Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/kyBQBAqsa9TahGY-Va_F9pzdpEw.roa
File: kyBQBAqsa9TahGY-Va_F9pzdpEw.roa (raw, json)
Hash identifier: 2gihBp3UcBWDmPXl4XCMkGcjAp+ao29iOH9jgCh1nHY=
Subject key identifier: 93:20:50:04:0A:AC:6B:D4:DA:84:66:3E:55:AF:C5:F6:9C:DD:A4:4C
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 01866E6E7195C1EE08864DCD67F4F2DF686A
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/kyBQBAqsa9TahGY-Va_F9pzdpEw.roa
Signing time: Mon 20 Feb 2023 10:46:17 +0000
ROA not before: Mon 20 Feb 2023 10:46:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48147
IP address blocks: 5.57.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:6e:6e:71:95:c1:ee:08:86:4d:cd:67:f4:f2:df:68:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Feb 20 10:46:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=932050040aac6bd4da84663e55afc5f69cdda44c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e1:d5:60:15:41:bb:35:54:01:4f:6e:3d:6c:
4a:aa:3f:fb:60:e1:e7:41:ae:2e:39:7d:47:58:ba:
4d:01:6a:0f:c4:6d:22:8b:8b:5a:ca:1b:1a:1b:6e:
93:9b:05:92:ca:0e:e5:1d:fa:45:5c:af:c4:22:62:
c1:81:89:b5:d6:42:68:3a:3f:e7:92:a6:3d:67:f3:
10:df:06:4a:2d:f7:a5:e4:a1:f5:4e:39:91:49:98:
63:ee:e8:97:9b:ac:62:1e:b0:72:ff:3b:4e:81:69:
5f:33:a1:15:0e:3f:06:81:86:8a:aa:3b:b2:ea:ef:
cb:2e:84:9e:30:21:2a:53:86:35:1b:3f:fd:8d:98:
6a:92:12:1e:21:25:22:89:3e:38:56:00:f7:29:95:
7f:18:3a:d2:07:cf:fe:60:c0:e0:8d:24:7b:c4:9c:
ff:de:b0:25:2e:d4:4f:27:ba:fa:a0:ed:0f:9a:3f:
2c:b9:97:54:49:bd:7b:5a:83:18:61:e6:75:05:97:
24:20:08:8f:0b:20:2b:2b:e2:08:f1:a3:54:ce:b2:
79:c1:3a:5b:1e:3f:fd:94:f2:07:88:17:b3:c1:e0:
98:be:5a:2e:80:56:11:a8:42:1f:7d:b0:a1:40:28:
35:a2:77:df:6f:e5:9c:89:fc:ed:e9:1c:a3:01:b5:
2c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:20:50:04:0A:AC:6B:D4:DA:84:66:3E:55:AF:C5:F6:9C:DD:A4:4C
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/kyBQBAqsa9TahGY-Va_F9pzdpEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.32.0/24
Signature Algorithm: sha256WithRSAEncryption
96:ab:5e:93:d1:c8:a9:fa:f0:b3:d4:97:4f:6a:31:27:59:1f:
77:93:6e:fc:46:0a:57:63:59:a5:89:72:c6:8f:b3:ca:fb:99:
9a:5b:f0:c8:39:f4:63:c9:d3:71:93:76:8f:3b:60:67:0f:ee:
33:27:f1:54:e2:ee:57:64:3c:6f:ec:4d:da:22:72:39:87:87:
18:bc:f6:f7:89:fa:70:fa:d9:b6:73:e1:08:c4:c9:fa:55:a3:
94:dd:0c:43:96:eb:a8:73:dc:e4:df:a5:ed:a0:43:0c:f1:2f:
b8:6c:37:6c:6f:70:97:08:58:d0:7f:b1:f7:0b:de:29:21:22:
72:d2:12:9d:29:e5:7f:d2:e3:d8:64:8d:43:43:18:40:83:20:
79:79:bd:f9:77:d9:c4:91:15:48:51:4e:5e:5b:a5:3c:79:18:
6d:14:1a:de:df:05:5d:59:97:bf:78:b4:97:15:d8:0c:29:dd:
25:b0:5f:9a:82:83:e5:c8:e2:f8:4e:9b:8f:4e:f6:22:38:4b:
77:85:63:28:93:b2:de:1d:54:ee:24:fa:50:c6:4a:18:7a:ab:
d2:77:32:1f:ed:56:91:a4:0f:df:54:7f:65:34:41:b1:6a:8d:
dd:ad:e0:5e:0b:3c:4e:b0:87:8c:30:24:ab:7e:4f:e4:be:14:
46:37:5c:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:19 2023 by rpki-client on console-ams.rpki-client.org