Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/mtQDK-bSMWCJvr7y2jQcev869RI.roa
File: mtQDK-bSMWCJvr7y2jQcev869RI.roa (raw, json)
Hash identifier: 7Bx2TzUNTO/Ww1QOyZhkzhujorbxJm+MjagV7DpqWeY=
Subject key identifier: 9A:D4:03:2B:E6:D2:31:60:89:BE:BE:F2:DA:34:1C:7A:FF:3A:F5:12
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01888D08EB01D0FA10019EC33DB89C74AF0B
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/mtQDK-bSMWCJvr7y2jQcev869RI.roa
Signing time: Mon 05 Jun 2023 19:29:11 +0000
ROA not before: Mon 05 Jun 2023 19:29:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3507
IP address blocks: 5.105.49.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8d:08:eb:01:d0:fa:10:01:9e:c3:3d:b8:9c:74:af:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jun 5 19:29:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ad4032be6d2316089bebef2da341c7aff3af512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f9:e0:50:47:73:fe:4f:a8:57:d4:4a:5d:ea:
7a:37:76:91:2f:d9:37:e2:68:6a:d5:35:7c:40:ca:
09:5b:21:ca:d0:1b:4c:51:fa:84:f0:ad:8b:59:be:
64:a2:4b:32:99:3e:63:1d:19:dd:a5:d7:01:23:76:
fe:5c:79:d5:5e:4f:1d:c7:9b:c7:41:f2:fe:f8:a0:
2f:2b:24:b3:4e:18:f6:34:3b:e4:ad:dc:23:99:27:
91:62:34:da:6b:96:bc:44:53:7b:ea:77:9c:3c:9c:
22:64:fd:db:83:f2:4d:31:da:14:61:ac:64:e5:b3:
1a:84:30:d4:40:46:1c:1a:dc:6c:56:5c:1f:a1:1c:
bd:9c:e9:21:53:12:4c:10:5d:12:d3:63:f6:55:22:
33:44:51:16:93:7c:84:1e:e5:f1:4a:8c:4e:fa:9d:
fd:9f:dc:62:68:02:fb:0c:b0:c8:79:51:43:a1:4d:
9f:4c:b4:db:56:4d:54:bc:30:86:82:b2:49:9f:fd:
f4:f8:03:91:ea:3b:8b:dc:36:38:dc:79:4b:4f:5d:
9d:64:d5:f6:e6:34:c9:bd:23:c7:a1:d6:b0:24:0b:
5a:93:93:50:10:d3:b1:18:67:f5:15:ca:21:34:a6:
6c:3a:a5:b8:b1:54:ed:ac:fc:af:6f:82:3a:b3:12:
45:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:D4:03:2B:E6:D2:31:60:89:BE:BE:F2:DA:34:1C:7A:FF:3A:F5:12
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/mtQDK-bSMWCJvr7y2jQcev869RI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.49.0/24
5.105.69.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:b7:00:2a:ef:df:f5:a8:d3:34:e3:44:50:80:d3:aa:7d:ca:
d9:ce:51:73:34:4b:ef:40:d7:bf:2f:32:5d:d1:3d:ce:d6:79:
ff:5a:4a:8f:33:40:7a:c7:88:31:74:e9:d5:6d:89:a5:a0:49:
a3:8a:55:b1:93:54:b2:53:93:fd:2e:a9:6e:74:29:f2:3a:61:
a5:a1:84:60:ed:c4:4e:aa:eb:92:73:47:7a:8c:c8:d9:c9:e9:
86:32:98:2f:18:a5:5c:b7:9c:02:cf:86:85:d8:ef:97:34:8b:
b4:b4:33:0f:31:ad:81:07:59:bd:5c:55:4d:99:e5:ff:f0:7c:
a4:24:9a:00:d8:66:83:be:27:56:58:f5:21:ae:fe:4e:63:72:
c6:24:90:ae:f8:69:47:23:1c:2a:6e:6c:a0:8e:6f:7c:c4:1b:
cc:95:bc:07:7b:e0:7b:35:5b:37:23:b1:a1:10:27:fe:5b:a3:
50:1e:d8:b7:41:be:1c:44:3f:61:ef:e1:0d:e6:ff:01:78:e7:
60:bf:f6:8a:02:68:d8:15:f7:c8:9c:31:b6:98:d5:19:f6:5d:
f8:1f:62:8a:ed:c6:63:10:ef:07:e4:c1:05:76:0d:ed:d9:18:
a4:1e:78:39:8f:93:e3:bc:11:d1:01:56:e0:c3:33:6a:95:23:
34:e0:21:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:19 2023 by rpki-client on console-fra.rpki-client.org