Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/xY4-FUJHIZ6lWET8biYBi-6R0HE.roa
File: xY4-FUJHIZ6lWET8biYBi-6R0HE.roa (raw, json)
Hash identifier: DstrGmuu5T0+DTzediMj0Cz+UAAxYsFCL/BKI4X7N+g=
Subject key identifier: C5:8E:3E:15:42:47:21:9E:A5:58:44:FC:6E:26:01:8B:EE:91:D0:71
Certificate issuer: /CN=3993d54e639080a46c3fe3d58aa87e305db69ad1
Certificate serial: 01856BD3852EB9D458AC8C47A7A290A31A69
Authority key identifier: 39:93:D5:4E:63:90:80:A4:6C:3F:E3:D5:8A:A8:7E:30:5D:B6:9A:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZPVTmOQgKRsP-PViqh-MF22mtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/xY4-FUJHIZ6lWET8biYBi-6R0HE.roa
Signing time: Sun 01 Jan 2023 05:35:02 +0000
ROA not before: Sun 01 Jan 2023 05:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212424
IP address blocks: 192.159.121.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d3:85:2e:b9:d4:58:ac:8c:47:a7:a2:90:a3:1a:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3993d54e639080a46c3fe3d58aa87e305db69ad1
Validity
Not Before: Jan 1 05:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c58e3e154247219ea55844fc6e26018bee91d071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a6:13:11:a0:1e:8a:d9:31:bd:53:e1:e5:31:
d9:1a:cc:81:8f:42:f7:7a:70:5f:68:55:0b:fd:6e:
45:6f:53:00:19:53:78:b7:0a:ce:6e:60:05:51:7e:
7d:f4:29:79:95:f3:ab:06:f7:84:9c:78:46:58:8a:
a6:0a:9e:6b:50:03:e7:36:a9:10:e5:31:02:5e:00:
ce:35:b3:d8:79:bb:45:07:62:81:4d:68:56:a3:2d:
b3:23:0d:28:aa:db:81:32:85:58:40:a7:e8:fa:2e:
9d:db:83:d5:00:d2:61:dc:16:df:aa:b0:7f:bd:de:
76:60:0d:ee:a2:b3:e3:35:25:1c:54:a6:d8:21:a4:
ea:22:c3:18:1a:bf:18:9e:20:4d:66:95:1d:12:e8:
17:cf:d4:d2:cf:05:07:df:49:db:35:95:a2:9e:e3:
b7:1b:03:9b:58:48:02:67:b4:80:9e:ca:7f:90:a0:
1a:43:90:1a:5b:8c:24:01:14:d9:a2:d1:8b:d5:5e:
27:07:48:dd:1d:c3:8a:ec:77:6d:a0:d3:f4:2e:8d:
98:5a:3e:e6:89:f5:54:f8:7e:6c:5b:de:20:e0:92:
66:7b:f1:91:84:b6:c5:e9:d0:f8:35:a9:ad:d3:da:
28:ec:62:05:76:25:c7:44:e8:ac:f9:2c:95:46:88:
eb:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:8E:3E:15:42:47:21:9E:A5:58:44:FC:6E:26:01:8B:EE:91:D0:71
X509v3 Authority Key Identifier:
keyid:39:93:D5:4E:63:90:80:A4:6C:3F:E3:D5:8A:A8:7E:30:5D:B6:9A:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZPVTmOQgKRsP-PViqh-MF22mtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/xY4-FUJHIZ6lWET8biYBi-6R0HE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/80959d-f5c4-4ac9-ad13-d48fbc1a243b/1/OZPVTmOQgKRsP-PViqh-MF22mtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.159.121.0/24
Signature Algorithm: sha256WithRSAEncryption
37:e3:ea:25:ee:9d:5e:61:16:cb:4f:71:25:91:fa:83:fd:2f:
62:9a:80:22:41:0d:24:b8:40:f4:83:1f:71:ca:ed:8d:03:a2:
d9:00:8d:59:3b:60:18:57:ef:cb:25:39:8c:a3:e0:9d:38:b2:
32:1a:be:03:42:de:e6:97:f9:c4:0f:5f:1f:e7:8a:30:00:53:
26:75:98:64:ab:43:ad:29:9e:0f:48:48:b8:49:23:d0:51:15:
dd:94:5e:82:ec:d2:c0:d4:79:87:1f:bc:c4:f9:aa:64:8f:72:
d1:c1:a6:97:ec:a7:63:ba:96:39:00:e6:18:ea:40:4a:d0:2c:
bf:df:44:56:45:0c:1c:bd:92:e3:bd:49:4e:a7:d0:9e:9e:85:
3b:e3:fb:6a:8b:cd:c1:e5:0e:a9:b0:7c:7d:97:33:fb:b0:78:
67:cc:8e:84:26:68:82:e2:c8:58:38:87:1e:86:f0:b2:fa:83:
7b:f9:d7:46:12:f1:94:8a:a0:79:93:4b:63:43:ba:31:7d:49:
fc:1a:cb:9a:40:8f:9c:f2:3a:04:df:24:02:ea:00:3b:a7:cd:
a6:e2:99:c2:89:ea:d4:6c:ec:06:b8:ff:e0:25:5e:d0:87:8b:
98:33:a4:c1:8a:3f:32:1b:0d:4f:bc:ff:74:fc:fa:c9:3e:ce:
46:00:d8:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:18 2024 by rpki-client on console-ams.rpki-client.org