Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/9w_W19sTWTs7oUmwR14Mm9A2t7o.roa
File: 9w_W19sTWTs7oUmwR14Mm9A2t7o.roa (raw, json)
Hash identifier: XnWRXseetTro3nhuBUKL+2NhK5DU10CRcN7dje6liuY=
Subject key identifier: F7:0F:D6:D7:DB:13:59:3B:3B:A1:49:B0:47:5E:0C:9B:D0:36:B7:BA
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 01859F90182D6448E4E0E04F825922128E98
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/9w_W19sTWTs7oUmwR14Mm9A2t7o.roa
Signing time: Wed 11 Jan 2023 06:41:38 +0000
ROA not before: Wed 11 Jan 2023 06:41:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 5.249.188.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9f:90:18:2d:64:48:e4:e0:e0:4f:82:59:22:12:8e:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Jan 11 06:41:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f70fd6d7db13593b3ba149b0475e0c9bd036b7ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:89:28:45:95:83:c7:e7:02:59:8d:33:eb:06:
ac:8d:d4:dd:57:df:41:77:65:fd:d7:f8:1d:b6:38:
c2:a2:fe:c2:1b:37:61:f8:90:3b:ef:16:83:33:f7:
a3:12:cf:03:62:4b:9f:d9:51:b2:85:2f:d6:12:16:
8a:ae:9d:ab:0a:6c:d9:3e:50:73:a3:70:d9:eb:a4:
e6:93:cb:15:99:fa:19:62:b3:b1:9e:8e:97:0d:c3:
6f:48:60:3a:16:94:28:e6:de:38:4c:c0:88:89:e4:
32:62:32:a5:d6:8a:0f:42:47:cb:2c:80:30:2d:26:
f3:d4:7d:c9:e8:a5:28:a1:28:1d:b8:c9:de:03:69:
0d:8d:32:aa:dd:8e:9b:ed:00:73:cd:db:7c:7b:24:
40:38:8d:e2:a8:84:af:6b:8f:9f:73:28:21:32:fb:
cf:1a:1a:7f:24:1f:e7:92:2f:fb:fe:fb:a4:b5:de:
95:30:a0:98:28:84:06:04:52:7a:cf:72:2a:80:02:
a5:3a:1e:fa:dd:d8:64:82:20:2b:db:c9:14:5f:de:
9f:11:03:81:bf:6c:52:c9:9e:e8:57:ba:8b:1e:4c:
fc:44:2b:6f:1b:53:31:d6:23:f7:0f:cb:06:c0:16:
47:ab:b5:11:37:ff:10:f0:07:fd:44:8c:e9:10:47:
99:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:0F:D6:D7:DB:13:59:3B:3B:A1:49:B0:47:5E:0C:9B:D0:36:B7:BA
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/9w_W19sTWTs7oUmwR14Mm9A2t7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.249.188.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:5c:ae:fc:2f:27:5c:7c:cf:0c:23:1d:43:67:a6:a9:fe:ad:
15:6d:99:ee:ae:38:ad:fc:59:5a:d5:19:56:9f:06:6f:8a:39:
3f:7e:79:02:18:e4:07:06:6a:1b:22:2d:41:d9:5f:9e:b9:ba:
71:45:07:ae:af:cc:58:1b:6c:67:c9:8e:68:88:48:ad:0f:8a:
77:1c:08:76:e3:0b:b3:2c:d4:59:11:84:4c:a9:75:15:21:f1:
e6:7a:ae:bd:f0:f3:a8:66:59:4f:63:20:ae:01:10:6a:5b:e9:
b7:e8:cb:91:89:65:dc:18:8e:7d:27:7e:92:d6:14:fa:ea:a9:
1c:49:01:7d:7e:16:51:21:68:07:6d:2e:1e:81:5e:14:14:d4:
3f:7a:91:1e:1e:d9:df:52:ef:fd:23:41:0d:a0:62:99:9a:40:
4e:f6:b8:e5:b9:6b:e0:c4:29:d8:76:a8:5f:04:73:4c:35:97:
5b:7e:cc:f7:9c:72:38:b1:c0:34:97:c2:cc:ab:33:3c:7c:08:
cc:12:78:58:c1:ba:3f:c6:00:ca:92:70:4e:4b:f5:a5:bc:1b:
f3:36:8f:f5:41:63:c6:9f:a6:55:a1:c0:1d:1f:f5:99:19:af:
3a:ca:7a:87:59:a3:c6:74:c5:7e:4e:88:c2:47:89:88:67:12:
0f:e4:5a:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 17 12:42:56 2023 by rpki-client on console-fra.rpki-client.org