Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/PAzr5cvLRjWujZzwiDI_Xe53IiI.roa
File: PAzr5cvLRjWujZzwiDI_Xe53IiI.roa (raw, json)
Hash identifier: xsh+iFLAaRDObBoHcbTtn1W2Ors+yy0BVEznxTBhtBM=
Subject key identifier: 3C:0C:EB:E5:CB:CB:46:35:AE:8D:9C:F0:88:32:3F:5D:EE:77:22:22
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 01894E74E98ED61303A0B34049219C9942F5
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/PAzr5cvLRjWujZzwiDI_Xe53IiI.roa
Signing time: Thu 13 Jul 2023 08:53:52 +0000
ROA not before: Thu 13 Jul 2023 08:53:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 2.58.54.0/24 maxlen: 24
5.180.194.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4e:74:e9:8e:d6:13:03:a0:b3:40:49:21:9c:99:42:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jul 13 08:53:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c0cebe5cbcb4635ae8d9cf088323f5dee772222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:33:65:77:92:da:ff:b8:f6:4c:19:82:09:ff:
0a:2f:bb:4c:a0:c7:b2:d1:e1:25:a5:14:b2:dc:a4:
65:4c:48:34:c4:dc:35:1a:aa:c0:4a:35:cd:d1:b9:
9f:72:b0:87:da:53:ef:00:9c:e4:75:e0:43:e8:27:
7b:0e:57:cc:7b:9e:c1:10:08:4e:e9:63:99:01:a3:
2b:c4:0b:af:83:b9:c8:e0:c7:36:d9:72:82:37:8b:
dd:96:43:b4:3a:2f:51:43:8d:b2:65:2a:dc:51:c1:
24:79:54:90:cf:f7:e6:76:9c:90:03:37:b4:97:78:
56:4f:e3:8e:51:c5:d5:2a:8c:6b:2e:2f:31:f0:1a:
fb:ac:27:61:ed:8b:e2:26:46:28:ca:71:85:f0:e2:
52:36:1b:58:05:22:42:70:30:5b:f9:19:72:29:28:
e3:8e:3a:65:79:53:61:32:20:d1:a3:12:b3:51:72:
0d:a7:bb:7a:d9:a3:90:03:1c:e5:77:10:0b:70:64:
e8:f5:4f:6e:21:0f:21:90:7e:e2:a5:c0:6d:a6:c8:
77:aa:82:3c:bf:9a:df:37:5f:23:bf:6d:e6:dd:5e:
57:34:dd:04:f9:2a:83:44:db:f4:4a:39:4a:c9:11:
2c:2b:fb:c0:dc:22:e2:cc:63:5c:2e:80:eb:10:a0:
e2:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:0C:EB:E5:CB:CB:46:35:AE:8D:9C:F0:88:32:3F:5D:EE:77:22:22
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/PAzr5cvLRjWujZzwiDI_Xe53IiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.54.0/24
5.180.194.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:20:f8:ec:bd:96:ca:29:84:b0:78:8d:8f:51:8a:c1:fa:e1:
de:6f:17:03:92:4e:68:19:eb:ae:8e:0d:21:43:bb:6d:72:d9:
2c:6d:40:a5:fd:d5:de:1e:60:3e:8f:36:64:39:2f:a2:02:f7:
37:58:f2:d6:4d:ac:ad:03:d5:77:26:e9:72:2d:f4:4c:9f:08:
02:24:80:33:ab:99:b7:ba:92:e8:b9:a0:f1:44:be:1c:aa:81:
d6:87:17:6a:bc:1a:1d:08:28:0a:42:98:dc:5f:15:bc:f2:21:
c7:66:b2:58:8c:c3:8e:e0:2d:a0:35:43:b0:c6:17:4b:99:38:
89:73:f7:56:1b:d0:4f:ba:03:cf:ae:b6:63:45:ae:b5:f4:b9:
f5:79:c4:88:33:9c:ce:1c:0d:df:3b:10:fb:20:1d:9a:19:dd:
8b:4e:22:b4:8a:7a:32:0e:1a:14:42:73:de:36:67:e4:a1:26:
b7:b6:f1:fd:5f:2d:94:29:2f:19:1a:29:34:89:fa:22:8a:12:
75:27:7d:b2:2a:1d:3e:63:6e:24:e3:37:aa:9f:d7:f7:65:e3:
56:d8:75:29:77:ba:71:52:1b:85:73:19:c7:ce:04:b0:c8:67:
b1:aa:54:c5:7e:69:b0:ee:9f:72:d5:59:f0:3e:3c:bd:ea:36:
8a:4d:2c:3e
-----BEGIN CERTIFICATE-----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Generated at Sun Aug 13 09:10:08 2023 by rpki-client on console-fra.rpki-client.org