Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/Vyi816gg3zrstH9CmkJShr_Q5B4.roa
File: Vyi816gg3zrstH9CmkJShr_Q5B4.roa (raw, json)
Hash identifier: vbkSug2ybJXY2h+9hHNwhXZzRNc2X9GpdzSuco6mRxw=
Subject key identifier: 57:28:BC:D7:A8:20:DF:3A:EC:B4:7F:42:9A:42:52:86:BF:D0:E4:1E
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 01857DBEE8CCBD2AAE7EE1307D4319A3D359
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/Vyi816gg3zrstH9CmkJShr_Q5B4.roa
Signing time: Wed 04 Jan 2023 17:05:41 +0000
ROA not before: Wed 04 Jan 2023 17:05:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205220
IP address blocks: 5.10.248.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7d:be:e8:cc:bd:2a:ae:7e:e1:30:7d:43:19:a3:d3:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jan 4 17:05:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5728bcd7a820df3aecb47f429a425286bfd0e41e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d7:17:25:c5:75:a7:02:c8:1b:be:7e:2b:79:
b2:d2:86:fb:d3:26:ae:cf:e6:01:f8:e4:d9:01:19:
64:40:4e:c8:93:4a:fe:7b:66:3f:54:8c:06:be:e2:
81:4f:ce:d2:ff:42:a5:2f:76:2c:96:54:c3:5f:bf:
95:4b:f6:95:37:35:f4:ac:00:07:67:18:61:b9:36:
52:91:26:93:1a:39:5e:11:8d:21:36:2c:ad:ce:99:
15:09:ae:8d:ff:f2:28:90:44:9c:10:2d:14:d3:c7:
74:bb:c2:ae:85:28:38:92:a8:bd:4d:9a:6e:fa:e0:
aa:5b:10:46:4d:05:e1:86:7d:22:d4:d3:a5:11:d0:
2e:d3:6e:de:3d:1b:ce:03:34:df:ce:a5:3a:c2:b8:
31:ac:92:ed:46:0b:d8:4d:15:6a:0b:ca:3e:dc:39:
48:e4:41:fa:5a:b1:d1:ad:5d:0d:40:84:f6:cf:34:
b6:a9:3e:f4:29:77:2d:c8:8d:7f:86:d4:76:e6:26:
b2:ce:ba:f6:2d:ae:17:07:af:3b:48:ac:11:03:d8:
87:e1:28:a7:0c:68:f6:fd:a8:a9:b3:d5:5d:18:a5:
28:5b:c9:29:49:86:38:8a:3f:e5:3e:c7:d4:09:54:
95:75:5f:43:8b:7c:36:a0:55:f0:86:27:34:af:9c:
ec:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:28:BC:D7:A8:20:DF:3A:EC:B4:7F:42:9A:42:52:86:BF:D0:E4:1E
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/Vyi816gg3zrstH9CmkJShr_Q5B4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.248.0/22
Signature Algorithm: sha256WithRSAEncryption
42:bc:2c:0b:1b:39:cc:19:3a:1a:0c:48:61:be:ff:23:51:47:
80:47:d4:1f:76:95:32:13:78:a3:02:21:6a:e6:16:f0:15:0b:
91:c3:b0:1e:ae:97:13:2e:b4:1c:4b:03:5c:e8:c0:a1:f0:ed:
9a:4a:14:b5:29:c8:0f:1d:db:c2:10:e6:ab:b0:78:2f:b7:58:
1a:a0:d2:59:37:c8:fb:bd:bc:f5:d9:ea:b2:45:89:1b:64:47:
dd:d5:cf:a2:d5:3c:89:df:8c:71:70:d2:07:6d:52:b0:d8:be:
33:f0:f0:85:8a:1b:49:bf:db:88:33:c1:3b:3d:c7:6d:00:58:
45:fa:3d:30:aa:d3:40:9d:20:a8:2b:69:0d:cc:b0:4e:2f:1e:
51:01:1d:65:4c:22:81:6e:7d:09:bd:7a:89:2c:53:de:0a:3b:
b0:17:26:a8:3b:08:3d:85:b1:73:84:e0:d9:c0:7d:ba:d4:17:
8b:fc:00:b0:e9:29:17:a6:39:e9:47:c1:8d:d8:00:16:13:75:
08:91:5f:73:84:d8:9c:e7:96:d3:b4:11:a0:dc:2a:40:b6:79:
82:81:e8:15:4a:33:25:ba:f1:f1:75:10:53:62:45:8a:cc:3d:
ff:36:89:7c:b6:44:2f:d1:bd:0b:1b:b3:06:1c:62:58:95:31:
83:33:26:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:50 2023 by rpki-client on console-ams.rpki-client.org