Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/xYI86NbknrFY-NnJ0-wahbFjw-4.roa
File: xYI86NbknrFY-NnJ0-wahbFjw-4.roa (raw, json)
Hash identifier: yiVwZZkwyPnIgnGLgbcfqIeAxjCDu2SdiCio/OvOUqw=
Subject key identifier: C5:82:3C:E8:D6:E4:9E:B1:58:F8:D9:C9:D3:EC:1A:85:B1:63:C3:EE
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018EAE003A097A5018D559687F5168DD9149
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/xYI86NbknrFY-NnJ0-wahbFjw-4.roa
Signing time: Fri 05 Apr 2024 11:23:54 +0000
ROA not before: Fri 05 Apr 2024 11:23:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201949
IP address blocks: 5.178.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 May 2024 11:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ae:00:3a:09:7a:50:18:d5:59:68:7f:51:68:dd:91:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Apr 5 11:23:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c5823ce8d6e49eb158f8d9c9d3ec1a85b163c3ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:47:91:a4:0f:7c:60:c4:33:ca:65:7f:3a:f5:
2e:7d:97:76:f0:46:21:04:2b:0b:59:28:26:e0:68:
64:fc:bd:15:0b:2f:72:31:49:ae:fe:86:22:bb:c7:
8d:f4:26:ce:d9:68:52:91:c0:d0:fd:60:ad:7f:1e:
ed:b7:d3:a9:30:4b:6f:94:c2:0a:15:0b:34:c8:e6:
e5:fb:c4:7f:12:9c:0f:a9:8f:d6:05:9a:17:3f:25:
fc:78:51:ba:e2:a8:d3:f4:1a:31:f5:df:56:46:a4:
f5:c1:6d:99:40:05:da:1b:ce:4f:a4:35:3f:7b:cc:
30:bf:5a:5c:36:e6:7f:1a:c4:fe:e4:57:a7:78:4d:
2f:9b:21:f4:56:af:ea:b9:b1:91:9a:26:7b:c4:5a:
18:13:31:30:10:13:34:b1:c6:c2:ff:7c:9e:78:5d:
61:76:da:6e:47:30:0e:dc:62:f6:11:15:f7:7f:01:
25:54:d6:f1:18:aa:45:0c:94:ea:09:f0:51:b9:3a:
99:da:f9:c9:59:0e:18:fe:01:c9:eb:98:7a:f6:9f:
3f:7d:4a:4d:8e:f0:dc:15:b8:95:0f:a7:e2:b2:73:
12:ed:ae:05:bd:a0:13:37:ba:cf:cc:fa:58:81:9c:
91:5c:27:e0:7a:99:13:bb:e5:75:e8:44:b8:4b:e9:
02:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:82:3C:E8:D6:E4:9E:B1:58:F8:D9:C9:D3:EC:1A:85:B1:63:C3:EE
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/xYI86NbknrFY-NnJ0-wahbFjw-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.105.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:17:b5:17:81:c1:90:09:08:51:a4:61:0c:c4:fe:e3:48:78:
8a:f2:40:3d:43:72:4e:6a:3f:ee:08:12:01:7a:84:c4:2c:b3:
e4:18:19:73:29:8e:8e:fe:bb:d7:b8:8f:97:98:a9:cb:d4:7e:
52:6a:52:41:60:1e:ce:dd:0e:8e:43:b8:9d:6b:bf:ac:cc:06:
59:14:a3:ae:a1:0c:21:e5:32:3c:9d:f4:fe:63:3d:dd:d7:8f:
d1:ae:3d:bb:1a:52:38:c9:ae:86:3a:4a:b4:ef:e3:be:bd:dc:
52:f3:2c:a4:5d:c2:4c:19:1f:51:7c:42:da:4e:9b:28:f2:3a:
81:47:47:87:a9:a4:56:78:11:84:be:5a:33:51:92:30:af:4e:
35:62:9d:b5:85:d2:19:29:1b:66:15:b2:e6:d5:cf:4a:44:c6:
17:80:ec:3c:cc:85:79:44:c4:70:97:e6:1c:2f:ba:26:6f:ad:
90:96:2c:f3:bb:9c:94:60:07:b3:b0:cb:89:5b:dd:11:e1:0d:
82:78:c7:a7:79:76:16:79:74:42:b7:d5:64:cc:6e:cb:b6:ca:
99:de:e7:82:0a:7c:35:2c:49:9d:5f:f4:2d:a3:bb:e6:02:b9:
ee:55:3e:59:06:fd:8f:cb:26:f7:40:7b:01:e4:d6:55:17:bf:
1d:50:05:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:33 2024 by rpki-client on console-fra.rpki-client.org