Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/3af1e6-7f6d-4ac8-a022-fab9bab2f894/1/5jaw1huWxv3b_I2dY4xv51nOraM.roa
File: 5jaw1huWxv3b_I2dY4xv51nOraM.roa (raw, json)
Hash identifier: DCwJmr3pnUool5xm3V28S24rPUsguY5/EN5T2lgy3VM=
Subject key identifier: E6:36:B0:D6:1B:96:C6:FD:DB:FC:8D:9D:63:8C:6F:E7:59:CE:AD:A3
Certificate issuer: /CN=166dcaf076c3ec103117deaa67990c968bcd644d
Certificate serial: 0185728C766831DF60F80A44F263A90DA25B
Authority key identifier: 16:6D:CA:F0:76:C3:EC:10:31:17:DE:AA:67:99:0C:96:8B:CD:64:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fm3K8HbD7BAxF96qZ5kMlovNZE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/3af1e6-7f6d-4ac8-a022-fab9bab2f894/1/5jaw1huWxv3b_I2dY4xv51nOraM.roa
Signing time: Mon 02 Jan 2023 12:54:46 +0000
ROA not before: Mon 02 Jan 2023 12:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 213.109.154.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:76:68:31:df:60:f8:0a:44:f2:63:a9:0d:a2:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=166dcaf076c3ec103117deaa67990c968bcd644d
Validity
Not Before: Jan 2 12:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e636b0d61b96c6fddbfc8d9d638c6fe759ceada3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9f:9a:56:f1:63:c8:b3:02:cb:d5:a9:3d:24:
9e:cb:0c:6e:e2:78:6b:1d:f6:60:a5:95:a4:bd:71:
e9:63:f4:83:0a:16:89:2c:1c:35:b9:81:22:5d:82:
4a:22:6f:9a:e5:8a:f7:7e:bc:a9:e1:6c:d3:19:84:
19:1f:96:31:18:aa:7a:f8:7d:e5:30:1a:7c:3c:db:
3e:0c:fc:31:8b:6a:e7:3d:3e:d7:80:3a:db:7f:98:
9d:89:80:d9:df:01:83:b1:73:68:19:f0:06:f2:0d:
3b:ab:79:93:ed:23:81:27:9b:6d:d4:c8:98:05:bc:
1c:3e:7e:09:3d:ab:34:dd:2c:fc:6c:e7:cf:d7:ca:
83:e6:a1:06:61:bb:44:89:85:0a:1a:88:0b:f8:41:
33:5d:97:bf:90:10:0c:b7:6d:1a:b6:88:a8:c3:22:
cb:e4:5a:c7:6e:25:b9:e0:df:96:ea:47:e4:53:af:
1c:97:17:30:13:23:5a:52:30:3b:ff:36:8f:22:c9:
8c:f5:62:fb:6b:b5:d1:85:f1:4f:07:6c:78:b0:31:
4c:a7:a2:31:a8:16:16:54:1f:7a:f0:63:10:07:44:
3c:b0:cb:6f:60:a5:b3:37:d9:20:ef:c3:56:37:07:
49:f2:89:3d:e3:96:48:07:a2:48:63:69:c2:0b:50:
97:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:36:B0:D6:1B:96:C6:FD:DB:FC:8D:9D:63:8C:6F:E7:59:CE:AD:A3
X509v3 Authority Key Identifier:
keyid:16:6D:CA:F0:76:C3:EC:10:31:17:DE:AA:67:99:0C:96:8B:CD:64:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fm3K8HbD7BAxF96qZ5kMlovNZE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/3af1e6-7f6d-4ac8-a022-fab9bab2f894/1/5jaw1huWxv3b_I2dY4xv51nOraM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/3af1e6-7f6d-4ac8-a022-fab9bab2f894/1/Fm3K8HbD7BAxF96qZ5kMlovNZE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.154.0/24
Signature Algorithm: sha256WithRSAEncryption
06:9d:89:75:8e:03:07:cc:29:ff:0a:ca:00:27:dd:00:5c:71:
f9:53:8b:67:1d:23:01:2d:1e:2d:d2:2d:b6:4d:bd:d6:0f:93:
98:2a:f9:43:de:59:0e:5d:2a:64:e6:3a:45:e0:fe:04:4d:87:
86:11:2a:2d:5c:ee:7c:9b:92:94:86:88:69:a6:01:f9:95:55:
04:4c:06:12:78:f8:7b:a8:d9:6f:08:96:6f:64:e5:0d:ca:fb:
ee:86:e6:45:ce:bd:26:fb:a4:90:46:0c:e1:0a:fa:4e:33:08:
b3:c9:67:38:a1:c7:2f:98:c3:d9:e9:fd:2f:7b:5a:7c:0e:79:
3c:a9:31:8e:78:46:0b:72:d5:aa:c7:d0:17:d4:34:c6:47:0f:
2a:f6:e0:18:33:9f:48:cf:12:d2:4e:45:78:7b:cd:44:f3:dc:
05:90:83:16:c6:bc:54:3e:9b:c0:56:e3:9f:45:e5:e5:e5:2b:
0e:25:63:e7:6a:98:ef:43:1c:6c:77:18:62:9e:d3:ed:03:f9:
dc:1d:c7:32:39:23:49:d3:88:cd:6f:57:a4:8e:86:29:0f:5c:
74:6d:2f:5c:9e:1a:dd:42:ca:7c:da:ff:4e:03:52:1b:de:69:
72:2e:85:98:14:fb:4d:a2:45:a5:b2:c2:cd:6b:0e:d0:d9:c0:
29:b4:90:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:16 2023 by rpki-client on console-ams.rpki-client.org