Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/2y_2oJ6hwTI98U-yzWL4-5Q7GIg.roa
File: 2y_2oJ6hwTI98U-yzWL4-5Q7GIg.roa (raw, json)
Hash identifier: M2WM13BxiCycvysAntj6e/naRY+EVi0bE39/3dscR9Q=
Subject key identifier: DB:2F:F6:A0:9E:A1:C1:32:3D:F1:4F:B2:CD:62:F8:FB:94:3B:18:88
Certificate issuer: /CN=d00b37b6f4b445645e6993a9c5ec608492425f0e
Certificate serial: 018657A89E8D2B4361BCB3D7719DB07CA2EB
Authority key identifier: D0:0B:37:B6:F4:B4:45:64:5E:69:93:A9:C5:EC:60:84:92:42:5F:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0As3tvS0RWReaZOpxexghJJCXw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/2y_2oJ6hwTI98U-yzWL4-5Q7GIg.roa
Signing time: Thu 16 Feb 2023 00:38:33 +0000
ROA not before: Thu 16 Feb 2023 00:38:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 152.53.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:57:a8:9e:8d:2b:43:61:bc:b3:d7:71:9d:b0:7c:a2:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d00b37b6f4b445645e6993a9c5ec608492425f0e
Validity
Not Before: Feb 16 00:38:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db2ff6a09ea1c1323df14fb2cd62f8fb943b1888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bc:86:e7:09:ac:d9:7a:33:59:e0:45:cc:01:
70:43:01:08:c8:1b:7f:c0:61:61:8a:40:57:6f:67:
d9:8b:5c:03:a7:d9:b4:17:35:b9:e7:a1:c7:1e:ff:
20:8c:82:92:f7:e8:7b:68:88:f2:ad:ef:05:e8:cb:
96:e0:cb:e6:9b:74:2c:ef:a9:89:dc:65:93:48:f0:
46:8f:ed:17:45:c7:0b:f8:44:1c:a8:1d:6f:aa:95:
62:9a:3b:31:28:f6:09:93:fd:3b:88:43:0d:92:b0:
15:43:f2:1b:3c:ed:f0:a2:e9:67:a0:59:25:75:b5:
8b:ac:91:8b:e3:f0:dc:2f:58:bc:76:d6:b9:62:4a:
52:b9:76:bc:7c:eb:c9:c9:64:c5:8c:29:33:95:ea:
98:63:16:8c:ba:2a:02:a0:f9:91:13:97:ad:da:41:
b5:5f:f0:4b:4c:22:0f:0e:40:ca:25:6f:14:f3:30:
1d:94:e4:e8:07:45:2a:b0:4d:4e:4e:cc:c2:fa:a1:
7c:ba:62:a3:16:9b:a2:0a:cf:47:4c:f2:fa:a7:5c:
81:f8:c7:27:e8:3e:36:98:7d:27:fb:71:96:18:69:
bd:29:41:19:a5:be:86:49:23:58:52:47:c4:de:56:
71:57:f6:49:fa:96:91:9d:dd:c5:d8:2a:65:7e:ff:
e8:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:2F:F6:A0:9E:A1:C1:32:3D:F1:4F:B2:CD:62:F8:FB:94:3B:18:88
X509v3 Authority Key Identifier:
keyid:D0:0B:37:B6:F4:B4:45:64:5E:69:93:A9:C5:EC:60:84:92:42:5F:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0As3tvS0RWReaZOpxexghJJCXw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/2y_2oJ6hwTI98U-yzWL4-5Q7GIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/0As3tvS0RWReaZOpxexghJJCXw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.53.0.0/16
Signature Algorithm: sha256WithRSAEncryption
87:68:e9:81:2f:2a:99:a6:8c:33:05:37:f9:bd:5e:41:82:b5:
ff:e2:7a:2a:bc:3e:b3:e6:b2:f7:fd:1e:68:1c:46:c3:da:a2:
c6:7e:c4:96:e3:91:b7:e3:2d:8e:ea:fe:10:23:2b:7b:9f:64:
c5:dc:68:f9:06:7d:04:77:24:5f:d6:9a:ba:80:29:67:b6:2d:
a3:cf:b6:2f:aa:f5:af:76:04:ce:44:08:0c:eb:83:b7:b1:53:
8e:19:22:5f:47:e2:05:2b:48:d6:08:ef:bb:79:64:98:6a:c0:
b0:b2:eb:4c:c2:d0:51:67:9c:3b:77:c8:97:5d:24:b2:51:9b:
16:14:1d:16:47:27:c9:d3:71:61:96:37:e5:a5:a8:77:ef:f4:
26:61:df:bd:6c:73:51:b6:6f:57:f4:06:de:0e:14:06:9a:37:
4f:b0:2a:6f:b3:59:ee:eb:b4:6c:5d:ef:bc:93:e6:62:c6:99:
0d:f6:56:e1:fb:f8:bf:0f:72:7f:45:b3:b2:7f:0a:f8:f9:6e:
65:67:a9:dd:aa:d7:a7:a4:f0:7f:e7:64:38:d9:b3:b7:07:3e:
c4:5e:7d:e6:e3:d4:7f:d1:b1:64:b9:b7:f1:da:f4:63:7f:5e:
90:ed:20:a4:95:5f:cd:1a:b5:71:b8:83:9d:c7:71:97:2e:f9:
52:39:65:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 6 14:54:22 2023 by rpki-client on console-fra.rpki-client.org