Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/91282f-f42c-442d-84bb-22f37a39b210/1/KnduDTlFTw0DL6D9Ekdti-UU_Z4.roa
File: KnduDTlFTw0DL6D9Ekdti-UU_Z4.roa (raw, json)
Hash identifier: Bh5SWqs+2SdSKG4JSbcgDEbETDrPnXalakYiY/cfdik=
Subject key identifier: 2A:77:6E:0D:39:45:4F:0D:03:2F:A0:FD:12:47:6D:8B:E5:14:FD:9E
Certificate issuer: /CN=db3f546b24b7dbb0984a09c62660a52bad287757
Certificate serial: 0187C7DCB5F31A4372921A2841101A944F78
Authority key identifier: DB:3F:54:6B:24:B7:DB:B0:98:4A:09:C6:26:60:A5:2B:AD:28:77:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2z9UayS327CYSgnGJmClK60od1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/91282f-f42c-442d-84bb-22f37a39b210/1/KnduDTlFTw0DL6D9Ekdti-UU_Z4.roa
Signing time: Fri 28 Apr 2023 12:35:43 +0000
ROA not before: Fri 28 Apr 2023 12:35:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 5.172.180.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c7:dc:b5:f3:1a:43:72:92:1a:28:41:10:1a:94:4f:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db3f546b24b7dbb0984a09c62660a52bad287757
Validity
Not Before: Apr 28 12:35:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a776e0d39454f0d032fa0fd12476d8be514fd9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:8b:61:50:01:3b:fb:67:a8:d4:a4:42:f9:f9:
ad:de:b8:b3:69:2c:0c:b9:c7:51:99:cb:8f:bf:8b:
ec:4e:41:9c:1b:c0:3b:bc:4c:8b:c5:c7:ca:14:f1:
cf:32:c0:df:a8:1d:13:d9:e6:b4:22:4c:73:ae:51:
f7:64:73:23:17:66:a5:ae:a3:cd:62:b0:f5:25:1e:
7d:27:15:56:9d:5f:89:97:10:f3:2f:38:c5:b7:41:
de:ce:08:bd:c7:2c:75:9e:1c:08:96:1a:86:bd:05:
ba:4b:d7:15:65:01:77:c5:9c:b2:a1:95:aa:63:0c:
7f:c8:cf:bd:47:28:5c:a7:0e:11:2e:e6:3f:1e:66:
56:a4:7b:2d:ef:1f:61:a9:3d:e2:ad:75:c2:04:a8:
35:2c:24:8c:f8:a6:6f:4f:d2:5a:0e:0b:28:50:f1:
cf:e5:49:6b:2f:ca:22:3d:ae:76:b4:17:66:b6:14:
27:2c:23:30:22:95:91:9e:57:b0:5b:61:8f:85:49:
d4:6a:b6:c1:55:43:3c:a2:37:fd:f6:0d:c0:bd:74:
84:e8:1b:c4:92:ba:5a:69:d4:3b:27:81:5b:10:59:
25:c7:d7:cb:07:1f:6d:f7:77:ec:4b:9d:bd:0c:ce:
91:0f:75:02:19:30:f1:27:d5:80:3d:c7:22:b2:6c:
3b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:77:6E:0D:39:45:4F:0D:03:2F:A0:FD:12:47:6D:8B:E5:14:FD:9E
X509v3 Authority Key Identifier:
keyid:DB:3F:54:6B:24:B7:DB:B0:98:4A:09:C6:26:60:A5:2B:AD:28:77:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2z9UayS327CYSgnGJmClK60od1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/91282f-f42c-442d-84bb-22f37a39b210/1/KnduDTlFTw0DL6D9Ekdti-UU_Z4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/91282f-f42c-442d-84bb-22f37a39b210/1/2z9UayS327CYSgnGJmClK60od1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.180.0/24
Signature Algorithm: sha256WithRSAEncryption
71:d8:8d:2e:47:8f:5d:76:04:26:6c:d1:ac:2d:8b:58:50:0e:
5f:36:12:a5:2b:0f:a8:d0:cf:73:6d:7b:fa:63:ff:e7:45:a5:
65:1c:dd:29:e4:ee:76:10:35:6c:e5:1f:46:49:36:c8:d3:1a:
2b:68:20:4a:6b:2d:3a:fc:0e:56:78:4d:31:db:5e:b9:fe:d4:
7a:6c:3c:6e:02:76:f5:33:09:ad:73:f3:87:a1:aa:e2:09:1b:
88:16:e9:46:46:42:d3:a5:f8:6d:cb:aa:94:46:f7:6c:40:47:
44:45:11:b6:d6:3e:2a:ae:3f:66:a4:b3:d6:fd:dc:48:3c:93:
23:80:ef:19:e9:8f:87:1a:7c:4b:1d:55:9c:30:7f:11:4d:b7:
0d:ef:0a:f8:67:4a:a9:fc:d0:a5:0f:0b:0f:41:52:08:9e:fa:
69:75:d5:73:04:40:58:ee:fc:6e:9e:5f:d8:f6:19:a1:90:01:
38:80:ff:ca:07:89:a4:81:2f:cf:ca:76:05:34:94:08:1d:77:
8a:05:35:71:4d:4b:96:a8:7f:24:d6:ce:2c:76:e4:a7:97:aa:
d3:67:32:86:98:f9:d4:38:e1:6b:d5:b2:79:d4:c5:b9:f5:c9:
c1:c7:f8:e0:af:cf:6f:ce:d6:89:be:97:2a:20:ea:a8:5d:61:
32:7e:fe:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:14 2023 by rpki-client on console-fra.rpki-client.org