Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/1T0V0aBTPDeAlk00ZA9Qcvu9bHU.roa
File: 1T0V0aBTPDeAlk00ZA9Qcvu9bHU.roa (raw, json)
Hash identifier: RHtlHrxM2/6wbU4e8VsNTWoFgZ2TeoO9TxhjUmzcJC4=
Subject key identifier: D5:3D:15:D1:A0:53:3C:37:80:96:4D:34:64:0F:50:72:FB:BD:6C:75
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018EB57170B56B9AA5653785F8522C063705
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/1T0V0aBTPDeAlk00ZA9Qcvu9bHU.roa
Signing time: Sat 06 Apr 2024 22:04:54 +0000
ROA not before: Sat 06 Apr 2024 22:04:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215567
IP address blocks: 5.178.106.0/24 maxlen: 24
5.178.107.0/24 maxlen: 24
5.178.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 May 2024 19:50:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:b5:71:70:b5:6b:9a:a5:65:37:85:f8:52:2c:06:37:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Apr 6 22:04:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d53d15d1a0533c3780964d34640f5072fbbd6c75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:80:8d:db:c0:00:e2:e9:48:be:c1:00:71:d6:
fd:f4:f3:74:d2:ec:bb:d2:fd:4d:d1:ec:a7:f2:df:
55:3e:2c:9d:96:a8:c9:bb:74:b5:5d:59:77:d9:23:
91:d3:fc:9c:a3:d0:e1:65:7b:d4:66:68:16:bd:e0:
3c:fb:b5:62:f1:75:22:04:86:8b:bb:16:81:98:23:
e3:90:c5:c4:71:58:7a:e6:07:93:e3:97:0d:53:86:
4f:14:5e:0b:cd:e9:90:ad:74:c4:39:1c:28:72:7b:
cd:f9:b8:3b:6b:23:b4:bf:36:7d:2c:a1:3d:ee:dc:
fd:fb:8c:76:04:59:6f:ab:07:d0:a7:3f:f3:e8:95:
4c:b6:27:57:9f:54:ac:09:dc:2b:4a:f6:c2:cc:2b:
06:a8:96:db:ea:d5:3c:0c:ea:98:df:eb:c1:a4:df:
60:9a:09:78:e5:6b:8a:19:b7:3b:67:b3:46:1a:11:
ab:f6:81:65:b2:00:16:ad:24:f8:5b:9a:92:49:dc:
7b:15:7e:4a:28:4e:d6:2b:1a:2d:e1:e7:35:b4:3b:
22:2f:f1:53:6a:98:97:26:05:39:8e:c0:b7:d4:21:
8a:98:5c:01:ec:36:6a:43:03:2b:df:da:85:97:6d:
d0:29:76:a4:df:bb:b5:d7:2a:be:b0:4b:a0:1f:82:
1b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:3D:15:D1:A0:53:3C:37:80:96:4D:34:64:0F:50:72:FB:BD:6C:75
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/1T0V0aBTPDeAlk00ZA9Qcvu9bHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.106.0/23
5.178.109.0/24
Signature Algorithm: sha256WithRSAEncryption
05:51:fd:24:04:67:88:b2:1d:35:e7:88:0f:5d:91:f6:c4:54:
70:a0:24:b9:8c:ac:d8:f0:fb:ba:e3:35:5f:1d:98:22:a8:d0:
05:b3:fa:9d:be:78:3e:1c:f5:5e:6b:fa:d0:03:c8:24:c1:e5:
ff:1e:9a:ea:36:c9:33:c9:ca:f4:56:b5:b4:b7:b3:2d:21:a7:
a0:21:e5:11:3a:da:02:e8:5f:45:43:74:3b:14:f7:70:0f:9d:
2a:69:53:e5:b4:32:19:6b:ca:44:a0:03:77:98:c9:78:25:3e:
db:e9:68:38:7e:e1:fa:48:c6:ad:9a:da:cf:62:18:ee:20:9f:
4e:42:7a:68:00:db:f3:2e:b0:65:7f:e6:4d:7c:03:a4:23:39:
34:a2:a1:5a:61:2d:e0:02:ef:75:ab:fd:01:16:56:4f:93:0b:
e3:83:bb:90:f0:d4:25:d9:11:b6:6a:d7:ec:e0:a2:fe:39:9c:
ea:d1:b5:56:5c:3f:9f:43:dd:a4:26:d1:e0:b6:f0:8d:d5:d0:
99:4c:11:bd:df:d5:22:ba:c7:9c:62:4b:64:20:7a:6c:a1:6c:
af:ea:b9:60:74:3b:89:68:af:51:94:ca:5c:e8:9a:8e:0f:a4:
6f:59:ba:49:7a:f6:0d:58:66:b2:6d:4c:2b:19:7a:dc:bb:70:
1d:0f:fd:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 22:10:44 2024 by rpki-client on console-ams.rpki-client.org