Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/28519f-dc48-4f31-a35e-99ee4a8985c3/1/VJfy1sK4fF4744bZ798vGHFee30.roa
File: VJfy1sK4fF4744bZ798vGHFee30.roa (raw, json)
Hash identifier: TpH2UrIEMCWqjedJi6JyGtN3379Xe0G8KfhBD6ZOV+Q=
Subject key identifier: 54:97:F2:D6:C2:B8:7C:5E:3B:E3:86:D9:EF:DF:2F:18:71:5E:7B:7D
Certificate issuer: /CN=ef739c0c04a4271b5aad62c119229e18fada5fd3
Certificate serial: 01856C2ECB6655A155111E7FC0BF0CA9D7E8
Authority key identifier: EF:73:9C:0C:04:A4:27:1B:5A:AD:62:C1:19:22:9E:18:FA:DA:5F:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/73OcDASkJxtarWLBGSKeGPraX9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/28519f-dc48-4f31-a35e-99ee4a8985c3/1/VJfy1sK4fF4744bZ798vGHFee30.roa
Signing time: Sun 01 Jan 2023 07:14:44 +0000
ROA not before: Sun 01 Jan 2023 07:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 193.5.56.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:2e:cb:66:55:a1:55:11:1e:7f:c0:bf:0c:a9:d7:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef739c0c04a4271b5aad62c119229e18fada5fd3
Validity
Not Before: Jan 1 07:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5497f2d6c2b87c5e3be386d9efdf2f18715e7b7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ed:38:a3:7a:1f:45:b9:5f:b6:7d:ba:39:ad:
2a:fe:d7:e7:1b:92:ae:33:d9:02:94:f8:da:15:3d:
00:08:d1:ff:a4:c6:b8:1d:63:9c:c8:0a:65:47:fe:
2f:82:ae:a6:5c:7b:d5:55:91:1c:0e:5f:b4:34:d7:
29:60:38:69:c0:c3:1d:77:66:0a:0e:2f:74:18:50:
b2:19:83:f9:83:80:9d:33:56:01:d9:1f:62:0d:10:
cb:40:b9:b4:06:40:5e:72:b9:fe:6d:a6:b4:c9:1a:
2d:2c:56:24:53:aa:d3:85:12:6b:20:63:70:79:ce:
90:8a:a1:bb:f5:70:7a:b1:5e:0f:57:19:60:c8:e7:
ff:72:e7:18:f2:37:cf:e7:91:79:4f:7d:28:3d:5c:
e7:36:35:8a:12:30:f8:ef:1f:a5:ef:8e:72:d3:35:
ea:f2:a6:e1:70:34:ae:bd:41:06:92:56:47:16:73:
de:d0:47:04:47:97:ca:d1:1b:d2:a1:43:90:24:b7:
56:d9:55:39:36:58:66:ec:c7:15:48:76:36:92:7f:
e0:cd:0e:fc:4a:b7:17:cc:97:c1:90:fb:55:28:1d:
6d:bd:0a:e0:37:c6:f2:8a:95:6c:16:24:97:7a:15:
43:1b:b6:4a:07:3e:ce:d3:b8:34:d2:ff:68:0e:41:
c6:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:97:F2:D6:C2:B8:7C:5E:3B:E3:86:D9:EF:DF:2F:18:71:5E:7B:7D
X509v3 Authority Key Identifier:
keyid:EF:73:9C:0C:04:A4:27:1B:5A:AD:62:C1:19:22:9E:18:FA:DA:5F:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/73OcDASkJxtarWLBGSKeGPraX9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/28519f-dc48-4f31-a35e-99ee4a8985c3/1/VJfy1sK4fF4744bZ798vGHFee30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/28519f-dc48-4f31-a35e-99ee4a8985c3/1/73OcDASkJxtarWLBGSKeGPraX9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.56.0/23
Signature Algorithm: sha256WithRSAEncryption
65:b5:f6:f7:04:3d:62:87:90:ec:7c:99:7d:08:41:75:81:7e:
ff:86:cb:64:4d:d4:44:e7:8a:13:db:36:8e:aa:d8:fd:00:c4:
93:91:e0:6a:4b:14:8b:51:76:da:31:84:d5:8b:ab:fd:95:d2:
f1:f6:dd:b9:06:16:b7:c8:b8:f9:ce:24:c7:f3:00:01:4c:1c:
83:22:ef:cb:d7:31:25:f5:65:ef:a6:ec:c8:20:22:21:6d:57:
86:fd:1a:34:36:46:25:8e:6b:a6:e7:1e:a6:28:d6:6f:7a:42:
fb:8a:94:fb:d1:1b:e8:50:e7:c3:f2:b0:8c:c8:6b:b5:65:bf:
28:6a:80:10:51:9c:f1:0d:42:a4:94:83:e3:30:9b:fa:f8:3d:
ec:e2:3e:f2:3c:b6:a5:fe:ea:ee:dc:0e:c9:56:e4:e9:a1:d4:
5a:30:c5:f0:f6:75:b5:86:90:ea:71:ac:00:5e:a1:a6:47:d8:
1e:26:58:e1:30:10:af:ed:b6:62:04:ce:23:43:9f:31:2a:4f:
35:1c:5a:7a:5a:57:ca:28:d3:00:75:1f:ad:a5:59:17:db:74:
61:34:0c:bc:d7:68:54:54:ab:52:2b:81:61:11:55:09:ed:bf:
f0:29:01:22:df:9a:26:e9:dc:b3:88:28:81:e3:e0:be:4f:ac:
f2:b7:6e:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:33 2024 by rpki-client on console-ams.rpki-client.org