZln0qDhkmD_pprPyku45F0vSk.roa
File: lDZln0qDhkmD_pprPyku45F0vSk.roa (raw, json)
Hash identifier: h3R4/9D5U/T+ddbdjvMLPDTufO1iyjNeLH6AUs1fUsY=
Subject key identifier: 94:36:65:9F:4A:83:86:49:83:FE:9A:6B:3F:29:2E:E3:91:74:BD:29
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01856BE5B2FDAED7C73DD3A57A578DC2A6B3
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/lDZln0qDhkmD_pprPyku45F0vSk.roa
Signing time: Sun 01 Jan 2023 05:54:53 +0000
ROA not before: Sun 01 Jan 2023 05:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203639
IP address blocks: 5.105.14.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:e5:b2:fd:ae:d7:c7:3d:d3:a5:7a:57:8d:c2:a6:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jan 1 05:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9436659f4a83864983fe9a6b3f292ee39174bd29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:8b:82:bb:5d:79:7a:b9:fa:dc:38:74:b8:01:
1a:38:d7:e0:f0:a6:59:8c:f9:e5:0c:04:a7:10:cf:
b2:22:c4:02:92:7d:0b:1f:db:b1:5f:25:5c:3d:7a:
54:22:7b:5d:f6:8e:80:7e:a6:bc:19:bb:bd:61:eb:
00:63:e5:23:f5:c0:45:96:b0:c3:13:42:5d:c8:a4:
8f:21:10:7c:97:97:99:32:ac:1e:bd:cd:c9:4f:b5:
65:42:a5:d7:07:9c:1a:86:f2:f8:46:0a:c3:83:c3:
36:5a:21:54:b1:a8:47:ba:a5:17:89:06:d7:46:24:
f6:59:43:44:f4:1a:5a:d3:99:38:48:85:fc:9a:24:
d4:8c:ff:2a:24:0e:5e:0c:be:dd:db:4d:8c:a4:e0:
16:29:fb:be:d1:4b:ea:a7:f2:8f:d6:ae:ec:ea:5b:
8d:13:42:fe:b9:d2:01:5d:3f:be:5b:f4:d2:7e:0c:
d3:88:2b:16:6c:46:83:5b:35:fc:36:a6:c2:ad:d9:
a9:2f:0f:9a:62:84:f1:13:e1:35:1c:d8:79:b4:51:
1d:f3:da:13:19:d1:15:75:43:77:2a:0a:aa:d3:cd:
82:ce:19:a2:25:f1:f9:f4:e3:47:4f:9b:08:9e:f2:
1e:e9:01:ec:7b:22:cf:ee:10:f1:a6:16:70:4b:b8:
fc:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:36:65:9F:4A:83:86:49:83:FE:9A:6B:3F:29:2E:E3:91:74:BD:29
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/lDZln0qDhkmD_pprPyku45F0vSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.14.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:29:45:fd:0d:db:2b:57:c0:f7:51:0f:13:8e:13:e9:1f:c6:
23:02:04:bd:a1:7d:12:0f:de:bd:49:6e:d2:49:ce:f2:e8:92:
e9:c2:db:5b:40:a3:8d:b6:51:8b:b3:8c:07:09:5f:48:23:bf:
a3:bc:cf:09:e4:ad:de:9e:8b:e6:88:43:e5:f3:d1:be:25:31:
60:79:ec:6d:47:58:ce:85:2e:f3:8b:51:94:d5:d1:72:05:be:
8a:b0:b4:cd:7b:49:e8:ba:ff:59:34:0f:32:c3:c8:bf:e1:d6:
6c:52:38:69:53:c0:55:71:b2:5a:80:65:a0:6e:90:1c:f3:52:
47:39:b8:c0:63:80:5d:d0:c8:7f:49:e8:86:b3:4d:e3:b6:18:
7a:c3:04:8f:3f:22:03:06:f4:80:6c:dd:de:85:84:1e:ea:41:
e0:e3:93:61:fa:53:88:03:d4:f0:43:fe:a8:f7:0c:c3:71:36:
0a:b5:d9:05:21:71:95:97:61:32:d7:fe:45:f2:60:de:3e:8b:
0e:70:71:31:cf:31:03:0e:ed:d8:4c:f7:99:04:0d:76:aa:01:
56:fa:a0:c0:43:51:7c:b0:24:44:95:9d:63:0c:b3:7b:07:87:
dd:9c:b4:46:82:d5:51:ed:ee:9c:5f:b0:e0:f6:5a:55:a6:e7:
ea:9f:21:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:01 2023 by rpki-client on console-ams.rpki-client.org