Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/BlwD5DSFeflkrX_l_VZB52ssREA.roa
File: BlwD5DSFeflkrX_l_VZB52ssREA.roa (raw, json)
Hash identifier: QHqwyEPOZ5nlVjQjO/JwLTFTI0O26248ry7O3HXzQ84=
Subject key identifier: 06:5C:03:E4:34:85:79:F9:64:AD:7F:E5:FD:56:41:E7:6B:2C:44:40
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018E5AD0026EED8E586F2A33A48686B19496
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/BlwD5DSFeflkrX_l_VZB52ssREA.roa
Signing time: Wed 20 Mar 2024 07:42:45 +0000
ROA not before: Wed 20 Mar 2024 07:42:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202358
IP address blocks: 5.144.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jun 2024 12:24:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:5a:d0:02:6e:ed:8e:58:6f:2a:33:a4:86:86:b1:94:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Mar 20 07:42:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=065c03e4348579f964ad7fe5fd5641e76b2c4440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:9e:35:59:67:c4:30:03:53:71:a7:3b:51:22:
fc:1a:3a:a6:16:41:bc:31:a1:b9:c2:42:8e:4b:6e:
7e:9e:72:f1:60:b0:08:94:26:21:d9:32:8b:b2:ae:
a8:c5:90:66:a9:2d:1b:82:e1:3e:32:aa:ce:ce:ac:
00:ef:d9:77:9d:3b:de:ba:92:66:e0:1a:9d:f4:43:
68:6d:24:22:ee:8e:02:97:a9:ea:52:fd:01:be:7c:
00:7c:04:d8:ce:ea:cb:a0:2a:d4:f8:98:8f:a5:6f:
54:3c:f2:a5:6e:60:e3:96:f3:3d:02:0b:ba:b9:e7:
9b:f7:c6:2e:5a:e0:94:8b:95:45:ff:94:0e:6b:ed:
66:06:0f:20:b2:29:b5:88:41:40:b2:5b:c4:7f:0b:
3c:d3:45:7b:f1:5a:fd:f4:e5:76:8e:7b:09:f3:38:
3d:b2:b5:d1:ce:c9:2a:40:e8:77:e3:cb:05:7f:e4:
45:76:e2:13:fc:c4:bd:e1:bb:77:01:eb:85:14:33:
b6:ac:e0:bc:f9:a5:07:48:22:29:54:7f:4d:4f:76:
3c:7a:bb:9f:64:3c:d8:4e:15:8b:0e:8a:aa:22:79:
98:79:0b:c8:ab:4f:c3:d3:ac:d1:92:cc:36:6f:21:
99:53:f8:ae:4d:82:90:bb:ca:c8:10:58:91:0e:f5:
87:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:5C:03:E4:34:85:79:F9:64:AD:7F:E5:FD:56:41:E7:6B:2C:44:40
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/BlwD5DSFeflkrX_l_VZB52ssREA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.180.0/24
Signature Algorithm: sha256WithRSAEncryption
49:1c:db:75:1f:7b:46:89:15:87:56:fa:f4:ed:f5:37:c4:6c:
3c:af:b3:3e:02:57:16:6a:d0:66:22:48:b5:b4:d4:9a:e2:33:
e8:c4:e5:85:48:49:80:58:db:a3:2a:ad:d7:db:94:ea:82:6c:
27:20:7a:25:c0:36:c2:35:55:00:aa:30:1f:60:09:ea:47:bd:
79:4f:eb:fb:48:d3:4e:96:82:80:f7:70:75:76:49:df:ec:da:
19:22:ba:38:89:a8:70:98:70:46:9c:83:b5:05:3e:ba:f0:18:
59:33:9f:6a:e9:3a:25:91:e1:d9:61:d8:07:b4:ef:1e:ac:86:
9b:f5:09:59:b2:66:0e:5a:01:93:a9:29:34:ab:85:e2:5b:39:
00:cc:58:14:d5:1e:fd:b3:20:63:0f:33:17:c3:46:69:3f:be:
c0:36:8b:78:65:20:e0:5c:ff:8c:0c:24:ac:1d:7a:56:63:ee:
e8:4b:e3:88:8a:11:08:82:2f:20:af:ee:e0:2b:e5:ec:fa:2b:
72:15:c1:b7:3f:14:00:08:95:55:23:ce:a5:de:25:a8:dc:1f:
59:d0:74:75:64:10:a2:1d:07:19:9e:f3:9c:55:b0:52:6f:1e:
20:68:23:d2:f0:ec:4e:17:38:c6:e5:21:5d:4d:7f:a9:7b:a7:
6e:a8:5b:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 17:31:59 2024 by rpki-client on console-ams.rpki-client.org