Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/HJCYG59X4hXzZOMdjXZdvZBbqEg.roa
File: HJCYG59X4hXzZOMdjXZdvZBbqEg.roa (raw, json)
Hash identifier: j5UVgSbXjEtJLOBTDjlefWELx0Ei1KYI+wfR6zpdHR8=
Subject key identifier: 1C:90:98:1B:9F:57:E2:15:F3:64:E3:1D:8D:76:5D:BD:90:5B:A8:48
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018B1FC0917200EA2E24548D6153420B1FDB
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/HJCYG59X4hXzZOMdjXZdvZBbqEg.roa
Signing time: Wed 11 Oct 2023 17:19:55 +0000
ROA not before: Wed 11 Oct 2023 17:19:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54252
IP address blocks: 5.180.82.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1f:c0:91:72:00:ea:2e:24:54:8d:61:53:42:0b:1f:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Oct 11 17:19:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c90981b9f57e215f364e31d8d765dbd905ba848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:4a:31:ff:fa:ab:15:7f:1d:32:59:a0:76:36:
ce:5a:72:71:12:5b:af:4f:fb:98:d4:7f:2f:dd:b7:
8c:b8:8c:de:fa:49:28:cb:b1:cd:d1:cf:62:23:69:
83:8b:65:08:57:9d:ae:ba:82:5c:0c:85:ac:e3:8e:
bf:33:be:74:09:d5:05:a5:9a:43:2f:49:3d:c2:f7:
42:67:f9:a3:9e:c5:09:c6:38:47:c8:93:3e:70:e7:
48:6d:d4:22:fa:b9:ce:d2:dd:ff:92:12:68:c8:b7:
ac:ad:8c:b1:ca:82:ac:8b:d9:7a:06:6d:1c:67:3a:
87:3e:26:db:62:71:90:42:ce:b7:94:c8:8a:17:4d:
fd:60:ad:4b:83:05:00:47:f4:3b:7c:3e:0e:6b:29:
76:bc:f7:aa:25:6b:cb:1a:43:25:06:aa:50:80:a1:
5c:de:bd:88:0a:36:dd:89:72:e3:7f:df:cf:a1:1d:
7d:9c:29:1d:66:48:47:59:c3:5d:02:d8:a4:af:3d:
8f:f3:e9:76:62:a0:42:ee:af:d9:d1:9f:4b:65:74:
9e:b9:c4:03:db:ed:11:58:9f:a5:5c:8d:9b:6b:45:
71:09:c3:c9:79:3b:69:50:92:2f:04:b0:29:1e:81:
d2:29:60:5f:da:10:e3:d2:dd:17:70:fa:03:91:d5:
2d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:90:98:1B:9F:57:E2:15:F3:64:E3:1D:8D:76:5D:BD:90:5B:A8:48
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/HJCYG59X4hXzZOMdjXZdvZBbqEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.82.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:4e:fb:da:a8:58:38:77:6e:8e:03:47:60:ac:aa:70:74:a6:
cc:5e:99:f8:14:2e:8a:ad:05:4b:93:b9:fe:3b:80:8d:fd:15:
b8:29:ba:06:b3:b4:d1:09:8b:49:97:26:11:50:34:d2:dc:a8:
fc:ef:ca:40:2e:73:5c:75:90:65:9a:41:55:f2:f6:cb:9e:3c:
a3:77:55:bd:bb:75:55:23:45:f4:54:4e:8d:0c:d3:87:ac:06:
28:33:e3:0e:4e:ad:8d:f8:e0:9c:c6:f4:23:38:ad:6d:60:ec:
16:47:28:a3:3f:3f:23:a9:26:fe:5e:18:2d:9c:b2:23:c0:c6:
26:af:c9:a8:ef:bd:6f:43:6e:08:a5:78:40:1d:5c:56:b9:8a:
2c:4a:c3:48:8c:3d:4d:f3:1f:1c:fe:fc:29:36:22:71:64:cd:
0c:4e:18:38:32:02:ac:b0:d0:f7:fe:8d:43:4c:d8:77:56:98:
29:4c:4e:02:98:72:f6:37:90:1a:d6:66:67:f9:c2:02:ca:6f:
2c:90:a2:37:06:6d:ef:2a:92:7e:4d:1c:ee:3a:93:eb:d1:e1:
58:db:3d:28:2e:76:6d:21:8a:5a:db:9c:a4:21:3b:4d:e6:27:
bd:f0:22:d1:a1:fa:d1:75:bf:d1:19:55:33:5c:69:e5:30:04:
fc:03:a1:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:02:03 2024 by rpki-client on console-ams.rpki-client.org