Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/wAr-HmhpnJ6Nf_M6cv9ILdJHmRU.roa
File: wAr-HmhpnJ6Nf_M6cv9ILdJHmRU.roa (raw, json)
Hash identifier: FrtxF9Sy+bYkPvVt3Jb4ROQQl5GJ27EM5p0NvPIh13E=
Subject key identifier: C0:0A:FE:1E:68:69:9C:9E:8D:7F:F3:3A:72:FF:48:2D:D2:47:99:15
Certificate issuer: /CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Certificate serial: 01909CB87FA60A682D65C59480348ACE357D
Authority key identifier: 0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/wAr-HmhpnJ6Nf_M6cv9ILdJHmRU.roa
Signing time: Wed 10 Jul 2024 12:57:35 +0000
ROA not before: Wed 10 Jul 2024 12:57:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198690
IP address blocks: 5.181.244.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 02 Jan 2025 01:49:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9c:b8:7f:a6:0a:68:2d:65:c5:94:80:34:8a:ce:35:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Validity
Not Before: Jul 10 12:57:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c00afe1e68699c9e8d7ff33a72ff482dd2479915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:0d:29:12:c9:ea:ca:bb:0f:76:34:eb:f5:75:
ce:71:34:6a:b4:ec:ef:25:3a:d6:8e:67:9f:9b:18:
b4:58:75:42:ed:43:1c:cf:ce:62:13:ad:5d:9a:a6:
34:66:6f:e8:31:76:01:03:6f:76:f8:44:92:53:9c:
a2:18:c9:55:48:ee:c5:6a:38:6c:bb:63:d9:18:48:
2a:c2:83:57:cb:6f:73:c3:0e:61:ac:89:29:1c:83:
f5:19:c0:fb:a9:e8:d9:76:46:8c:cd:b0:fa:d4:0d:
73:01:bf:42:37:7c:0d:95:27:bc:12:3a:b2:ef:e6:
52:bb:2b:35:96:a2:2d:a5:f8:a4:bc:c5:0d:21:35:
01:e0:32:a4:d0:31:19:c2:22:27:d3:3f:40:d2:4d:
bf:56:e2:bc:df:28:ed:ef:cb:14:0f:9e:e9:f6:a4:
ea:f7:4d:96:e8:fa:9e:b9:98:31:92:d5:4e:fa:68:
f2:b3:cf:85:00:51:07:e2:fe:cf:9a:73:a4:1d:fa:
38:ba:6e:63:dc:d4:f4:9e:d6:c8:a4:35:23:49:79:
9b:fd:b5:c6:df:32:04:0e:bb:6f:67:c4:bb:e7:6f:
f9:5c:c5:d1:af:f3:ce:57:2b:9e:7b:01:a8:2c:95:
aa:21:c2:55:6b:99:f8:b6:37:f3:74:44:1e:2e:3e:
21:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:0A:FE:1E:68:69:9C:9E:8D:7F:F3:3A:72:FF:48:2D:D2:47:99:15
X509v3 Authority Key Identifier:
keyid:0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/wAr-HmhpnJ6Nf_M6cv9ILdJHmRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.244.0/22
Signature Algorithm: sha256WithRSAEncryption
21:20:70:1c:20:71:ea:26:24:c8:67:5a:c3:98:72:79:96:32:
83:71:38:39:69:88:74:0e:6e:07:91:14:9f:19:de:b7:e8:1b:
c3:d3:fe:d4:13:99:e8:f0:f9:d0:f9:f7:dc:47:7e:9e:a0:4b:
c3:c7:2b:be:d0:e6:d8:de:b1:74:bf:06:e9:22:ee:3b:64:9f:
e3:ab:c8:b4:05:a6:3f:fe:d0:84:0d:c3:f5:46:54:a5:b7:50:
a2:80:ed:dd:32:50:dc:5c:52:c8:7a:f3:04:10:27:56:d9:01:
ff:60:71:b1:63:b5:04:a1:0f:34:8d:2b:b3:2f:3a:44:5c:f8:
b9:d0:d9:dd:83:06:b2:c8:53:fb:c4:74:49:6d:89:da:b3:36:
69:3b:1a:d3:21:62:ab:36:9a:e4:d6:d9:71:e2:fc:ff:58:00:
5d:cf:d4:41:af:5b:20:a7:14:ab:f5:4d:f1:5f:8b:d7:7e:89:
52:f4:fd:af:e6:49:3f:ac:2c:3e:fa:db:dc:a2:75:43:3b:73:
9a:b2:f7:9a:46:c1:8e:89:8c:18:4c:ec:fe:a7:cd:d8:cc:f7:
24:73:42:81:d5:49:c4:b5:12:28:f5:db:83:16:ef:02:27:e3:
97:c2:be:9f:e1:d3:a7:8f:96:8d:ea:7f:d8:51:59:a1:6b:4c:
d2:a4:28:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:01:54 2025 by rpki-client