Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/81b276-e736-4172-80a9-18d69036753b/1/JW_-pmCXEe3xef_sIwdB2nSt9Tc.roa
File: JW_-pmCXEe3xef_sIwdB2nSt9Tc.roa (raw, json)
Hash identifier: fa/5/mkm8OxuwEvC7S/fP+OX2NqJFNNpvdHl23/ZwZs=
Subject key identifier: 25:6F:FE:A6:60:97:11:ED:F1:79:FF:EC:23:07:41:DA:74:AD:F5:37
Certificate issuer: /CN=065c9fedb5b544f696ed4daf135b02dee6d97af6
Certificate serial: 01856D2F478CDA7E2B316D2FB3927EE27FE7
Authority key identifier: 06:5C:9F:ED:B5:B5:44:F6:96:ED:4D:AF:13:5B:02:DE:E6:D9:7A:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Blyf7bW1RPaW7U2vE1sC3ubZevY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/81b276-e736-4172-80a9-18d69036753b/1/JW_-pmCXEe3xef_sIwdB2nSt9Tc.roa
Signing time: Sun 01 Jan 2023 11:54:53 +0000
ROA not before: Sun 01 Jan 2023 11:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13030
IP address blocks: 5.180.132.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:47:8c:da:7e:2b:31:6d:2f:b3:92:7e:e2:7f:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=065c9fedb5b544f696ed4daf135b02dee6d97af6
Validity
Not Before: Jan 1 11:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=256ffea6609711edf179ffec230741da74adf537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fa:b9:80:9e:a8:da:6f:fa:8b:e8:5e:d0:4c:
5c:bb:21:50:5e:73:55:96:17:a4:6d:21:1b:64:e4:
1a:3d:d5:8e:f6:49:d8:d2:19:8e:83:b7:4d:a1:d4:
2e:25:9f:ae:e0:22:b4:54:af:8f:22:38:ff:91:2f:
ec:7e:3a:76:54:65:f7:b2:15:2e:4e:41:30:2c:af:
a3:53:c9:83:f4:f2:0d:d9:09:a1:2b:28:2b:96:e3:
41:c7:ff:ff:56:6b:e1:85:34:29:e6:9a:eb:00:9b:
6d:af:1a:da:d0:b3:76:2b:0a:1f:80:d1:a4:0c:f1:
18:27:21:64:12:97:dc:7e:b5:7a:ea:af:8b:6f:70:
a0:99:e3:8a:f9:1f:be:9d:24:5a:c7:08:7a:af:b9:
de:13:59:db:16:b7:b3:7f:e6:3b:9a:18:12:25:08:
aa:9f:36:08:6a:b2:f3:4a:2a:c2:77:0d:4f:18:21:
04:a8:9e:3e:47:3e:46:82:0f:19:c1:24:8a:a0:7c:
d3:bc:7f:48:91:30:4e:98:8e:1a:a0:5d:80:2d:3a:
17:be:7d:d2:0a:3d:71:a4:0b:99:fd:0f:5b:ae:3d:
95:e8:fc:5f:21:2c:87:08:7f:0b:91:d3:b9:18:68:
1b:33:31:2a:8f:00:6c:52:be:50:a5:69:eb:a9:87:
fe:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:6F:FE:A6:60:97:11:ED:F1:79:FF:EC:23:07:41:DA:74:AD:F5:37
X509v3 Authority Key Identifier:
keyid:06:5C:9F:ED:B5:B5:44:F6:96:ED:4D:AF:13:5B:02:DE:E6:D9:7A:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Blyf7bW1RPaW7U2vE1sC3ubZevY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/81b276-e736-4172-80a9-18d69036753b/1/JW_-pmCXEe3xef_sIwdB2nSt9Tc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/81b276-e736-4172-80a9-18d69036753b/1/Blyf7bW1RPaW7U2vE1sC3ubZevY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.132.0/22
Signature Algorithm: sha256WithRSAEncryption
68:da:0b:b6:46:57:82:fd:85:62:3f:37:26:ec:a5:06:b8:c7:
b0:46:ce:b5:d1:e6:66:e1:59:40:1f:98:82:bd:1b:24:f7:4f:
5e:16:de:ae:41:af:c0:50:a1:44:fe:5f:85:c3:f4:8f:b7:24:
74:ce:c7:9f:63:88:df:0e:8d:08:da:ef:19:da:a7:0c:c6:4c:
b7:38:e1:a2:d8:3b:6c:df:73:a7:f1:91:fd:60:b3:30:ee:7d:
0c:13:fb:b7:11:86:45:3e:ae:6e:f4:45:93:89:9e:7d:7d:c1:
ba:d2:f2:ec:02:a7:ab:16:e3:d8:cc:00:d6:d6:f6:eb:08:45:
a1:6d:93:54:fb:0c:fd:0a:20:27:f9:61:86:39:38:29:11:98:
31:06:4b:11:cb:99:bd:0e:5b:bc:65:d8:8c:8c:9f:7e:fc:4a:
56:59:dc:8b:0d:fc:6e:0a:28:e5:a4:0f:cc:88:42:c2:be:36:
3d:ce:88:13:98:f5:b7:58:75:47:96:4d:0d:0e:a7:db:02:00:
a1:a6:60:9b:14:0a:79:78:4e:ce:e4:de:4f:94:9c:88:80:9d:
76:33:1f:13:cb:50:20:bc:3b:6d:d3:5c:40:42:d0:77:9e:57:
ea:4e:95:ca:9c:f3:f5:0a:32:0b:16:0b:30:2b:1c:3d:2e:89:
00:5d:44:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:33:27 2024 by rpki-client on console-fra.rpki-client.org