Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/nZ5FHKpY1AgrBvwgjKZcjdeafBc.roa
File: nZ5FHKpY1AgrBvwgjKZcjdeafBc.roa (raw, json)
Hash identifier: HaFATu7pFdrYdhWJ8N92GYKLlVljqh1ITS6exWxhBsA=
Subject key identifier: 9D:9E:45:1C:AA:58:D4:08:2B:06:FC:20:8C:A6:5C:8D:D7:9A:7C:17
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018B09648272A54899229DCAE65D735B60E8
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/nZ5FHKpY1AgrBvwgjKZcjdeafBc.roa
Signing time: Sat 07 Oct 2023 09:07:43 +0000
ROA not before: Sat 07 Oct 2023 09:07:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397373
IP address blocks: 5.144.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Nov 2023 16:53:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:09:64:82:72:a5:48:99:22:9d:ca:e6:5d:73:5b:60:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Oct 7 09:07:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d9e451caa58d4082b06fc208ca65c8dd79a7c17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7e:1c:36:50:0b:16:61:0b:9a:fb:23:a3:9a:
5d:9f:3b:aa:63:78:5a:fa:ac:13:0b:8b:ac:d4:f4:
d8:79:5f:dc:10:bd:af:74:a3:31:bb:eb:ec:de:0f:
2a:3b:1b:55:99:ce:d8:fc:0a:01:b7:c3:9a:96:06:
e5:2a:bf:f6:c2:44:12:1a:bd:70:df:84:e4:db:cf:
71:4e:9e:b9:0c:6c:25:73:c2:55:0d:6a:e2:cd:9d:
5f:08:e2:48:fb:5a:c7:f8:ea:40:63:ce:53:c0:9b:
ad:aa:4b:01:ff:a9:d3:5e:5e:1b:76:d5:d7:e7:5a:
2b:74:c4:45:ff:fa:4b:e4:39:84:e4:05:45:90:72:
33:a9:fc:23:26:6c:12:e8:92:c3:4b:a0:2b:eb:5c:
2f:ed:20:c8:73:0d:3a:e7:f3:8e:cd:b7:6a:ed:98:
32:f4:43:11:b0:31:5d:07:96:da:6d:b2:f6:ef:4c:
50:11:9a:3e:c8:c8:4f:86:61:69:85:f1:cc:55:7b:
9c:01:f8:0a:44:c1:12:1c:eb:e1:52:cf:6a:b0:e8:
41:3a:77:bb:9a:05:45:59:28:2c:8e:f2:a0:5d:30:
10:56:d8:2e:a8:64:08:1c:53:64:f2:7d:fd:45:4f:
3b:f1:63:2c:87:8b:32:1c:26:79:ce:cc:40:ce:c8:
ef:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:9E:45:1C:AA:58:D4:08:2B:06:FC:20:8C:A6:5C:8D:D7:9A:7C:17
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/nZ5FHKpY1AgrBvwgjKZcjdeafBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.177.0/24
Signature Algorithm: sha256WithRSAEncryption
40:90:5e:86:1b:36:df:c9:23:c5:54:8d:82:79:27:c6:5e:7e:
11:7d:c3:f9:07:1c:7e:7c:5d:d1:d2:7a:d3:1f:e0:5e:cf:a9:
af:40:b6:2b:d5:4f:90:c3:e5:8c:8a:1d:bb:33:97:64:fd:5c:
5c:49:64:cf:fc:ef:71:9f:e2:09:16:15:8a:6c:56:f5:a0:0c:
f1:76:35:d1:00:21:2b:a0:c1:98:86:3a:b9:b5:c0:d0:03:64:
39:a3:75:43:2f:15:34:8b:f3:a7:cd:fa:cf:20:3c:d4:c2:67:
ad:2e:ce:73:96:b8:a3:73:af:0c:fc:6a:58:cc:df:ac:38:36:
d0:3a:35:f7:90:9c:59:d7:d3:3c:f3:39:fd:26:92:2d:e2:fd:
5c:a6:72:de:40:29:dd:69:2d:89:9d:64:a1:3b:ce:e9:e0:c8:
33:83:85:13:e2:e2:9f:80:62:34:7f:50:a4:6b:85:1f:3f:82:
4b:89:bb:37:1a:9e:43:38:b3:59:fe:5d:62:ee:e9:c0:e5:3d:
ce:54:a3:8b:54:83:14:bf:75:60:8f:56:13:57:71:57:13:78:
d7:5a:38:91:02:a1:5c:ee:73:c9:97:27:b6:18:aa:4a:79:01:
12:a7:28:1a:82:9f:6d:86:d7:48:88:b2:93:1f:81:15:61:16:
7c:c3:5d:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:33 2024 by rpki-client on console-fra.rpki-client.org