Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/NslJij7HXPKeEueX9shSTl-yq-c.roa
File: NslJij7HXPKeEueX9shSTl-yq-c.roa (raw, json)
Hash identifier: +AdPtIbYAIxD+EKEtrQ1GwUASJaB5+tKGTujrG7qQh4=
Subject key identifier: 36:C9:49:8A:3E:C7:5C:F2:9E:12:E7:97:F6:C8:52:4E:5F:B2:AB:E7
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018C8BD988EC97CE3D8257B7F0F3707C4004
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/NslJij7HXPKeEueX9shSTl-yq-c.roa
Signing time: Thu 21 Dec 2023 10:08:58 +0000
ROA not before: Thu 21 Dec 2023 10:08:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12658
IP address blocks: 5.134.86.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8b:d9:88:ec:97:ce:3d:82:57:b7:f0:f3:70:7c:40:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Dec 21 10:08:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=36c9498a3ec75cf29e12e797f6c8524e5fb2abe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:6a:5d:c5:b4:4b:4a:3b:d4:3b:d8:27:ff:a4:
9b:47:e8:e4:25:56:d4:09:63:11:1e:64:89:6e:77:
98:ea:8c:0a:38:2b:c3:6b:38:53:65:5c:62:0c:16:
75:fe:9c:fa:59:f7:f1:4a:b6:ee:3d:a5:ba:41:fd:
0d:5c:e2:c7:16:3b:41:74:57:d3:7a:d7:5d:ed:95:
a0:5d:aa:d1:0f:1f:6d:79:ca:19:55:08:2f:40:1b:
c8:e4:a8:e4:f4:47:d2:e6:11:21:d8:16:77:5d:27:
83:ae:27:56:fe:36:75:71:40:1e:bb:b8:80:b1:c8:
47:d9:b4:02:ee:22:82:35:96:58:86:09:56:71:e5:
ed:9f:7b:52:ac:0b:06:ab:70:58:0a:d8:43:f8:94:
5a:04:56:b7:7b:09:21:da:77:f5:0a:4f:95:92:a0:
8c:cc:b2:1b:39:a4:45:8d:f4:2c:41:0d:70:3b:a8:
4d:5a:fa:85:90:60:1c:b9:09:19:ae:38:2d:67:75:
3e:37:e2:e1:5a:8b:44:7e:17:1a:82:06:83:de:06:
4a:2b:49:b5:5d:d2:fc:4c:a0:1a:52:34:de:f1:2e:
b5:d7:c8:cf:02:49:c7:cb:2f:25:af:f1:4e:25:36:
69:9f:d8:93:de:36:52:ab:e0:98:b2:c7:09:fd:cb:
2f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:C9:49:8A:3E:C7:5C:F2:9E:12:E7:97:F6:C8:52:4E:5F:B2:AB:E7
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/NslJij7HXPKeEueX9shSTl-yq-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.86.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:0e:c8:1d:b7:6f:a9:1f:9b:76:ef:d7:02:0d:f7:23:d7:d1:
dd:46:ad:3e:0c:42:13:55:54:d4:dd:8a:d5:a5:f8:59:14:2e:
03:05:2a:67:0e:dd:d9:39:47:9e:95:50:7a:23:56:9a:d4:4e:
95:e4:25:ff:3a:6c:c5:80:c3:c1:e2:75:b6:67:1d:b4:86:b3:
ec:72:5a:89:77:a3:e2:fe:54:49:93:ad:ea:71:61:ce:d9:3b:
26:1e:84:c2:fe:be:43:cc:be:3b:dc:b7:c5:71:c3:95:96:71:
8f:ec:7f:b9:01:4f:7d:bf:e7:b1:74:91:24:f0:20:dc:2e:49:
d3:89:ea:13:f7:c2:92:9d:ba:81:09:e0:e7:66:3c:fb:72:42:
f7:86:da:38:26:d9:73:48:20:6a:ca:f5:ff:c4:2f:90:ac:ca:
00:06:4e:da:78:0f:21:31:f8:3c:4c:f6:09:66:98:7f:d4:c2:
c5:9e:81:ad:f8:aa:0c:c5:07:7f:7c:74:82:d2:b5:69:dc:13:
aa:dd:9d:c0:c4:58:8d:44:e5:fa:da:39:7e:d8:2e:ea:a8:a5:
ec:3a:ea:e5:f3:b3:f6:a5:0f:60:88:35:00:64:a8:b2:64:a2:
e2:a5:0d:ec:c5:d6:32:2a:62:35:55:6d:59:93:9d:68:62:a7:
d8:61:7f:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:49 2024 by rpki-client on console-fra.rpki-client.org