Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/U8JyrR_U7R3kRkZr0ROqDDEAnc4.roa
File: U8JyrR_U7R3kRkZr0ROqDDEAnc4.roa (raw, json)
Hash identifier: FAg5kMIObYgJ5z2M0LLSWQeBy01FHjy3Mk3hqp2GdRg=
Subject key identifier: 53:C2:72:AD:1F:D4:ED:1D:E4:46:46:6B:D1:13:AA:0C:31:00:9D:CE
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018A8D98B66F06B6E5D5097219CF857FA0CE
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/U8JyrR_U7R3kRkZr0ROqDDEAnc4.roa
Signing time: Wed 13 Sep 2023 08:11:50 +0000
ROA not before: Wed 13 Sep 2023 08:11:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 5.253.38.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8d:98:b6:6f:06:b6:e5:d5:09:72:19:cf:85:7f:a0:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Sep 13 08:11:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53c272ad1fd4ed1de446466bd113aa0c31009dce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3e:43:cf:00:ba:1a:0d:5e:82:7d:3f:d9:cb:
24:ec:cd:00:11:21:53:94:45:b9:e9:c2:68:b8:04:
11:6c:4e:b5:4d:c2:3e:ba:2d:d6:df:5a:d5:f1:e4:
69:3a:03:38:24:39:6e:1e:94:9c:f6:1d:8d:ee:f3:
31:46:9d:b7:23:85:cd:6f:df:ac:d6:0d:f1:84:a5:
6f:af:fd:75:a0:d7:d4:81:ce:dc:60:e9:18:94:08:
2a:e2:fe:3e:2f:2f:d0:0a:9e:a6:02:91:96:23:65:
58:01:fb:85:86:17:5c:6e:a4:64:71:82:55:a8:66:
b3:5b:f8:1d:cf:02:ce:9c:c2:8e:09:52:a8:cb:cd:
fd:d4:a0:2e:38:57:10:65:2d:c5:9a:53:07:23:3e:
5e:a2:0c:9a:99:7b:e1:b2:9f:5a:4e:13:ed:81:7a:
af:75:99:51:92:2a:99:4e:c7:14:d2:d3:e3:fd:c4:
ee:b5:b8:0e:59:b1:6e:3f:35:52:24:f9:de:e5:d0:
82:09:0c:a8:6b:d0:21:d4:1f:40:3a:47:e7:10:b3:
f1:19:cb:e1:9e:00:ae:34:b5:86:b5:95:92:37:76:
13:86:6e:fd:09:d0:61:06:73:84:fb:8f:e7:1e:49:
fe:8a:96:94:3a:af:44:bf:ba:e5:bf:4d:55:8d:e6:
4c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:C2:72:AD:1F:D4:ED:1D:E4:46:46:6B:D1:13:AA:0C:31:00:9D:CE
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/U8JyrR_U7R3kRkZr0ROqDDEAnc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.38.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:8c:e2:b2:3b:17:ea:0d:e5:e9:b6:07:6f:b8:3f:a2:b2:07:
34:e9:21:1a:38:33:b0:c6:ca:97:b3:4e:63:3a:5e:c1:59:2c:
7b:dc:2a:e6:f2:23:65:dc:2c:5d:7e:46:9e:c6:88:87:b8:5b:
d9:68:54:ba:f1:47:d5:ba:6a:50:04:af:f6:11:51:20:f9:2e:
7a:d7:52:13:0a:12:e9:53:43:6a:01:56:93:b8:8e:3e:e6:2b:
2d:aa:0e:b3:55:3d:be:97:c3:51:75:ab:76:5a:55:9d:ce:45:
09:58:ba:ca:9c:62:07:6d:ef:fa:9f:13:08:41:98:10:fd:da:
cb:48:c8:58:c9:ee:63:25:10:cc:71:bb:69:b8:55:73:18:40:
fd:02:c4:e6:72:f9:b2:e7:76:ed:ff:c2:53:5b:c1:37:22:5a:
0f:15:7e:4c:e5:33:42:15:ed:03:08:d3:18:3b:06:53:f3:b1:
81:d5:3f:0d:8c:9f:79:8f:d1:5f:9b:2a:30:03:34:37:4f:46:
e9:ee:8d:15:91:41:89:d2:be:6d:ec:cd:46:a6:73:65:c0:35:
d2:8d:6a:21:8b:91:fd:b3:71:21:08:b6:c8:e0:e9:31:7c:31:
15:8a:f3:5e:21:af:0b:c9:42:6a:86:1f:06:cc:25:8d:32:38:
bb:0a:0c:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 16 18:54:55 2023 by rpki-client on console-fra.rpki-client.org