Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/siKqqV77O7E6h8wkldDekWBNqH4.roa
File: siKqqV77O7E6h8wkldDekWBNqH4.roa (raw, json)
Hash identifier: iz1X8G2ePSa0K7yDnym17F7MQgUta//pmfmdOQHHB9s=
Subject key identifier: B2:22:AA:A9:5E:FB:3B:B1:3A:87:CC:24:95:D0:DE:91:60:4D:A8:7E
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 01887137F362EFC4BB491AE2F3B20E9DEA8C
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/siKqqV77O7E6h8wkldDekWBNqH4.roa
Signing time: Wed 31 May 2023 09:51:12 +0000
ROA not before: Wed 31 May 2023 09:51:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 271812
IP address blocks: 181.41.153.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:71:37:f3:62:ef:c4:bb:49:1a:e2:f3:b2:0e:9d:ea:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: May 31 09:51:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b222aaa95efb3bb13a87cc2495d0de91604da87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c8:a8:93:33:4e:7e:eb:70:28:0d:f9:35:35:
2d:4e:fe:6b:79:ea:a3:49:f1:5d:b5:b7:fe:63:de:
43:07:69:43:a9:fa:d9:1f:f1:20:69:03:d8:67:50:
4c:38:1a:25:cb:03:92:95:f1:23:ad:d9:a6:ba:8b:
c5:f4:df:a7:50:3a:aa:d0:79:d1:f6:51:89:b5:ac:
6f:c2:43:f1:cf:21:a8:04:9c:97:39:26:4e:42:f3:
d0:1e:6d:20:76:67:32:88:2b:fd:50:e9:8a:2b:62:
a5:82:c2:5a:3f:d6:d4:be:2b:d5:6c:a5:b1:f9:28:
8b:9a:60:f2:23:8d:44:ae:57:d9:6f:99:d9:25:aa:
46:1e:69:14:29:3b:e1:3f:33:57:70:c0:10:a7:48:
02:62:d0:ab:31:76:97:ea:12:11:62:ab:f6:9c:6b:
f2:44:bc:73:cf:d5:51:31:93:dd:09:2b:cb:16:1d:
da:b3:e2:e3:cd:f1:f0:a5:a1:a0:34:01:0e:c3:97:
88:98:e5:aa:bb:de:3b:12:7a:0c:4f:ec:a5:52:ef:
16:4d:bf:9e:4d:8b:b0:2b:84:d7:a6:b1:36:44:59:
0e:70:46:26:92:be:ca:38:07:d1:b4:55:c5:01:66:
29:c0:6f:72:67:31:5e:01:64:16:f3:20:13:e4:cd:
4a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:22:AA:A9:5E:FB:3B:B1:3A:87:CC:24:95:D0:DE:91:60:4D:A8:7E
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/siKqqV77O7E6h8wkldDekWBNqH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.41.153.0/24
Signature Algorithm: sha256WithRSAEncryption
85:5b:85:9f:f8:d0:64:02:c5:ce:80:a6:dd:18:44:6b:55:23:
a2:55:5f:31:a2:88:5a:84:84:81:eb:4f:ee:dc:f2:83:d2:fc:
d8:82:00:f4:6d:d8:63:6b:77:92:34:1a:57:67:91:25:f5:ca:
93:59:80:46:d4:40:eb:a6:a5:64:aa:48:c1:d3:81:b8:5f:a8:
34:b0:60:d2:fe:65:34:92:89:28:40:c5:e0:c9:9f:27:6a:d0:
94:6b:9e:eb:b0:96:f6:96:23:03:3c:a1:6b:8a:08:75:59:3e:
e8:6e:bd:65:2d:9a:28:d2:0e:f0:0d:f2:2b:a7:d6:f0:c5:b2:
5c:3c:5d:20:80:59:52:42:7c:cc:e4:1d:1c:e6:55:65:6f:4d:
1b:1c:4a:fc:ee:1e:ee:37:51:7d:6e:ff:49:0f:8c:26:f4:8d:
a1:ce:89:6f:2c:c7:7a:2f:64:3e:0c:dc:50:24:71:09:9f:6d:
4a:aa:0e:01:70:39:3e:43:ae:2c:61:68:29:3f:56:eb:e2:ed:
80:2b:f5:34:22:9b:a6:03:df:a3:51:db:85:a4:4d:ce:a1:d8:
f4:c9:a8:37:cf:93:3d:00:ca:c1:36:55:45:6b:11:ff:56:86:
f9:ff:db:e3:0b:68:62:89:23:d6:49:4d:e9:ae:a5:dc:5e:57:
de:98:5d:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:54 2023 by rpki-client on console-fra.rpki-client.org