Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/78N44gEryIvUGhrMGSRUrZypBxY.roa
File: 78N44gEryIvUGhrMGSRUrZypBxY.roa (raw, json)
Hash identifier: xecLixyrIPHIzkQ4upxbYn1JAiIOytl0nhjlKe+bPlE=
Subject key identifier: EF:C3:78:E2:01:2B:C8:8B:D4:1A:1A:CC:19:24:54:AD:9C:A9:07:16
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0189DEB4D08B084457B672EF98BB0B132888
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/78N44gEryIvUGhrMGSRUrZypBxY.roa
Signing time: Thu 10 Aug 2023 09:08:59 +0000
ROA not before: Thu 10 Aug 2023 09:08:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211826
IP address blocks: 5.253.46.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:de:b4:d0:8b:08:44:57:b6:72:ef:98:bb:0b:13:28:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Aug 10 09:08:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=efc378e2012bc88bd41a1acc192454ad9ca90716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:60:f3:b9:a3:b7:4d:bc:0a:1d:99:a0:ba:2a:
c3:94:2a:46:2b:bc:93:2f:b0:78:d6:77:ee:03:ef:
75:23:fd:a8:ec:7d:9d:c0:bb:a0:50:c1:88:77:ec:
93:aa:f1:00:68:14:ea:0e:24:2e:9d:94:71:a4:17:
fb:75:13:62:be:75:ad:fe:6b:0d:d2:5d:30:1c:94:
2e:77:09:5a:79:44:67:c2:a9:e2:bc:76:9c:cd:83:
c0:f7:24:0c:49:84:2f:3b:c5:57:e6:f8:81:61:a2:
40:81:60:5f:60:64:61:63:eb:d5:01:63:45:03:a1:
22:23:6e:8c:7e:98:53:8b:c7:76:ec:75:da:21:f1:
68:a1:79:97:ae:e9:6a:ab:86:c9:bb:82:fd:ec:6b:
87:fa:d2:c7:a9:29:57:b5:f1:87:70:f7:f3:f0:d1:
5d:58:65:c2:0d:fa:3c:0f:b7:bd:eb:4a:a9:b8:1c:
ba:6b:c9:8f:0f:f1:03:d4:0e:f4:aa:ff:d9:85:4a:
50:1e:71:d3:b1:b8:fe:23:10:89:e7:e5:80:6a:3d:
30:46:3a:58:36:5c:5c:ef:65:19:75:45:85:f6:24:
7e:02:64:d4:2e:21:79:e3:13:62:5f:48:ac:fe:e4:
6f:23:f8:e3:88:f5:cc:84:2e:90:c4:8a:15:0d:1b:
2d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:C3:78:E2:01:2B:C8:8B:D4:1A:1A:CC:19:24:54:AD:9C:A9:07:16
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/78N44gEryIvUGhrMGSRUrZypBxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.46.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:b2:31:0a:f7:b6:ce:59:fe:e2:01:15:ac:e5:a9:17:38:5e:
35:87:ff:f0:20:9f:4d:90:a8:a8:21:56:1e:1e:df:aa:5e:36:
e9:af:8b:6d:ca:83:0d:52:bd:58:3e:e6:42:fd:73:df:79:74:
ab:fa:1c:63:c9:5e:52:e5:96:1a:bd:0a:19:26:8d:38:8d:6d:
7f:93:bf:0b:1a:bd:79:c1:1d:7b:18:60:9b:9c:6f:aa:db:58:
f3:18:a9:63:71:f9:7c:8e:41:58:e3:76:fb:3d:ef:3d:1f:60:
00:f5:ab:33:c6:6d:9f:6d:90:26:0c:58:54:ea:14:98:c7:5d:
18:5b:0b:40:37:3c:2e:59:fb:f4:db:67:e3:58:95:e5:3f:16:
58:95:8e:65:54:3a:42:6b:3e:8f:4d:4a:2f:62:17:fb:3a:b0:
5b:71:cf:54:f6:13:4c:e3:4e:69:4f:f1:4e:64:99:97:bb:b9:
64:1e:b4:a4:dc:79:21:ac:42:eb:78:60:84:80:16:16:9c:d4:
80:5a:4a:d8:58:80:84:fa:b3:c1:87:f9:6b:82:f1:35:61:1e:
69:39:88:d3:34:ea:6e:e0:38:5e:3e:4d:9e:b8:17:29:3e:5d:
ec:d7:f3:46:26:c8:f1:df:8b:f8:97:6c:95:eb:29:40:0a:da:
a0:3f:3e:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:20:17 2024 by rpki-client on console-fra.rpki-client.org