Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/pxjAF8KniH9ZjPV75FtHcMdxyHs.roa
File: pxjAF8KniH9ZjPV75FtHcMdxyHs.roa (raw, json)
Hash identifier: TRT2z6V56khP2qLNkcA5qdSyzUxuUPRpC5IzakPJgns=
Subject key identifier: A7:18:C0:17:C2:A7:88:7F:59:8C:F5:7B:E4:5B:47:70:C7:71:C8:7B
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018B6D0EEAB374FFC3C30AE8095EA8063197
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/pxjAF8KniH9ZjPV75FtHcMdxyHs.roa
Signing time: Thu 26 Oct 2023 17:36:15 +0000
ROA not before: Thu 26 Oct 2023 17:36:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12658
IP address blocks: 5.134.86.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6d:0e:ea:b3:74:ff:c3:c3:0a:e8:09:5e:a8:06:31:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Oct 26 17:36:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a718c017c2a7887f598cf57be45b4770c771c87b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b2:4f:57:ba:5b:2e:33:70:6f:88:24:7c:00:
92:04:fa:b2:16:14:99:47:2a:93:7c:7e:c3:c5:1b:
c7:d9:d3:75:20:a7:81:72:99:1e:41:65:6d:be:1a:
1a:3d:51:b4:8c:14:94:ea:fc:17:04:da:1f:d0:3e:
48:84:b3:d5:ca:14:5d:25:6a:d8:43:39:cd:11:51:
91:41:84:77:07:3e:21:e4:cd:2c:65:66:66:35:12:
c0:b6:b1:b5:58:71:41:6f:f6:2a:82:23:eb:9b:35:
4c:02:83:4f:36:28:49:47:e8:1f:ec:f0:ef:b2:e1:
c3:94:da:90:7b:a8:97:4b:b1:c0:ef:c8:cf:f0:2d:
db:33:7f:52:4c:85:a6:8c:9d:21:32:b8:96:1f:24:
2f:87:35:d4:24:bf:b3:2c:56:7d:a6:cb:52:bf:ae:
a0:8d:70:fe:c0:f8:61:35:2b:9d:ea:97:9b:85:8b:
f3:77:1f:86:0b:04:3a:53:df:87:89:fc:2b:55:38:
fc:d4:5e:9c:6f:e7:e2:f7:0e:6c:a7:4f:3e:01:f9:
3e:ea:fb:8c:12:65:6f:d9:2c:dc:0c:33:eb:15:0a:
f3:f8:be:ce:80:98:61:c6:76:a0:7e:c4:e7:6c:99:
74:14:ae:f6:1f:41:eb:90:c6:7f:b3:e9:82:03:c3:
19:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:18:C0:17:C2:A7:88:7F:59:8C:F5:7B:E4:5B:47:70:C7:71:C8:7B
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/pxjAF8KniH9ZjPV75FtHcMdxyHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.86.0/23
Signature Algorithm: sha256WithRSAEncryption
31:1f:9e:51:d9:e5:6d:ef:3c:0b:dc:02:63:a5:6c:8c:c5:0d:
18:b3:8d:4d:f3:5e:b1:0d:5e:a5:dd:c7:b0:6a:07:38:7d:71:
11:db:4a:90:d3:17:1e:82:3c:76:2c:dc:4e:ac:cf:a0:82:67:
65:2e:ff:51:05:01:a5:4c:64:e1:cd:e7:9c:d9:7b:58:1d:c7:
b7:db:0e:06:c2:21:74:ce:f1:3e:d1:4f:c2:f5:68:5c:d6:37:
c9:1d:26:9c:a7:a9:61:54:71:cb:3c:54:3c:bb:0e:3e:73:37:
ca:42:79:88:23:af:26:0e:c4:30:1a:6a:37:63:3e:47:09:8d:
ad:d5:02:6a:f3:a8:8d:67:2f:11:9a:d1:c8:fc:61:30:ad:7b:
34:ba:20:b4:43:a1:67:b3:77:03:c4:f4:6d:97:12:eb:5d:e6:
a1:6c:22:ed:3f:53:24:79:ac:f5:eb:88:5f:79:21:70:5c:80:
ad:63:b0:b5:c3:e8:0e:f9:29:60:af:e5:0f:03:a3:ad:ca:d0:
aa:a7:cc:01:25:a1:55:8b:8c:1f:74:23:4b:4a:f7:2c:da:c3:
b1:64:c3:8f:6d:46:3a:a2:76:ca:65:29:4d:45:10:16:b9:b2:
e3:90:43:75:67:4a:fa:29:2d:40:08:19:1d:37:2a:0f:fd:06:
fb:f8:7e:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 14:16:20 2023 by rpki-client on console-fra.rpki-client.org