Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/0eSIsy3_aAMMrIcBXWdiAa-ffnc.roa
File: 0eSIsy3_aAMMrIcBXWdiAa-ffnc.roa (raw, json)
Hash identifier: L+vlR9aS0mamanj23Qveds9TyOnCLYCQiRtlv6dR1ak=
Subject key identifier: D1:E4:88:B3:2D:FF:68:03:0C:AC:87:01:5D:67:62:01:AF:9F:7E:77
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018C5E6E740F8FC2CBCDF200D030A639C577
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/0eSIsy3_aAMMrIcBXWdiAa-ffnc.roa
Signing time: Tue 12 Dec 2023 14:29:06 +0000
ROA not before: Tue 12 Dec 2023 14:29:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200482
IP address blocks: 5.144.176.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5e:6e:74:0f:8f:c2:cb:cd:f2:00:d0:30:a6:39:c5:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Dec 12 14:29:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1e488b32dff68030cac87015d676201af9f7e77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b7:38:52:b7:3d:9c:cb:41:e8:8c:d8:8d:8b:
55:68:fb:60:9e:27:dc:ed:1e:20:27:f1:b2:79:aa:
47:ab:31:1e:39:4f:bf:a1:9f:aa:44:f4:69:99:16:
ce:f4:2e:12:d0:0f:c7:85:4e:a7:b5:d7:f0:03:0d:
14:0e:e8:8f:47:72:2f:d6:a9:9e:14:01:69:05:42:
d1:93:78:b1:28:9a:31:82:74:da:18:cc:39:ee:d3:
11:c3:3d:c1:a5:02:c6:b7:24:7d:95:3a:d4:97:29:
82:dc:14:34:e1:3c:de:ed:8e:ab:71:f7:34:d6:cb:
04:91:c6:51:2d:b5:12:40:85:51:ec:42:a0:c5:fd:
3e:c3:2b:3c:eb:48:b7:e8:0c:40:de:53:c6:33:14:
dd:c2:dd:b6:65:a9:ca:d5:f3:47:3b:61:71:50:ca:
d7:3a:ee:22:ac:09:3f:45:93:c9:73:c2:00:2c:fc:
78:cd:99:b5:6e:27:20:de:7a:77:b3:c8:87:c9:fa:
45:61:3a:26:a0:34:a5:d9:4a:2c:bd:92:47:59:11:
bb:d8:f4:09:6e:08:ba:b7:ab:e2:69:b4:00:6e:36:
ca:eb:82:c2:68:2c:4b:57:45:1c:c2:85:3c:87:24:
cc:5e:a6:b0:df:f6:ab:81:ab:49:ce:f1:95:02:5b:
7c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:E4:88:B3:2D:FF:68:03:0C:AC:87:01:5D:67:62:01:AF:9F:7E:77
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/0eSIsy3_aAMMrIcBXWdiAa-ffnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.176.0/24
Signature Algorithm: sha256WithRSAEncryption
08:89:a4:72:06:97:1b:1a:93:6f:64:04:09:26:22:fc:a3:15:
e6:d4:e3:2a:17:f2:3b:83:42:b5:ce:e7:42:b8:25:01:c3:10:
7f:50:14:88:2e:c1:14:1c:84:71:11:00:c5:7b:1a:a1:14:52:
cb:ab:07:47:18:d2:24:c2:a6:1b:f8:b8:14:8c:26:28:58:0a:
30:1f:06:0a:1b:4f:f1:7b:25:42:12:34:df:2b:fa:8e:33:12:
db:52:e1:c1:ba:5c:4d:02:78:17:25:76:92:1d:f7:ef:80:45:
19:e1:e4:b3:73:b7:4c:d5:04:ea:3f:06:58:f4:16:f6:cf:76:
3e:59:4b:db:40:37:3b:c9:4d:23:f0:1c:85:59:11:87:62:f5:
61:09:5a:a7:15:6f:25:a0:5b:84:02:9c:6f:0d:39:dc:af:81:
1b:d7:52:24:c9:46:9b:3f:49:35:a0:ac:ad:05:7d:c9:cb:1b:
1c:7d:b5:37:92:ff:83:1d:d5:6f:f4:70:e7:54:7e:94:88:fd:
ab:e9:27:7e:c3:d9:37:b8:6c:7a:39:ef:b7:25:b6:44:7b:31:
85:22:ab:c1:fd:9f:be:00:2d:cd:8d:c7:1c:42:e8:63:be:eb:
60:a9:7b:ee:71:2d:e8:c0:1c:c0:26:a9:e8:3e:85:38:84:56:
f4:41:ed:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 12 15:41:16 2023 by rpki-client on console-fra.rpki-client.org