Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/1954a6-da23-4952-9c09-024868ffd315/1/tXaAcpsp_eq_RBPm6juQFV4fyfE.roa
File: tXaAcpsp_eq_RBPm6juQFV4fyfE.roa (raw, json)
Hash identifier: IZzlz+9Rtcz+11Qm6u2ISn1eNDSRkdJIAK7HyL1g8AU=
Subject key identifier: B5:76:80:72:9B:29:FD:EA:BF:44:13:E6:EA:3B:90:15:5E:1F:C9:F1
Certificate issuer: /CN=baaba2a56a0c30fdaf5934af8765c1ffd1357a48
Certificate serial: 018572D5C3BFE8EECD982B57306ECEBF29A1
Authority key identifier: BA:AB:A2:A5:6A:0C:30:FD:AF:59:34:AF:87:65:C1:FF:D1:35:7A:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uquipWoMMP2vWTSvh2XB_9E1ekg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/1954a6-da23-4952-9c09-024868ffd315/1/tXaAcpsp_eq_RBPm6juQFV4fyfE.roa
Signing time: Mon 02 Jan 2023 14:14:49 +0000
ROA not before: Mon 02 Jan 2023 14:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209146
IP address blocks: 5.180.56.0/24 maxlen: 24
2a09:ff40::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:d5:c3:bf:e8:ee:cd:98:2b:57:30:6e:ce:bf:29:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baaba2a56a0c30fdaf5934af8765c1ffd1357a48
Validity
Not Before: Jan 2 14:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b57680729b29fdeabf4413e6ea3b90155e1fc9f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f3:fb:e0:9d:76:46:b8:9d:d9:53:86:c2:25:
40:8f:a1:77:28:96:51:aa:a3:be:b6:2e:fd:17:73:
44:a4:9c:46:48:43:83:10:9f:3b:22:b5:13:d3:a9:
1d:b4:15:20:8a:46:0e:ff:68:33:da:06:e4:32:62:
3a:1a:c5:05:4a:b5:1b:1d:0e:9b:2b:40:66:0e:0c:
4b:cd:49:18:f8:84:1c:72:d3:0c:11:a3:8c:9b:4c:
24:a7:42:41:e7:f0:2a:af:dc:36:2b:22:5d:9c:be:
95:5b:16:6a:3b:c4:d2:1f:09:28:92:5a:5c:b5:02:
d4:cf:6e:00:b2:dc:8e:53:61:54:c7:5d:30:17:18:
47:0c:ac:04:bc:35:91:51:c3:22:a7:c0:ae:19:e5:
cb:e1:06:87:b6:33:e2:e8:34:cb:40:4f:de:12:88:
0b:92:77:fc:bf:b4:4e:c1:09:20:83:c0:82:da:68:
02:27:da:91:b4:91:20:39:12:2c:bc:30:bc:fc:ea:
41:c5:0e:1a:0b:36:a2:37:97:1d:db:b5:76:a9:ca:
54:cf:76:3d:28:d4:96:4e:bd:fd:ac:a6:f9:f3:59:
f4:8c:2e:a9:07:c1:6d:ee:58:42:bf:ef:3e:ab:22:
77:9d:fc:ef:e5:de:ca:2c:c5:18:a8:c2:37:41:47:
34:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:76:80:72:9B:29:FD:EA:BF:44:13:E6:EA:3B:90:15:5E:1F:C9:F1
X509v3 Authority Key Identifier:
keyid:BA:AB:A2:A5:6A:0C:30:FD:AF:59:34:AF:87:65:C1:FF:D1:35:7A:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uquipWoMMP2vWTSvh2XB_9E1ekg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/1954a6-da23-4952-9c09-024868ffd315/1/tXaAcpsp_eq_RBPm6juQFV4fyfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/1954a6-da23-4952-9c09-024868ffd315/1/uquipWoMMP2vWTSvh2XB_9E1ekg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.56.0/24
IPv6:
2a09:ff40::/32
Signature Algorithm: sha256WithRSAEncryption
23:73:30:67:42:cf:50:83:f5:23:82:8f:04:8a:00:ea:a2:fd:
07:99:53:b0:2c:3d:a5:6c:93:52:5a:a0:e2:7b:d0:14:73:ad:
94:38:da:d9:61:ad:5e:e7:7e:6c:96:24:a5:52:c1:5a:7d:3a:
41:c4:66:b5:5e:7e:f7:59:08:aa:e9:27:3f:13:8e:9e:da:8b:
1d:f7:3a:bd:a3:10:9b:83:f1:bb:b6:4f:94:97:d7:1f:ff:fa:
64:96:40:3f:99:0e:b9:fb:ad:a5:1c:9c:36:f4:18:06:a9:bf:
33:d9:d2:97:56:6d:3f:83:16:ca:7c:be:96:5f:56:a9:5e:8d:
b6:13:6c:d4:e6:f6:ed:5d:16:f3:e6:3f:ae:f7:91:7a:0e:10:
68:af:ee:18:2e:25:48:66:0d:5a:29:9f:4b:f4:d2:89:89:69:
4a:5b:f0:ca:61:8e:c2:c3:e9:ca:3b:34:bd:68:af:cb:ab:5c:
ee:95:ba:4c:a1:6e:0d:e1:7b:fc:91:73:1a:d4:49:70:1f:34:
e5:42:d9:73:ac:da:3c:30:03:0b:84:a1:a2:b4:07:b9:ca:6e:
28:81:c4:9f:0b:89:30:9d:71:c4:f6:79:37:cf:26:e0:b7:d3:
d6:f9:13:16:d0:ef:bc:1a:c1:80:17:55:56:b9:f7:26:c1:c4:
bd:82:4a:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:56 2024 by rpki-client on console-ams.rpki-client.org