Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/7c70f4-5f3a-4fd3-883c-eb9415ec548a/1/z5-qGO3DQ_8F6Rt1dIhcstM9wkI.roa
File: z5-qGO3DQ_8F6Rt1dIhcstM9wkI.roa (raw, json)
Hash identifier: mFJufBIhgYUaEXqH6RZJ3wrjz3GSH/V7tPTDqXnIBbA=
Subject key identifier: CF:9F:AA:18:ED:C3:43:FF:05:E9:1B:75:74:88:5C:B2:D3:3D:C2:42
Certificate issuer: /CN=836528e152b6dcba1571241ac55be5bce01118b7
Certificate serial: 018CC794A3BDD7846A31B3580B9CB76D8CBD
Authority key identifier: 83:65:28:E1:52:B6:DC:BA:15:71:24:1A:C5:5B:E5:BC:E0:11:18:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g2Uo4VK23LoVcSQaxVvlvOARGLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/7c70f4-5f3a-4fd3-883c-eb9415ec548a/1/z5-qGO3DQ_8F6Rt1dIhcstM9wkI.roa
Signing time: Tue 02 Jan 2024 00:30:56 +0000
ROA not before: Tue 02 Jan 2024 00:30:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29286
IP address blocks: 178.132.56.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Mar 2024 09:58:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:a3:bd:d7:84:6a:31:b3:58:0b:9c:b7:6d:8c:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=836528e152b6dcba1571241ac55be5bce01118b7
Validity
Not Before: Jan 2 00:30:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cf9faa18edc343ff05e91b7574885cb2d33dc242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:80:02:3c:b0:8b:9b:09:c2:22:1e:91:58:36:
22:d7:0f:64:f5:3c:df:8c:14:72:98:d8:90:02:7c:
d1:d0:3f:8a:19:f4:7b:88:1b:00:11:37:6c:1d:ae:
25:0c:97:e2:16:7c:da:d6:a8:df:fa:5a:f5:2d:0f:
c8:e5:cc:4c:40:de:2e:17:8e:cf:cf:71:cb:a9:e3:
8b:ee:88:94:b0:6a:04:e9:1c:ac:95:d2:2f:5c:97:
98:78:1f:56:4e:64:f9:de:82:4a:44:24:4d:90:f9:
af:30:22:48:08:1e:b8:03:07:6c:f4:e6:d2:58:c7:
14:2b:b4:da:06:ef:29:52:ac:bb:d7:ed:44:d0:42:
0d:ac:8b:8c:e8:0a:c5:0a:88:26:1f:46:6f:97:77:
be:41:6c:a8:a6:1f:c4:02:a0:60:4d:df:fd:58:34:
6e:33:65:1d:14:27:08:d1:3b:82:86:a9:f3:c9:0d:
78:74:ad:3d:b7:dd:8e:36:76:80:ca:09:03:48:35:
91:e1:74:12:c9:0f:4d:cf:5e:cc:0d:21:a7:5e:66:
69:ad:89:df:e6:61:7a:5f:e9:bc:1d:46:c0:5b:3c:
e6:a3:67:39:ca:17:d9:fe:ea:4d:74:43:e6:3e:8d:
10:61:12:58:b7:6f:16:34:ca:d8:4e:a3:46:1e:b3:
58:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:9F:AA:18:ED:C3:43:FF:05:E9:1B:75:74:88:5C:B2:D3:3D:C2:42
X509v3 Authority Key Identifier:
keyid:83:65:28:E1:52:B6:DC:BA:15:71:24:1A:C5:5B:E5:BC:E0:11:18:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2Uo4VK23LoVcSQaxVvlvOARGLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7c70f4-5f3a-4fd3-883c-eb9415ec548a/1/z5-qGO3DQ_8F6Rt1dIhcstM9wkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7c70f4-5f3a-4fd3-883c-eb9415ec548a/1/g2Uo4VK23LoVcSQaxVvlvOARGLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.132.56.0/23
Signature Algorithm: sha256WithRSAEncryption
42:48:59:97:86:f2:7d:58:41:dc:5f:f1:9e:6d:c1:d8:e6:dd:
60:a2:e8:4f:d9:3e:23:5f:46:d3:67:d3:f8:29:28:af:1a:a0:
e8:25:c7:0a:17:be:be:e5:4e:5b:36:4a:df:1f:dd:71:e5:c4:
55:ea:4c:3b:07:a4:39:5f:67:0c:72:81:a7:b9:99:d4:a1:2d:
32:fe:fd:fb:ce:f0:67:ca:d5:72:55:b6:01:22:9a:1c:74:d1:
11:de:de:3f:f8:0c:3c:e1:aa:50:17:75:7a:0e:96:cc:c2:d0:
f7:20:4c:d9:a7:da:a2:07:45:d9:32:2b:a6:3a:b1:ec:61:13:
37:6e:bd:f8:97:54:61:de:e2:34:ef:59:fc:9a:b9:83:35:5b:
86:e3:13:20:06:74:37:d8:50:df:a5:30:3d:f8:d0:73:b4:1f:
bd:c2:59:05:4b:cf:94:56:22:51:74:4b:f7:69:74:b8:38:7d:
6f:66:31:44:ec:36:a0:5f:e4:ea:e2:a5:bd:f5:90:29:7a:f3:
76:21:53:89:81:a4:2c:3a:7e:cd:60:64:be:ed:b8:ad:e4:cd:
30:06:88:e4:5d:52:7a:8e:24:82:b3:00:94:47:f1:99:a7:5b:
71:8e:4d:01:8b:4d:93:d5:c9:5d:05:89:4b:27:61:75:d1:67:
3a:a5:8c:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:57 2024 by rpki-client on console-ams.rpki-client.org