Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9e9559-8f3c-45d0-851c-68f2174c79ee/1/vjIFrDDRqXc5rWVCv46V1ycMHlw.roa
File: vjIFrDDRqXc5rWVCv46V1ycMHlw.roa (raw, json)
Hash identifier: o6AscGilCfMeLXBh6XKaSFY5q+rltuKpnf2On2U3r/g=
Subject key identifier: BE:32:05:AC:30:D1:A9:77:39:AD:65:42:BF:8E:95:D7:27:0C:1E:5C
Certificate issuer: /CN=449e4252bcb22ea2c6cfb3924c8f84bdde7a7471
Certificate serial: 018570028128CA909CD9BF87F9789129C2AE
Authority key identifier: 44:9E:42:52:BC:B2:2E:A2:C6:CF:B3:92:4C:8F:84:BD:DE:7A:74:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RJ5CUryyLqLGz7OSTI-Evd56dHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9e9559-8f3c-45d0-851c-68f2174c79ee/1/vjIFrDDRqXc5rWVCv46V1ycMHlw.roa
Signing time: Mon 02 Jan 2023 01:04:50 +0000
ROA not before: Mon 02 Jan 2023 01:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59407
IP address blocks: 91.192.202.0/23 maxlen: 23
5.134.16.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:81:28:ca:90:9c:d9:bf:87:f9:78:91:29:c2:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=449e4252bcb22ea2c6cfb3924c8f84bdde7a7471
Validity
Not Before: Jan 2 01:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be3205ac30d1a97739ad6542bf8e95d7270c1e5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:73:18:3e:f4:0c:a3:20:c8:dc:db:fb:5d:24:
29:5d:97:f6:7e:7b:35:25:f1:7c:ae:57:4e:42:1e:
21:1a:7f:51:6a:1c:b8:ac:11:e0:3f:fa:28:60:9c:
a0:a5:f9:f1:41:16:a9:fc:f5:e1:de:e6:f2:e1:2c:
85:f3:c1:c0:5e:96:e2:bd:b4:c4:11:1c:69:28:80:
f0:a0:58:f2:aa:f6:fd:ef:c9:2d:70:b8:87:f9:d3:
29:c0:95:07:2e:74:9f:13:a3:47:62:51:95:e9:4d:
55:a2:e2:7c:14:b8:23:74:cd:37:18:09:c5:25:98:
56:a0:d1:4b:09:03:e6:61:3d:0b:48:75:dd:99:bc:
d1:64:6c:40:73:44:45:9c:28:c1:ae:38:51:b3:40:
6f:3b:ff:08:bd:9e:5b:eb:49:45:c6:4b:9a:82:b6:
74:a1:92:a3:05:4c:0e:13:2f:34:55:7c:cf:51:ab:
0b:c0:6a:d8:82:b0:12:19:19:e0:16:28:38:c0:24:
56:de:da:3f:1f:be:b4:18:ab:eb:26:4c:bd:3b:ce:
2c:8e:75:47:f6:c9:73:2d:af:a0:ea:2d:03:45:c7:
8a:59:7c:1a:c6:88:d5:08:83:54:32:cd:8d:82:cb:
db:78:24:c5:92:66:97:9c:0e:ee:d8:7f:41:ee:99:
a4:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:32:05:AC:30:D1:A9:77:39:AD:65:42:BF:8E:95:D7:27:0C:1E:5C
X509v3 Authority Key Identifier:
keyid:44:9E:42:52:BC:B2:2E:A2:C6:CF:B3:92:4C:8F:84:BD:DE:7A:74:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RJ5CUryyLqLGz7OSTI-Evd56dHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9e9559-8f3c-45d0-851c-68f2174c79ee/1/vjIFrDDRqXc5rWVCv46V1ycMHlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9e9559-8f3c-45d0-851c-68f2174c79ee/1/RJ5CUryyLqLGz7OSTI-Evd56dHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.16.0/21
91.192.202.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:3a:ea:d4:35:18:97:a2:e5:ab:ed:a4:6b:a2:7d:ee:81:38:
bb:f5:aa:96:a1:78:74:0a:6e:f1:c3:8c:b9:39:16:7e:c1:48:
e3:02:37:f5:ea:e9:32:f8:70:d0:64:14:da:63:f1:30:d8:80:
6e:af:38:6a:26:db:23:4f:b9:c3:b2:64:84:d0:a9:ce:08:9a:
f3:0c:70:21:5a:29:70:a5:69:b8:d3:25:50:b8:11:3e:7f:93:
ef:4e:60:34:bb:bf:3a:3d:34:64:a1:12:19:59:cd:56:9e:22:
bd:44:f4:bb:7a:a4:2f:2e:50:01:88:de:49:d9:73:a7:0c:64:
ec:b4:63:db:b4:6b:7b:6e:a2:b5:71:99:60:a5:13:7f:dd:da:
dc:6a:4b:a2:8d:c1:83:b0:a8:51:a9:0c:0a:0d:03:de:ff:a7:
08:11:27:4a:23:90:f9:ed:2c:9c:17:d7:0d:0f:d1:59:66:d0:
0d:b1:b2:d0:82:ef:d4:8a:28:f5:84:59:59:ff:57:0e:f1:65:
20:38:1b:15:06:09:49:16:d7:67:36:7a:b5:f1:29:d8:94:5a:
4b:cc:ab:70:f2:99:c9:32:a2:71:ad:ef:ec:71:a4:9b:7d:6b:
e3:8e:00:66:1e:97:f8:50:7c:3c:c2:83:a5:4d:09:5b:18:e4:
49:8d:29:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:30:09 2024 by rpki-client on console-ams.rpki-client.org