Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/QEjarKox106v_9UrJFDb2nUbdx4.roa
File: QEjarKox106v_9UrJFDb2nUbdx4.roa (raw, json)
Hash identifier: 7omOWwcJUt5+CZsenxwU8UpRhImG+L6b7S3emqliLUw=
Subject key identifier: 40:48:DA:AC:AA:31:D7:4E:AF:FF:D5:2B:24:50:DB:DA:75:1B:77:1E
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 01856CAF4491211B2E112EB6DA4A3D326B8C
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/QEjarKox106v_9UrJFDb2nUbdx4.roa
Signing time: Sun 01 Jan 2023 09:35:03 +0000
ROA not before: Sun 01 Jan 2023 09:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213365
IP address blocks: 5.133.64.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:44:91:21:1b:2e:11:2e:b6:da:4a:3d:32:6b:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Jan 1 09:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4048daacaa31d74eafffd52b2450dbda751b771e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:75:dd:88:da:7b:b5:4c:7a:66:bf:7f:48:7c:
62:fe:48:87:9c:1e:0d:5e:0f:82:51:85:b8:70:93:
2e:d6:82:5d:f7:09:d0:16:4f:93:48:19:e6:96:42:
32:b1:8c:ab:ff:02:de:e4:14:95:34:5d:37:3f:c6:
32:2e:a2:4d:d5:f4:0d:f9:ee:40:4f:26:d4:2b:2d:
14:80:bb:80:ea:5b:9f:33:f6:f6:ef:4d:29:e4:bb:
d9:24:f9:d3:d5:5f:1f:0a:49:b5:20:c8:d4:08:05:
2e:e0:04:cb:c1:c1:c3:c0:c6:e6:cb:a6:7d:ca:28:
16:9d:9a:ce:fc:56:be:e6:7c:27:49:db:ec:02:26:
1f:9d:ef:05:2a:a5:a5:d6:1d:4a:82:44:36:27:25:
ce:e4:de:d1:26:5e:a7:86:e5:b5:31:01:54:5a:e5:
93:0c:81:09:f8:75:11:ab:4b:83:d0:76:3e:2e:f3:
ea:18:fd:63:78:85:53:54:cd:72:9e:05:75:2a:8e:
0a:63:bc:55:10:fc:e1:b3:ee:31:53:c0:90:a4:98:
b5:94:94:10:33:46:9d:45:1c:ec:e9:4e:87:87:32:
0b:6b:e3:8d:40:d7:dd:11:53:7f:36:f3:e0:13:a1:
35:24:f3:75:cd:83:08:6f:69:3a:e3:8b:cd:7e:59:
60:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:48:DA:AC:AA:31:D7:4E:AF:FF:D5:2B:24:50:DB:DA:75:1B:77:1E
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/QEjarKox106v_9UrJFDb2nUbdx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.64.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:c1:31:7b:c3:ed:07:98:ff:3a:f8:af:a5:94:20:42:87:e8:
eb:ce:62:67:4b:80:f0:05:47:54:e4:2b:68:6e:c3:5d:4c:27:
64:ac:52:50:5d:03:58:e5:32:e4:bb:dd:22:0d:76:9b:58:f3:
1c:99:b7:c9:96:7f:fb:f6:3e:dd:cd:c1:23:4a:14:d3:c4:e3:
a1:7c:95:b8:8e:2b:17:a0:b8:32:58:09:0e:48:21:c9:28:14:
4e:72:a4:7a:21:c5:59:e3:e9:f2:1e:f1:fb:00:e7:ce:c6:de:
72:79:30:d7:da:9d:ee:a7:90:13:a7:8b:fe:9e:3b:ae:22:83:
5b:d8:7d:7a:1e:e1:b2:b5:75:a2:f3:a4:8f:6b:d2:aa:7a:b8:
ce:e1:8d:c6:98:a6:d7:e4:99:09:1b:c9:77:80:c2:f2:b8:96:
fd:c4:24:8a:47:f7:dc:72:25:3d:f7:f0:b3:b0:7f:2e:98:8b:
f5:3f:e9:dc:01:26:55:7b:04:84:89:88:e1:f7:43:53:59:86:
0e:ea:66:14:d9:72:2a:96:aa:f6:d3:5f:1a:2b:f6:05:b0:b9:
80:73:71:bd:78:2d:73:cc:d5:dd:bc:8e:44:33:b4:97:13:21:
ba:2e:2f:07:e1:c9:f5:fa:02:13:a4:e5:96:ca:ff:73:27:39:
f7:0c:ec:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:35:31 2024 by rpki-client on console-ams.rpki-client.org