Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/pybMQWZcEWsjHtjHMdnhTv085HE.roa
File: pybMQWZcEWsjHtjHMdnhTv085HE.roa (raw, json)
Hash identifier: JMO99pIDNBQZOmNN84t7hRthpVutmqzmE1RlXH+9SyA=
Subject key identifier: A7:26:CC:41:66:5C:11:6B:23:1E:D8:C7:31:D9:E1:4E:FD:3C:E4:71
Certificate issuer: /CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Certificate serial: 01927A2E5ED9304CAD975D4661AFE72CFF61
Authority key identifier: 5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/pybMQWZcEWsjHtjHMdnhTv085HE.roa
Signing time: Fri 11 Oct 2024 06:05:12 +0000
ROA not before: Fri 11 Oct 2024 06:05:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 114.69.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Oct 2024 07:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:7a:2e:5e:d9:30:4c:ad:97:5d:46:61:af:e7:2c:ff:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Validity
Not Before: Oct 11 06:05:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a726cc41665c116b231ed8c731d9e14efd3ce471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f4:d7:53:3d:0a:1d:45:3a:9f:19:70:ce:da:
db:40:08:a8:af:97:b4:16:ad:ec:c1:ea:e1:e0:df:
62:3d:63:95:49:13:5d:fe:d7:b6:5f:a9:92:bb:7b:
b3:ac:90:64:29:da:fe:f1:0e:9d:7f:86:58:55:d6:
c5:02:f0:16:8e:98:2b:e0:c5:23:ff:96:4d:27:a2:
98:22:62:75:c4:cc:43:e0:f2:cc:f3:9b:92:f3:8f:
8d:b4:f9:3b:15:47:4c:1b:29:15:32:86:c6:68:d8:
5f:65:81:c7:13:47:30:eb:cd:a8:0d:32:21:af:c4:
63:52:03:2c:14:4a:9e:ae:d4:c8:57:50:f0:c6:c0:
6f:d5:65:49:ef:70:c8:a8:7e:5f:3e:5c:51:9c:e1:
b4:8a:b1:f1:51:0d:68:d4:82:35:d2:55:91:50:d9:
28:48:18:41:0e:2f:45:1a:3f:a2:5c:62:18:fd:67:
9b:50:22:fb:1a:06:8e:c0:b4:b3:ff:69:e9:7f:49:
52:17:bc:b7:80:0f:59:43:66:bc:5b:78:04:73:76:
3f:32:35:f1:e6:35:13:10:34:1f:8c:3c:39:70:48:
65:7b:da:12:8a:01:1d:61:5c:54:a1:a8:45:1b:0e:
60:96:34:82:f8:ff:0f:b0:e0:c5:41:89:4e:26:e4:
8f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:26:CC:41:66:5C:11:6B:23:1E:D8:C7:31:D9:E1:4E:FD:3C:E4:71
X509v3 Authority Key Identifier:
keyid:5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/pybMQWZcEWsjHtjHMdnhTv085HE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/Xdb20pm83sc9E_LYQvwd9Lwe4tM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.69.245.0/24
Signature Algorithm: sha256WithRSAEncryption
21:52:cc:32:b8:d5:e2:6d:df:07:0c:e4:a5:f9:c6:d3:26:fe:
6e:e4:4a:cb:47:07:17:d9:c7:95:ac:9e:93:9e:08:a7:e6:06:
22:58:45:f7:ee:71:0b:21:d2:b4:db:49:1a:a5:62:90:82:1b:
d7:a2:f8:af:ec:6f:36:3d:58:82:ca:56:f2:4c:71:88:5d:06:
e4:fb:86:3a:75:f2:aa:6e:2e:5c:e5:3d:0b:80:29:5e:e1:25:
57:c0:c6:1d:f2:7e:13:e3:bb:c3:c6:89:73:d8:db:27:6b:4f:
87:82:58:5a:e8:af:b7:ef:1b:fd:6d:69:4f:c7:9a:76:48:d5:
96:ac:a2:a0:fc:4a:de:65:cd:66:ce:96:b1:41:d5:c3:3e:7f:
ce:fb:8d:3e:1e:a6:6d:06:49:8e:92:09:0a:93:6d:45:ca:4e:
0a:ac:02:de:52:c5:a8:b1:12:14:a9:6d:fd:80:af:9b:97:80:
3c:b5:60:60:b5:75:ef:48:83:e4:33:54:b7:8c:ae:5f:0d:bc:
45:b8:f1:b6:49:5e:9d:7c:d4:27:42:67:b1:87:96:46:8d:0c:
f3:65:3f:68:51:d7:5a:f7:85:f2:87:90:af:e4:52:5d:2d:ef:
51:6f:c1:32:bc:3c:b9:07:a8:ef:42:64:9e:47:58:71:d0:96:
85:2c:fd:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 28 09:40:51 2024 by rpki-client on console-ams.rpki-client.org