Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/89qV91028bEaswHKtOGAwecHeNI.roa
File: 89qV91028bEaswHKtOGAwecHeNI.roa (raw, json)
Hash identifier: 2JE56VcOJb84zjsd76c2TaVJfLqJhoi2EaKVdmVLea0=
Subject key identifier: F3:DA:95:F7:5D:36:F1:B1:1A:B3:01:CA:B4:E1:80:C1:E7:07:78:D2
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 0189F50451523F7FBF11B392C4EB73CD9C32
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/89qV91028bEaswHKtOGAwecHeNI.roa
Signing time: Mon 14 Aug 2023 17:07:28 +0000
ROA not before: Mon 14 Aug 2023 17:07:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197450
IP address blocks: 5.178.108.0/24 maxlen: 24
5.178.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 26 Aug 2023 09:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f5:04:51:52:3f:7f:bf:11:b3:92:c4:eb:73:cd:9c:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Aug 14 17:07:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3da95f75d36f1b11ab301cab4e180c1e70778d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:95:dd:ec:fc:bd:fc:aa:c9:5f:27:86:9d:60:
a0:7a:3d:7f:70:2e:df:29:f9:aa:2d:8d:5d:2a:fe:
d4:ba:46:ca:92:aa:2e:c1:46:f5:a9:bc:1c:a1:89:
be:77:54:41:c0:00:03:52:b5:4f:f6:99:d7:34:0e:
b1:98:ee:17:87:e5:e8:77:f9:d6:32:88:fe:a2:c9:
9f:0c:55:10:50:86:87:17:fc:a2:28:67:1d:e4:06:
3e:81:e0:22:9a:96:c6:5b:7c:80:55:1a:a3:32:7b:
77:2a:45:91:69:f8:b4:e6:cb:ed:23:86:dd:63:bb:
af:1b:c6:38:59:c0:25:b5:b5:bf:ff:b8:41:59:69:
16:9b:52:42:64:df:84:9e:c0:ed:c2:e1:88:41:09:
e1:41:de:21:06:42:36:c1:9e:db:35:7a:d3:d5:6a:
7f:0c:f9:22:c8:79:89:92:2a:a6:71:93:56:3c:ed:
0e:89:20:2f:11:fe:ef:78:83:6d:34:c4:7f:31:ca:
e3:93:15:ac:27:7c:5d:36:28:a6:26:cd:74:8f:0e:
5c:71:56:93:63:a5:4f:23:27:d1:10:2d:13:e7:1b:
17:a5:74:8d:0a:a6:e1:a0:9c:a2:f6:69:ea:d7:f3:
cc:ba:8d:b2:dc:65:f4:22:e7:b9:83:60:d8:ec:1e:
56:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:DA:95:F7:5D:36:F1:B1:1A:B3:01:CA:B4:E1:80:C1:E7:07:78:D2
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/89qV91028bEaswHKtOGAwecHeNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.108.0/24
5.178.111.0/24
Signature Algorithm: sha256WithRSAEncryption
45:6a:1f:ca:93:42:bc:88:ce:d9:cb:6b:4f:d4:ee:12:80:ec:
a1:64:c9:27:64:2a:36:b0:33:08:12:4d:b5:37:77:d6:73:27:
1d:f0:b7:21:e2:a0:ad:93:dd:fa:e7:b3:79:86:0d:bb:7a:c6:
41:8f:03:d4:af:42:b6:51:a9:42:9b:68:0c:25:db:ef:d4:5f:
7f:cc:42:8f:ee:f4:e9:07:b4:46:e8:29:69:c9:26:2d:9c:f6:
64:aa:29:d2:99:85:2d:fe:b3:b6:88:f0:58:ea:03:7d:62:bf:
71:19:ee:87:51:55:d8:25:4c:87:63:11:af:58:1a:e1:14:32:
d2:a0:9a:da:56:03:26:a5:9e:97:4f:c5:1f:3b:0c:fb:2c:cf:
14:51:42:6a:76:75:6d:e1:a4:16:d4:e9:63:e2:67:ce:f4:0b:
bf:2f:4e:05:52:67:9f:3e:29:98:fa:87:8b:8d:9f:69:8d:12:
1e:d7:94:ec:36:95:af:33:cd:2b:00:56:7e:a4:fa:1c:3b:ff:
ec:8f:d1:46:0c:e9:52:b6:48:d2:16:33:d7:ac:cb:d2:fc:88:
6e:22:cf:a9:a4:f6:97:bd:7c:3a:9f:d1:a5:74:d6:b5:a0:dc:
d5:92:22:d3:2f:41:54:6b:63:61:b5:e6:9d:51:eb:34:01:f6:
01:fb:4b:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:33 2024 by rpki-client on console-fra.rpki-client.org