Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/HVffyVlfTSlG8W80wR2qaBF8PJc.roa
File: HVffyVlfTSlG8W80wR2qaBF8PJc.roa (raw, json)
Hash identifier: gkKsRuw3+HDJfyr4P4bfdYK7zfK0Pqs7qLUgjIkw1C0=
Subject key identifier: 1D:57:DF:C9:59:5F:4D:29:46:F1:6F:34:C1:1D:AA:68:11:7C:3C:97
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01888D559FBF9A2EB350A7C4D0134CADBDA0
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/HVffyVlfTSlG8W80wR2qaBF8PJc.roa
Signing time: Mon 05 Jun 2023 20:52:58 +0000
ROA not before: Mon 05 Jun 2023 20:52:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 5.180.233.0/24 maxlen: 24
5.180.234.0/24 maxlen: 24
5.253.38.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8d:55:9f:bf:9a:2e:b3:50:a7:c4:d0:13:4c:ad:bd:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jun 5 20:52:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d57dfc9595f4d2946f16f34c11daa68117c3c97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2d:e6:b0:22:7e:97:a6:48:9d:95:06:e3:8f:
b6:8c:99:30:1a:2f:25:ca:9d:7d:62:32:ca:76:ab:
0f:4c:00:72:aa:ed:7d:46:cb:1a:82:2c:a0:87:fe:
74:15:e6:12:91:3d:a8:7a:b2:94:74:37:12:cc:b8:
8e:2c:16:1b:c5:c8:25:a8:71:ee:4e:66:01:96:91:
01:5b:ec:30:05:ab:00:4a:a0:3e:03:88:86:03:d1:
d7:dd:28:96:80:f9:7b:35:66:f3:38:20:d6:d3:cb:
96:9f:36:f2:a2:b9:2c:fe:62:83:a8:7e:ad:58:05:
b0:67:f1:58:29:e5:9c:e4:cc:34:1b:2d:98:45:b0:
1f:b4:4a:3d:9b:07:26:6a:ad:d4:58:7e:b8:97:37:
72:c6:43:36:c7:54:49:91:fa:41:d1:a7:4b:f3:25:
29:29:42:2e:ae:cf:9a:75:44:15:76:93:39:6d:13:
78:00:f7:0a:7b:43:f5:e4:d2:d2:b3:5c:0b:a9:08:
0f:dc:84:75:2f:df:ef:d2:8d:35:3c:a4:46:5c:f3:
1b:a0:04:1d:fb:84:6c:f9:c4:45:3f:fa:5e:c1:2f:
2d:20:cb:96:47:10:86:2f:22:b7:0f:b0:7f:ed:86:
1d:d3:ed:13:c4:7e:c3:d0:6e:51:03:a4:0e:83:97:
3b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:57:DF:C9:59:5F:4D:29:46:F1:6F:34:C1:1D:AA:68:11:7C:3C:97
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/HVffyVlfTSlG8W80wR2qaBF8PJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.233.0-5.180.234.255
5.253.38.0/24
Signature Algorithm: sha256WithRSAEncryption
77:71:c1:24:e4:bd:09:78:d3:b7:bb:42:b2:5e:eb:98:3e:d8:
c9:33:10:e1:28:09:3e:da:0a:60:bc:fc:d4:bf:93:53:cd:82:
80:ed:67:0d:84:0f:26:b6:6b:5a:c4:df:85:e1:95:3b:2e:c3:
ee:70:43:ca:f5:8a:c0:11:71:ac:0f:ff:ae:8b:78:5d:34:18:
bd:5a:4d:a5:a2:b9:40:79:6d:a9:aa:63:fc:84:99:7a:51:42:
86:bd:84:02:eb:d6:3b:df:e6:8e:61:30:d7:d0:50:59:28:90:
ee:13:5c:f1:cb:3e:38:6d:fd:73:91:49:5f:81:7a:12:5a:69:
61:54:52:26:22:a1:1f:31:15:8a:0e:5b:dc:66:63:85:9f:fa:
93:99:72:1d:03:64:f7:f7:a1:15:4a:b0:d7:82:c3:4b:e2:95:
45:81:f0:4c:ca:32:31:37:6f:96:df:b8:f8:23:8b:aa:1e:ef:
26:7b:37:31:f5:af:8e:5c:72:da:39:f6:ae:64:ac:14:f5:23:
e7:27:c1:be:f8:e6:c5:42:10:8f:2d:9e:91:6d:66:46:fd:d0:
c9:4b:e8:69:6d:80:54:7e:2f:96:00:6c:ab:7a:ea:d1:29:51:
7a:b1:9b:7b:d7:f8:7b:a8:69:8c:fd:7f:41:7c:4d:7a:e3:af:
9b:d9:b1:32
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:29 2023 by rpki-client on console-fra.rpki-client.org