Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/YiQrG3RSm9rujyiCRP8vXNQYAAg.roa
File: YiQrG3RSm9rujyiCRP8vXNQYAAg.roa (raw, json)
Hash identifier: 2aRg7iTWKYf9sn52O74eMwkGNextSa8Y01nZ8nNGX/I=
Subject key identifier: 62:24:2B:1B:74:52:9B:DA:EE:8F:28:82:44:FF:2F:5C:D4:18:00:08
Certificate issuer: /CN=015b6d1596ac0501a71a393447051a62ff1dda16
Certificate serial: 01889F6F503D360B581D442B00F3D0163222
Authority key identifier: 01:5B:6D:15:96:AC:05:01:A7:1A:39:34:47:05:1A:62:FF:1D:DA:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AVttFZasBQGnGjk0RwUaYv8d2hY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/YiQrG3RSm9rujyiCRP8vXNQYAAg.roa
Signing time: Fri 09 Jun 2023 09:14:12 +0000
ROA not before: Fri 09 Jun 2023 09:14:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41081
IP address blocks: 5.153.182.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9f:6f:50:3d:36:0b:58:1d:44:2b:00:f3:d0:16:32:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=015b6d1596ac0501a71a393447051a62ff1dda16
Validity
Not Before: Jun 9 09:14:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62242b1b74529bdaee8f288244ff2f5cd4180008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ba:b1:d3:c8:7a:be:5b:4e:ae:c5:93:2d:ca:
34:b5:59:73:0a:7d:5e:9e:80:19:e2:9d:73:ec:74:
a7:cb:0d:f4:db:13:eb:f0:d7:e0:cb:77:f4:ed:6b:
8a:53:99:27:28:23:76:66:23:8e:d8:46:4b:93:58:
f9:18:bc:d1:69:6a:8b:57:64:17:10:3b:3b:b3:45:
b0:54:3d:06:ab:f5:2e:d9:98:06:09:0d:fa:3c:1c:
78:a5:62:4d:78:a7:a0:38:ec:54:63:ee:c5:6d:00:
e1:40:7e:6b:5b:ed:fc:75:1f:52:fb:53:1a:6e:42:
4d:b9:ff:17:7c:3d:47:de:f1:70:8a:1d:bf:6c:8c:
d9:9f:d1:9e:6e:29:93:15:e6:5a:42:f7:32:fd:04:
99:2d:5d:cb:68:f5:62:48:3c:94:cd:29:b2:f3:7a:
77:7f:59:2b:70:8e:71:78:23:2c:71:28:44:9f:ec:
41:07:28:33:e8:3c:ab:60:94:5d:78:b5:f0:48:b3:
96:a7:bc:1b:ea:e6:8f:39:bc:0b:59:99:bb:b3:d2:
91:66:96:6f:11:a1:f4:89:61:18:94:90:25:04:d7:
22:78:22:3c:47:ae:32:9e:37:d7:59:d7:39:a1:d2:
0d:45:38:ec:0d:89:cc:4a:82:98:54:c4:af:38:ac:
66:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:24:2B:1B:74:52:9B:DA:EE:8F:28:82:44:FF:2F:5C:D4:18:00:08
X509v3 Authority Key Identifier:
keyid:01:5B:6D:15:96:AC:05:01:A7:1A:39:34:47:05:1A:62:FF:1D:DA:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVttFZasBQGnGjk0RwUaYv8d2hY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/YiQrG3RSm9rujyiCRP8vXNQYAAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/AVttFZasBQGnGjk0RwUaYv8d2hY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.153.182.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:ae:80:6c:d0:c1:be:8f:e4:74:4d:3c:e5:53:fb:65:10:16:
07:5d:a6:40:9c:d5:da:86:46:9f:a2:7c:01:1f:cd:40:b2:3c:
28:30:33:66:7d:35:e8:4e:79:1a:f4:e2:2d:d6:01:76:27:f2:
46:79:c6:55:ea:0f:61:3b:de:3d:01:f8:27:cd:39:aa:83:a8:
1b:76:c6:6b:de:9d:08:e5:5c:8e:52:b2:16:85:18:e7:bf:d7:
ab:7a:3d:77:d9:46:9f:ab:c9:4a:aa:3c:61:4f:cc:ba:97:ac:
f0:8c:a9:66:98:07:73:a1:a2:8a:80:89:ae:9a:2a:b7:41:44:
6d:d7:06:44:c2:53:90:5f:5c:20:df:39:9f:51:d3:1d:57:2f:
0f:8d:1d:61:76:41:c9:4e:b7:c8:bc:45:a7:7b:70:d6:1f:98:
db:de:9f:20:77:7f:5f:8d:9b:78:90:f1:2d:ad:d8:ae:75:49:
fd:0a:e0:a5:99:c0:d0:90:86:cd:f3:b1:72:a6:5f:94:d8:c6:
e0:6a:5d:97:ed:7d:83:69:ed:43:48:8d:11:9c:4d:13:56:40:
f6:5b:e1:dc:f5:52:da:37:50:81:24:6f:ab:19:a0:1e:ea:30:
5e:80:6c:31:78:04:7c:2b:ab:9f:e9:7e:f9:0e:6b:d5:ae:5b:
0f:92:0e:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:30 2024 by rpki-client on console-ams.rpki-client.org