Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/rnBqEXEVaaH_Skleqy_BMcGDVZA.roa
File: rnBqEXEVaaH_Skleqy_BMcGDVZA.roa (raw, json)
Hash identifier: eW+Zq0a1djtp0IYB0LegBbLfT+MRj7U2stJYt6IJ/iw=
Subject key identifier: AE:70:6A:11:71:15:69:A1:FF:4A:49:5E:AB:2F:C1:31:C1:83:55:90
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0189B60EEBBDAA9ABDFC608AC3164BB75DF1
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/rnBqEXEVaaH_Skleqy_BMcGDVZA.roa
Signing time: Wed 02 Aug 2023 11:42:58 +0000
ROA not before: Wed 02 Aug 2023 11:42:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 5.180.232.0/24 maxlen: 24
5.180.49.0/24 maxlen: 24
5.180.82.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b6:0e:eb:bd:aa:9a:bd:fc:60:8a:c3:16:4b:b7:5d:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Aug 2 11:42:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae706a11711569a1ff4a495eab2fc131c1835590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:cb:6e:ff:42:44:cb:6d:c8:c6:7e:dd:86:d2:
5b:ff:cd:0f:b4:1c:9f:56:48:d0:ff:89:3f:f6:ac:
3a:4f:4c:24:61:41:df:e5:7d:db:e1:ef:ab:65:04:
91:5b:45:ee:34:4f:05:79:39:83:e3:d2:ac:e1:27:
07:7a:90:28:88:58:ae:cf:e2:de:7e:6d:b3:bd:30:
13:e5:ac:be:3f:c1:ad:7a:1a:1c:f5:dc:ff:7e:0a:
13:82:5c:92:3d:b5:c8:55:c8:a9:62:5f:c1:aa:59:
01:ea:12:f8:d9:07:5d:8d:40:2a:7e:f2:74:16:05:
c6:d5:9c:d9:d9:ca:93:a0:f5:05:b9:c0:6c:32:ad:
a7:93:f4:8d:15:1d:d5:67:ca:8e:08:24:d4:0e:55:
8a:d8:c3:32:f2:45:62:24:ba:a4:e1:0c:f1:00:4b:
25:9b:6a:93:e0:96:2c:99:d9:d3:42:9a:6d:3a:dd:
56:b2:0f:ed:e1:30:89:07:96:65:cc:94:e0:c3:76:
33:9a:50:4a:5b:0d:07:c4:56:de:90:c2:74:ac:a8:
ae:48:72:a6:4a:78:60:47:91:1a:bf:15:58:12:b8:
16:91:eb:2d:cc:0b:df:2d:f2:9c:bf:0f:9f:dc:94:
ef:d5:c2:56:c1:21:a1:f6:f0:59:3d:06:20:3e:be:
0a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:70:6A:11:71:15:69:A1:FF:4A:49:5E:AB:2F:C1:31:C1:83:55:90
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/rnBqEXEVaaH_Skleqy_BMcGDVZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.49.0/24
5.180.82.0/24
5.180.232.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:35:dc:ec:f8:f0:a7:02:ad:4c:99:1f:26:ae:1d:51:81:96:
31:6d:63:6d:1c:57:cc:b2:b7:73:ca:90:c2:b4:12:55:44:f6:
0d:cf:fd:49:e6:f1:d5:07:25:97:fa:6a:e9:36:4f:1a:65:a5:
2c:13:a2:bc:ee:53:5b:dd:63:0c:4b:10:66:9d:6d:e6:87:5f:
3d:41:b6:a3:11:48:7d:d6:f0:28:f1:0b:32:cc:54:d0:a3:b0:
db:15:a0:8b:18:1a:fa:aa:53:aa:b5:a1:c4:9f:47:e7:ef:c9:
e1:83:96:76:f7:65:d3:54:77:f3:cf:e4:94:66:2c:ab:c9:e7:
74:cc:85:72:f5:da:62:59:7b:02:b3:71:97:68:e0:55:fe:6f:
99:88:f0:be:72:cc:0d:46:c6:95:db:96:d7:53:24:22:48:9e:
f6:31:f8:5d:50:0c:fd:55:57:e7:0d:6e:89:bc:f9:51:70:6c:
dd:40:bd:06:b5:b4:ca:f7:40:7c:7c:bc:97:e1:28:8d:5b:64:
e6:a2:50:98:79:74:24:4d:a4:87:b2:d4:d7:2a:21:63:d8:2f:
b1:bb:0e:8e:22:4e:4b:e4:fd:02:35:9f:bf:4c:82:68:c0:97:
f8:35:0f:7d:73:c0:48:2b:94:7b:34:31:61:59:80:fe:7b:f7:
e2:7f:54:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 3 09:01:59 2023 by rpki-client on console-fra.rpki-client.org