Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/DFyC1nYtFysZElIdvY93Z6H6yXA.roa
File: DFyC1nYtFysZElIdvY93Z6H6yXA.roa (raw, json)
Hash identifier: jyOMZ4DJM54SYHaGLyb0FR1/JFfoP2yvw5NwqZkS34E=
Subject key identifier: 0C:5C:82:D6:76:2D:17:2B:19:12:52:1D:BD:8F:77:67:A1:FA:C9:70
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018C6C96867196D507667118024F8635D2EC
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/DFyC1nYtFysZElIdvY93Z6H6yXA.roa
Signing time: Fri 15 Dec 2023 08:27:33 +0000
ROA not before: Fri 15 Dec 2023 08:27:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 5.180.234.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6c:96:86:71:96:d5:07:66:71:18:02:4f:86:35:d2:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Dec 15 08:27:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c5c82d6762d172b1912521dbd8f7767a1fac970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a5:7d:e6:00:bb:6d:08:4d:e1:7b:3f:2d:1d:
f9:fa:df:fc:ef:7d:52:a0:db:4e:e4:77:52:98:91:
de:a2:9a:ae:6e:34:60:8b:00:3f:61:48:7d:c4:77:
5d:8b:83:c1:91:b9:4a:10:18:12:47:df:35:bb:9b:
4c:04:59:d6:c6:a8:bb:a7:71:09:64:28:c9:62:0a:
1d:fd:3b:37:90:30:d4:f7:fa:7a:10:8d:b8:b7:d5:
24:2e:88:dd:fb:f4:41:a6:e4:da:bc:ff:b1:0c:ea:
d2:63:d0:8d:4c:ce:b2:08:ba:cf:ae:57:73:ac:a7:
84:5b:76:90:8c:c3:5d:78:d8:32:ef:8a:96:09:a5:
e6:06:1d:50:a9:32:ca:81:79:5e:7b:e3:15:42:1d:
d5:5d:cc:67:67:50:45:d0:74:9f:1e:b4:0c:b3:95:
8e:1a:89:d1:74:2a:3b:9e:c1:99:b9:ec:82:a0:78:
6b:fb:4f:b0:3e:7a:21:d2:7b:9b:1f:5b:67:e5:d6:
06:ae:9e:dc:54:9f:04:2e:72:95:52:7f:e5:4f:dd:
e2:d9:60:3f:31:aa:0c:ca:6f:15:b7:94:86:a1:86:
32:3b:d8:df:57:c8:85:5a:5d:0d:c5:1f:b8:0a:9c:
d7:d3:4b:b2:4b:92:63:7b:eb:7a:2a:82:1d:5c:04:
ca:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:5C:82:D6:76:2D:17:2B:19:12:52:1D:BD:8F:77:67:A1:FA:C9:70
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/DFyC1nYtFysZElIdvY93Z6H6yXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.234.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:06:24:52:e0:18:53:91:fd:a6:21:69:24:f7:44:ea:c9:f9:
ae:07:71:4f:44:94:23:9d:2e:80:67:46:d6:ec:36:01:e2:4f:
10:95:2d:2b:89:4f:71:c8:34:b7:9d:62:5f:a5:11:f6:88:58:
37:71:48:21:bd:89:ad:8b:63:c3:b2:b9:ae:48:0d:ff:75:67:
d1:44:19:5b:01:a3:cb:49:02:14:28:30:90:bf:3c:69:95:e2:
3f:6f:30:2f:b8:b8:94:06:70:3e:c4:a0:b7:20:13:1d:f7:a9:
d4:6c:e3:01:8d:7f:e4:76:3e:61:a9:a8:44:ea:b6:c5:8e:bc:
db:a6:8f:fe:1f:bd:96:e2:91:11:1a:a7:9b:85:a8:2a:5d:99:
63:df:6e:f9:84:28:33:69:8b:b4:9e:72:b5:4a:39:95:8b:86:
e0:3d:2e:47:9a:b4:4b:53:9d:ab:bc:1a:a9:84:15:b8:89:ae:
ed:ba:7c:97:a6:ac:80:b9:f5:58:c7:12:8f:b9:91:66:88:ab:
44:f3:64:37:ca:cf:28:71:c4:3e:01:4c:90:59:5e:1b:7c:de:
db:fc:f5:36:b6:c2:41:8b:af:c4:8c:24:71:cf:cd:f3:1f:55:
77:97:88:e8:2b:a6:2a:5c:92:53:c3:67:eb:b4:8d:c6:ea:55:
a7:81:bb:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Dec 16 16:15:58 2023 by rpki-client on console-ams.rpki-client.org