Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/nVPdjO2KOX9H1cdrPPLpE_etxLM.roa
File: nVPdjO2KOX9H1cdrPPLpE_etxLM.roa (raw, json)
Hash identifier: 99yuimU281BVmJCQxJ57hs9alh+jU00tesWNXe2BjrY=
Subject key identifier: 9D:53:DD:8C:ED:8A:39:7F:47:D5:C7:6B:3C:F2:E9:13:F7:AD:C4:B3
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01889AE1D98F893EA290A76AD0202B919924
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/nVPdjO2KOX9H1cdrPPLpE_etxLM.roa
Signing time: Thu 08 Jun 2023 12:01:12 +0000
ROA not before: Thu 08 Jun 2023 12:01:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204372
IP address blocks: 5.105.2.0/24 maxlen: 24
5.105.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9a:e1:d9:8f:89:3e:a2:90:a7:6a:d0:20:2b:91:99:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jun 8 12:01:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d53dd8ced8a397f47d5c76b3cf2e913f7adc4b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f1:92:68:12:ad:1c:35:e5:9e:9a:2f:f5:3a:
98:18:4f:b5:c1:b0:17:50:6c:97:b6:5c:ec:17:0b:
9f:89:4a:ba:6a:20:ec:b9:63:79:d7:44:2f:96:8c:
05:1e:a6:bd:91:c1:da:15:13:e6:a4:06:b6:2e:7f:
d8:94:c6:9e:31:c1:e8:3a:a8:aa:6c:41:d8:67:50:
a0:40:da:aa:2a:f6:89:a9:ae:e1:e5:dc:2b:db:65:
c8:06:41:d8:e7:c2:a7:0b:a3:34:8b:23:f8:3e:c1:
96:a9:94:ec:4e:90:61:f3:42:d5:6f:10:79:5a:3b:
35:93:51:b6:53:d2:cc:ae:b9:ee:dc:d7:7c:ff:aa:
8d:61:dd:42:b5:bd:9b:5d:17:53:0c:0d:9a:6c:67:
f7:f0:db:3a:45:d0:59:8a:93:5e:48:51:20:a7:65:
09:40:8d:28:d5:a8:85:70:e8:1c:c7:0e:c9:3a:e5:
44:2b:87:f9:3b:3c:96:44:9a:29:aa:d8:53:ae:ae:
b4:75:e1:94:00:3c:aa:72:0d:df:89:02:16:67:67:
f3:66:f5:48:b6:29:cc:1b:d7:1b:87:e8:d1:26:34:
a6:ba:f6:20:f9:8f:19:59:31:cc:f7:2d:6f:bc:cf:
c4:0b:04:fc:1f:80:de:d8:30:1b:92:04:9e:73:aa:
3b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:53:DD:8C:ED:8A:39:7F:47:D5:C7:6B:3C:F2:E9:13:F7:AD:C4:B3
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/nVPdjO2KOX9H1cdrPPLpE_etxLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.2.0/23
Signature Algorithm: sha256WithRSAEncryption
d2:5c:11:5b:0c:de:d6:ca:e1:15:97:05:b0:fa:b8:28:bb:75:
d4:b9:81:49:9e:88:60:30:a4:8d:9d:c9:c1:32:1f:2a:9c:b7:
71:d0:f1:b7:3d:26:32:eb:5d:a1:3e:55:a5:b1:5c:9f:08:1f:
b3:87:67:78:b2:8d:1a:5d:54:61:39:0f:5d:b2:3a:0f:82:fc:
93:1b:06:0b:79:60:b0:e8:de:3b:51:0a:34:e6:f8:ab:98:d5:
5a:d6:29:50:22:a0:ea:30:8e:46:ec:d6:0f:01:08:11:c5:fc:
c4:26:5a:33:1b:30:5b:33:e7:be:68:c0:b1:0e:78:6b:56:86:
4f:8e:2a:02:78:b9:33:b9:9d:85:35:11:44:67:52:5e:54:e5:
e8:16:49:e4:00:24:f8:8f:51:05:f1:7d:ad:d7:0d:94:cf:06:
43:ad:29:12:ac:98:2a:61:e5:98:84:04:9e:e7:d1:80:88:7e:
3a:28:9b:cb:a6:0c:cd:5b:64:d5:bf:b8:14:bd:c7:50:d1:85:
e5:49:5f:0e:5f:c7:82:2d:c0:0c:e8:bf:00:4b:b6:8c:54:5d:
24:5a:3d:ae:93:32:df:9f:cd:c7:d0:18:b2:91:28:ad:22:a8:
95:ba:76:e7:a1:75:6c:ea:05:17:93:f2:03:8b:52:76:e9:37:
c3:98:6c:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:01 2023 by rpki-client on console-ams.rpki-client.org