Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/eKRyEYQDsFVCn3gmh3PZTLUU2qo.roa
File: eKRyEYQDsFVCn3gmh3PZTLUU2qo.roa (raw, json)
Hash identifier: d4SYxAFzfaIPDQMMLZxQtQq3CPcqpRtOnL21NQpjFfs=
Subject key identifier: 78:A4:72:11:84:03:B0:55:42:9F:78:26:87:73:D9:4C:B5:14:DA:AA
Certificate issuer: /CN=2160b2b1c829d88936b1adaeec97fdd1b40d41e5
Certificate serial: 01856D4AE81277EFE8C1BBF30F10323D9E6D
Authority key identifier: 21:60:B2:B1:C8:29:D8:89:36:B1:AD:AE:EC:97:FD:D1:B4:0D:41:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IWCyscgp2Ik2sa2u7Jf90bQNQeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/eKRyEYQDsFVCn3gmh3PZTLUU2qo.roa
Signing time: Sun 01 Jan 2023 12:25:03 +0000
ROA not before: Sun 01 Jan 2023 12:25:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60251
IP address blocks: 5.23.50.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:e8:12:77:ef:e8:c1:bb:f3:0f:10:32:3d:9e:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2160b2b1c829d88936b1adaeec97fdd1b40d41e5
Validity
Not Before: Jan 1 12:25:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78a472118403b055429f78268773d94cb514daaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:b6:55:db:2b:3f:03:6e:ba:51:57:ea:b6:76:
01:b5:2b:27:ea:a7:97:70:7b:48:a0:7b:5e:57:5d:
8c:16:cd:10:ec:15:e1:19:ad:ea:13:33:4e:6a:a1:
b3:9a:fe:f5:7d:de:2e:7f:f6:e4:48:93:54:8e:77:
3d:de:30:fa:f9:83:fe:42:a8:39:37:4b:0e:18:1e:
ef:84:81:d9:eb:25:99:4f:d0:8c:00:4f:0d:e4:6b:
6c:a8:e7:22:08:c6:b2:14:61:f4:ef:70:16:d6:17:
e2:46:72:b5:4a:44:6a:09:f3:3c:bc:05:86:bc:72:
40:bc:6f:12:5d:b1:da:f5:84:89:46:3b:72:b6:28:
52:d2:44:b7:26:f2:bf:08:0b:7c:06:f1:77:50:3c:
05:ed:e9:f8:36:7a:ff:3f:99:6e:a7:f4:41:8d:00:
d2:b4:11:12:fa:6a:da:e6:d1:fd:75:5d:d4:ca:1d:
d9:53:b1:1a:1e:04:43:83:55:62:82:89:fa:84:d7:
cc:4b:3b:29:cc:c4:33:b7:1b:fe:79:d0:44:4d:ed:
f7:04:3f:72:55:85:bd:89:88:29:a0:45:66:ed:89:
ba:49:29:6a:7b:75:01:cc:85:50:99:01:d4:76:41:
e8:f3:cb:52:ca:11:8b:be:88:6b:88:c2:3e:e0:f2:
3c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:A4:72:11:84:03:B0:55:42:9F:78:26:87:73:D9:4C:B5:14:DA:AA
X509v3 Authority Key Identifier:
keyid:21:60:B2:B1:C8:29:D8:89:36:B1:AD:AE:EC:97:FD:D1:B4:0D:41:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IWCyscgp2Ik2sa2u7Jf90bQNQeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/eKRyEYQDsFVCn3gmh3PZTLUU2qo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/IWCyscgp2Ik2sa2u7Jf90bQNQeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.23.50.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:31:08:e1:9f:9f:8b:0c:49:8e:41:73:ac:56:98:bf:a8:7c:
18:6e:2d:37:55:71:bb:d2:c6:be:d9:de:f4:f5:99:12:ba:93:
5c:03:e3:e5:0d:c3:71:65:44:96:f6:9b:ab:bd:8b:da:9b:1b:
cb:4a:29:d8:f9:ec:af:92:bb:bf:1b:95:50:12:ca:38:9f:f3:
fb:28:dc:aa:fd:53:0d:72:b4:78:50:eb:a5:1b:ef:91:8e:a8:
15:47:a0:2e:f3:c5:58:12:ca:5b:97:de:22:bc:bd:7a:b4:a4:
af:b8:f3:37:bf:73:d7:35:f9:48:f9:fa:f8:0f:ff:40:49:da:
66:34:b9:a7:77:4c:84:28:78:17:7d:cb:3f:d2:67:83:f0:d3:
9d:7b:4a:7d:10:37:4e:24:02:21:0d:6a:1d:90:fb:06:b6:2a:
5b:a6:03:1e:39:9b:27:3c:1e:dd:5c:4b:7f:57:e0:91:2e:0d:
01:b7:24:97:3a:45:e4:fb:93:c5:9e:2c:e5:b2:89:31:fe:12:
28:85:2e:58:70:83:c9:8c:c4:6e:46:d0:1e:5f:e7:54:7d:72:
95:70:93:b8:12:ec:be:e8:a0:34:0e:8a:56:f4:0d:e1:40:ae:
7c:ba:91:cd:87:0f:ef:2e:98:15:ea:af:f5:e3:1e:83:4c:1e:
34:67:42:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:55 2024 by rpki-client on console-ams.rpki-client.org