Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/Y4A2SdalMWXt9UhIK3w02vQ7f2c.roa
File: Y4A2SdalMWXt9UhIK3w02vQ7f2c.roa (raw, json)
Hash identifier: Dcr80FMOYeh2YrKTeqgRf905TKUye6RgYUF12c90nJE=
Subject key identifier: 63:80:36:49:D6:A5:31:65:ED:F5:48:48:2B:7C:34:DA:F4:3B:7F:67
Certificate issuer: /CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Certificate serial: 01899B1CDD6B7C2549D7017CD824384C9EEA
Authority key identifier: F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/Y4A2SdalMWXt9UhIK3w02vQ7f2c.roa
Signing time: Fri 28 Jul 2023 06:08:27 +0000
ROA not before: Fri 28 Jul 2023 06:08:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399471
IP address blocks: 123.253.212.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9b:1c:dd:6b:7c:25:49:d7:01:7c:d8:24:38:4c:9e:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Validity
Not Before: Jul 28 06:08:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63803649d6a53165edf548482b7c34daf43b7f67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:83:64:91:49:50:42:38:98:46:4f:b6:29:0d:
f6:65:64:8e:c6:24:92:7b:f2:b6:6d:55:f9:c4:d5:
fc:a7:18:1a:4e:38:a2:e2:1e:64:b1:bd:ef:f3:f6:
d6:b7:f5:16:17:60:b5:70:9c:1d:2d:b6:bf:55:47:
ce:d7:ee:40:47:40:2d:38:21:db:cd:65:9e:83:3c:
c7:4a:90:2f:00:5b:0a:04:c5:b9:d4:2c:ba:1c:78:
b4:c9:46:de:d4:3d:3f:6e:3a:93:15:40:27:59:90:
a5:f7:bc:57:c6:d1:57:2a:55:1f:a2:e9:74:cd:01:
07:9d:16:cf:fb:4f:ce:af:cb:48:f4:4a:bc:4e:22:
2a:00:52:e2:45:3b:ea:cb:41:88:59:6f:56:52:81:
51:90:c3:b9:ef:05:78:be:36:92:62:b0:ab:2a:a5:
a4:6c:a3:34:16:87:cd:38:35:fb:6d:b3:c2:4d:d2:
b7:a5:2a:76:d7:db:00:f7:91:60:26:e7:53:27:1b:
88:77:b3:d5:dd:b2:a4:7e:08:16:46:f8:89:7f:e7:
66:44:90:c0:89:3d:63:e5:27:07:17:2e:32:d7:92:
46:9b:d9:ca:70:2c:71:4e:e5:73:b5:bc:f1:a1:79:
b1:b4:9d:50:0f:9a:da:05:b4:eb:6c:1e:8c:55:1a:
e2:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:80:36:49:D6:A5:31:65:ED:F5:48:48:2B:7C:34:DA:F4:3B:7F:67
X509v3 Authority Key Identifier:
keyid:F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/Y4A2SdalMWXt9UhIK3w02vQ7f2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/8E6yBPNYAEeIIk4vsY5NXnS-v40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
123.253.212.0/24
Signature Algorithm: sha256WithRSAEncryption
16:21:dc:fd:a2:93:a3:23:64:ff:3f:59:e9:a9:a0:3f:77:6f:
b1:23:cf:81:db:22:49:35:29:6e:5b:2b:77:0a:28:fe:64:eb:
fd:b5:1b:df:91:e5:83:e7:f1:ae:d4:ed:24:b7:20:7f:9a:5a:
e2:16:d8:c8:3b:44:b8:33:0d:2a:82:9f:00:ca:59:5e:15:20:
e4:10:54:30:7b:b1:7f:8d:2f:32:92:ae:29:42:20:f5:db:11:
dc:f6:f5:28:ef:bc:2e:d3:b5:86:93:97:f2:c2:04:e1:01:57:
f4:72:85:9c:bf:eb:f7:92:41:a8:4c:8a:61:67:24:ec:57:f2:
5e:03:71:78:f4:d6:28:4d:d3:f7:d6:82:7d:95:64:a1:2c:7f:
16:81:86:7b:b7:05:48:8e:90:f1:17:b9:46:51:e6:2d:c4:a0:
69:bb:1e:b4:47:9b:b7:d7:3f:d8:95:69:56:d4:16:a3:bb:77:
45:b4:76:ec:f9:03:ad:18:14:5a:50:11:f0:1f:bb:e3:2c:05:
06:09:d6:ed:4d:c4:8b:d3:fb:d1:e8:89:42:f4:d4:c0:12:cd:
ca:c4:54:cd:8c:7a:c6:1a:2a:49:3e:9c:5a:8a:31:2c:61:50:
7a:1f:51:bb:53:6f:92:ea:18:b2:a0:8c:a8:a6:02:bd:65:b0:
0a:bf:2f:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 24 08:25:48 2023 by rpki-client on console-fra.rpki-client.org