Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/miK9FQx1P7zl3914ipB2ZuHy-A4.roa
File: miK9FQx1P7zl3914ipB2ZuHy-A4.roa (raw, json)
Hash identifier: aAyuwAVRDkcTgn81wUudIelhbSDz7x2bwhtcNn/XUGw=
Subject key identifier: 9A:22:BD:15:0C:75:3F:BC:E5:DF:DD:78:8A:90:76:66:E1:F2:F8:0E
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 0185DEA50FE0A427C5E9B31C1C4689C94A25
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/miK9FQx1P7zl3914ipB2ZuHy-A4.roa
Signing time: Mon 23 Jan 2023 12:40:37 +0000
ROA not before: Mon 23 Jan 2023 12:40:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44400
IP address blocks: 5.57.37.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:de:a5:0f:e0:a4:27:c5:e9:b3:1c:1c:46:89:c9:4a:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Jan 23 12:40:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a22bd150c753fbce5dfdd788a907666e1f2f80e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:af:56:95:6a:59:10:b4:b9:eb:13:09:dc:74:
96:9b:92:08:63:3d:76:60:13:c2:3c:6f:bc:04:38:
92:9f:fc:69:7c:d7:46:bb:05:bf:8d:e3:43:f8:cf:
46:5f:76:68:ba:35:a1:e2:c2:b8:e5:cf:ee:85:a8:
16:59:0c:ae:a7:f0:9c:b6:53:3c:8e:84:a9:e7:ad:
9a:8e:fe:6f:38:90:1e:03:e1:ab:11:b3:4e:05:60:
42:26:e1:af:df:2b:3d:78:56:2c:1e:ae:45:b6:45:
49:86:97:55:c3:43:0e:e3:24:7c:64:ea:43:ca:54:
ce:eb:20:a8:55:45:9f:5f:f9:2d:b6:5b:0a:a3:af:
26:1b:13:97:8f:6b:18:b8:17:03:b5:8e:74:71:63:
86:8c:86:9d:3c:c1:43:25:2f:29:84:bc:37:95:36:
85:c6:25:9e:cd:6c:bd:37:7e:6d:83:a2:96:e7:c6:
2a:95:42:ce:37:39:0d:c6:34:8b:b8:f2:e2:0f:c8:
08:a0:6e:5e:d3:e8:15:b6:45:d7:3d:32:09:c3:d3:
3c:b3:ee:9a:e6:49:58:23:26:e0:68:c8:85:db:48:
aa:4b:43:a1:16:63:9b:30:03:9d:51:a7:a2:5b:7a:
bb:3c:1e:1e:7d:5b:95:3c:5c:1e:32:37:74:5b:77:
12:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:22:BD:15:0C:75:3F:BC:E5:DF:DD:78:8A:90:76:66:E1:F2:F8:0E
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/miK9FQx1P7zl3914ipB2ZuHy-A4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.37.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:04:a9:20:a7:04:e4:e7:df:96:cc:0d:23:20:d5:41:50:3a:
70:a9:86:c7:54:24:b3:33:cf:94:77:c0:21:29:1c:db:34:1a:
7a:df:ed:dd:77:8a:d0:8b:d7:03:3f:25:6b:93:66:c0:8b:09:
15:9a:bf:53:3e:d4:7c:1d:03:b0:83:8d:ec:22:f1:58:20:55:
c4:aa:17:70:85:52:a5:14:16:43:6a:a8:ee:80:0b:39:c4:6b:
e6:c1:22:53:88:41:74:91:6d:33:8c:a3:c5:cd:89:08:3e:38:
dd:4c:3f:c1:f0:47:6d:94:df:5b:36:d4:bd:9e:a6:a8:a7:99:
af:48:86:ee:dc:cc:07:e1:60:b0:07:00:01:17:b7:7f:6a:bc:
bb:1d:32:09:5b:5d:ff:f6:df:7f:a7:12:17:a7:57:51:4e:90:
7f:43:4a:af:e9:f2:34:16:79:9f:6f:ea:c9:e6:29:d6:64:1f:
98:a2:d0:12:9a:d3:18:c4:b4:10:88:c8:21:55:52:bd:9f:db:
f6:6d:8f:09:48:90:48:5c:89:33:38:19:75:99:38:e4:46:52:
32:46:4a:9b:70:d6:39:52:84:34:db:16:5e:ae:0d:cd:d9:be:
ca:90:7c:20:0d:79:5b:9b:bb:3e:b7:0d:b9:52:ac:9f:31:53:
bf:93:f4:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:19 2023 by rpki-client on console-ams.rpki-client.org