Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/f7f8e9-a9ef-406d-a593-9cc4805e6777/1/tYfzXDyCSR8nm5Fio3P-Yagb1yk.roa
File: tYfzXDyCSR8nm5Fio3P-Yagb1yk.roa (raw, json)
Hash identifier: 6va8aik23ilkItsqlKQIjcDBJkebnbfSbm1AtUBjkuY=
Subject key identifier: B5:87:F3:5C:3C:82:49:1F:27:9B:91:62:A3:73:FE:61:A8:1B:D7:29
Certificate issuer: /CN=cd5aca299d355aadfe1ef939546280e588d249a3
Certificate serial: 018755927A3C285E5CCBE864E447E4ED5B11
Authority key identifier: CD:5A:CA:29:9D:35:5A:AD:FE:1E:F9:39:54:62:80:E5:88:D2:49:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zVrKKZ01Wq3-Hvk5VGKA5YjSSaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/f7f8e9-a9ef-406d-a593-9cc4805e6777/1/tYfzXDyCSR8nm5Fio3P-Yagb1yk.roa
Signing time: Thu 06 Apr 2023 07:57:55 +0000
ROA not before: Thu 06 Apr 2023 07:57:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 5.172.176.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:55:92:7a:3c:28:5e:5c:cb:e8:64:e4:47:e4:ed:5b:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5aca299d355aadfe1ef939546280e588d249a3
Validity
Not Before: Apr 6 07:57:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b587f35c3c82491f279b9162a373fe61a81bd729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:fa:13:c3:10:1f:5d:bb:f7:fd:f6:56:46:03:
ff:5e:72:53:16:08:06:49:44:c5:9c:69:12:dc:db:
25:46:4d:5f:12:5e:ec:77:cb:9a:13:ad:4c:5e:76:
39:7c:d5:c9:02:6c:fc:e9:a7:c6:be:7e:69:b9:20:
b0:06:25:ae:56:df:30:0e:6b:d3:50:ac:db:ed:52:
9f:da:84:c1:db:49:d7:b2:fa:9d:a9:fc:71:b7:d7:
3e:c8:fd:7d:b6:e8:91:e6:10:f8:49:1c:9c:be:8f:
f3:ea:16:46:02:ae:d0:ab:92:c8:ae:67:26:30:dc:
ad:1d:77:47:34:52:6d:95:43:e6:f2:24:37:b1:ac:
df:98:da:5a:9d:81:ad:b5:15:82:26:27:e6:27:8b:
44:50:f3:ab:42:a0:dc:50:f8:e8:ed:4e:80:d1:f3:
ee:43:2c:50:f2:00:52:8f:d0:b4:52:6f:8d:e7:1b:
92:34:94:a3:86:db:5b:92:e3:14:18:49:71:90:4b:
5e:b5:a6:77:33:7e:02:57:e1:64:20:c0:ca:a8:ee:
d5:ef:ca:41:78:3c:b9:93:f9:9c:a2:3c:b8:d8:8f:
fe:da:a4:06:9e:09:56:12:7b:fd:59:b2:80:fd:2f:
28:85:db:f0:75:be:be:c2:61:32:cd:eb:e7:c5:27:
92:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:87:F3:5C:3C:82:49:1F:27:9B:91:62:A3:73:FE:61:A8:1B:D7:29
X509v3 Authority Key Identifier:
keyid:CD:5A:CA:29:9D:35:5A:AD:FE:1E:F9:39:54:62:80:E5:88:D2:49:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zVrKKZ01Wq3-Hvk5VGKA5YjSSaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/f7f8e9-a9ef-406d-a593-9cc4805e6777/1/tYfzXDyCSR8nm5Fio3P-Yagb1yk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/f7f8e9-a9ef-406d-a593-9cc4805e6777/1/zVrKKZ01Wq3-Hvk5VGKA5YjSSaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.176.0/24
Signature Algorithm: sha256WithRSAEncryption
47:eb:a9:78:74:2a:84:a6:8d:03:46:76:ce:b7:1b:d8:ac:95:
9b:7c:75:4e:28:83:9b:4b:1e:78:30:41:29:d6:4f:49:3c:5f:
b6:10:9c:2e:d0:00:45:cf:07:45:db:7e:e0:f7:01:30:c1:0e:
be:12:c0:2d:a9:0d:7c:7e:a3:03:d3:5d:7f:44:4f:95:99:27:
81:a6:5c:42:b0:ea:e0:35:f1:00:1c:4a:0a:7c:ee:28:05:dc:
4b:2b:94:d3:5c:7d:26:c4:e3:bd:7d:1c:d0:a4:45:82:61:75:
45:f0:71:d7:b7:9b:7e:c3:21:78:34:7d:a2:e5:a8:bc:fd:62:
3c:dd:7e:e3:e6:0e:6f:f5:f9:ee:91:53:16:60:96:92:cf:d1:
02:90:cb:0d:b8:46:4f:ad:98:54:6b:d9:9a:85:b6:17:98:92:
5a:c4:a6:37:92:fd:9a:b5:ff:0b:50:3f:94:cb:5c:26:53:0e:
dd:d2:c0:a3:a5:ae:bc:b6:4b:a5:ec:16:57:5c:e3:36:2f:65:
f2:43:d5:0d:91:e5:45:c3:30:0d:9b:ff:18:9f:cb:80:45:6b:
6a:c1:4f:11:90:bf:1d:d8:1a:43:35:38:79:52:57:72:4e:a3:
8b:9b:d1:3a:32:9f:26:4a:1f:a1:28:e8:71:b1:28:84:30:60:
f3:10:5d:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:27 2023 by rpki-client on console-fra.rpki-client.org