Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/59cf8e-dc67-43fb-bd37-0870e659645b/1/pbTuOGlutSRDUk3VF7UUJZmepl0.roa
File: pbTuOGlutSRDUk3VF7UUJZmepl0.roa (raw, json)
Hash identifier: 9qjRDaCR7cbibwgCd7oQ20/1OwRM4Nm+P2fSNSwB8XM=
Subject key identifier: A5:B4:EE:38:69:6E:B5:24:43:52:4D:D5:17:B5:14:25:99:9E:A6:5D
Certificate issuer: /CN=ef9d763b49e024a7b6a19eaf7dfb98911a9c94c8
Certificate serial: 018572A7F59D61BEC850F41165FA95532491
Authority key identifier: EF:9D:76:3B:49:E0:24:A7:B6:A1:9E:AF:7D:FB:98:91:1A:9C:94:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7512O0ngJKe2oZ6vffuYkRqclMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/59cf8e-dc67-43fb-bd37-0870e659645b/1/pbTuOGlutSRDUk3VF7UUJZmepl0.roa
Signing time: Mon 02 Jan 2023 13:24:48 +0000
ROA not before: Mon 02 Jan 2023 13:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197216
IP address blocks: 5.182.20.0/24 maxlen: 24
5.182.21.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a7:f5:9d:61:be:c8:50:f4:11:65:fa:95:53:24:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef9d763b49e024a7b6a19eaf7dfb98911a9c94c8
Validity
Not Before: Jan 2 13:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5b4ee38696eb52443524dd517b51425999ea65d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:02:f0:1a:e1:8e:a6:aa:26:13:66:14:19:f7:
f4:42:bd:ef:09:bc:c1:62:86:1e:7d:9d:e4:dd:10:
4a:10:52:8d:9b:6d:8e:7b:cc:46:63:4f:42:80:4c:
29:a1:dc:ad:44:b8:11:68:02:a7:03:b0:ed:e2:4d:
68:54:a0:68:59:94:5d:32:8b:5d:e8:86:69:ed:57:
40:fe:a5:2a:78:4f:50:62:ee:3b:a9:8d:38:34:b0:
4e:62:bb:76:df:db:17:06:07:60:f9:0e:3b:b1:ed:
13:f2:bf:91:ec:3b:4b:97:22:c8:4c:b1:c2:41:83:
a4:91:83:d0:28:2b:29:a1:54:81:54:65:fb:6f:5a:
7f:61:54:cd:7c:9a:e2:91:27:a5:dc:80:4f:5d:cb:
ec:4f:82:6d:d5:f6:80:b1:33:a8:79:7a:51:41:19:
17:78:b1:c5:7a:6b:57:0e:21:82:d9:16:aa:74:12:
14:e0:60:cd:29:89:9f:bf:a6:2f:d2:60:04:07:14:
3f:ac:b8:e7:85:b0:f0:f6:49:83:05:67:e1:ee:f9:
4c:08:1a:e8:43:34:27:c5:4d:7c:e3:ea:23:27:ac:
b5:d2:33:1b:29:41:d5:83:dd:f1:a0:6c:84:f2:b3:
e8:63:b2:25:31:cf:b1:eb:eb:8e:24:ab:83:58:f6:
9c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:B4:EE:38:69:6E:B5:24:43:52:4D:D5:17:B5:14:25:99:9E:A6:5D
X509v3 Authority Key Identifier:
keyid:EF:9D:76:3B:49:E0:24:A7:B6:A1:9E:AF:7D:FB:98:91:1A:9C:94:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7512O0ngJKe2oZ6vffuYkRqclMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/59cf8e-dc67-43fb-bd37-0870e659645b/1/pbTuOGlutSRDUk3VF7UUJZmepl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/59cf8e-dc67-43fb-bd37-0870e659645b/1/7512O0ngJKe2oZ6vffuYkRqclMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.20.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:e9:7e:9a:8d:bf:08:f7:24:e9:56:fa:6d:34:8f:3c:2b:eb:
6d:0d:16:2c:d1:87:fc:c3:5f:4b:68:ac:fb:f0:9f:f8:f2:23:
f1:fc:91:0d:92:8a:bb:5c:53:7b:f2:dc:6c:0d:e7:59:99:d1:
42:38:5f:44:34:27:69:72:0a:9b:1c:be:48:31:9b:90:a9:e3:
66:bf:9d:12:56:32:91:f7:90:84:44:5d:04:a2:2c:b6:fa:81:
7e:4b:bb:76:a0:5d:b9:01:8f:d6:05:b6:2c:3e:0c:d6:4a:06:
8c:ac:8b:f9:9e:8e:f4:ba:0c:20:02:e9:e0:ae:b2:46:cb:5d:
3d:e7:28:c2:ad:3d:3f:ee:21:75:5d:c0:71:8e:6c:c9:96:17:
0f:18:0a:18:7c:ac:6a:19:cf:80:70:e4:cb:d9:90:66:b7:3d:
54:63:09:b1:2d:f2:9d:b9:cf:aa:29:5f:d1:73:74:72:73:18:
32:2d:47:03:b7:61:a5:70:f7:55:fe:e8:1c:db:b4:d3:c3:36:
a5:58:d7:6d:b0:d3:9b:91:a4:e9:66:6f:fc:b8:f7:0b:70:2a:
03:60:84:67:0d:3b:d8:cb:3f:76:55:70:0f:96:09:7c:62:d1:
2f:28:df:74:7a:f8:b3:81:f1:60:1c:69:dd:18:e8:b8:b9:ea:
6a:ed:66:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:50 2023 by rpki-client on console-ams.rpki-client.org