Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/3PVHyY9bF_zdhGVhXv4BM-40sWI.roa
File: 3PVHyY9bF_zdhGVhXv4BM-40sWI.roa (raw, json)
Hash identifier: jNfjuKCSw2SakEwtI+m5Z6XkyXFM7EzJ4b2xKHsx5+w=
Subject key identifier: DC:F5:47:C9:8F:5B:17:FC:DD:84:65:61:5E:FE:01:33:EE:34:B1:62
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018B3919141C6771822C472993E0D03066E6
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/3PVHyY9bF_zdhGVhXv4BM-40sWI.roa
Signing time: Mon 16 Oct 2023 15:27:06 +0000
ROA not before: Mon 16 Oct 2023 15:27:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216159
IP address blocks: 5.178.101.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:39:19:14:1c:67:71:82:2c:47:29:93:e0:d0:30:66:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Oct 16 15:27:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dcf547c98f5b17fcdd8465615efe0133ee34b162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7b:69:95:6b:96:9e:1f:19:c8:69:c5:fa:c7:
2a:1e:6c:09:66:9f:ab:b3:0b:35:e8:2c:d6:27:0f:
6a:be:31:ea:cf:06:7d:ee:ad:d3:f0:3e:89:52:7b:
c5:0a:34:3b:97:af:94:49:a6:d5:86:c8:99:d2:c4:
56:cb:be:f3:4b:09:73:fa:20:bf:19:a7:2e:01:9e:
a3:36:0c:f5:70:29:38:ec:54:dd:80:d0:d3:34:4b:
de:af:96:7f:80:e8:d6:1b:df:77:1a:65:c0:f8:10:
f5:99:08:69:05:14:3c:c1:81:38:b6:c7:33:a5:49:
be:6c:22:41:fb:85:02:d2:eb:30:d7:30:24:2b:07:
f2:c9:5e:d0:c4:87:4c:a1:d0:d7:d7:ef:31:f7:9e:
99:81:b8:b8:ba:2a:a0:e9:71:43:ce:f0:d1:9a:10:
f1:c9:0e:42:fe:27:00:b4:00:78:60:ab:00:66:01:
ad:3e:18:fb:e7:2c:74:bb:40:c4:fe:28:cc:67:b7:
18:c1:98:04:c2:29:06:d0:2a:cc:77:e0:2d:d7:6c:
dc:7f:30:9c:6a:92:2a:54:22:91:69:76:1f:21:2f:
fd:3e:af:55:0f:13:b8:f4:86:15:f4:e0:10:d2:c8:
2e:7e:23:8c:30:7e:4f:69:df:40:97:0f:a7:1f:99:
52:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:F5:47:C9:8F:5B:17:FC:DD:84:65:61:5E:FE:01:33:EE:34:B1:62
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/3PVHyY9bF_zdhGVhXv4BM-40sWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.101.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:bf:bc:85:3d:0a:b6:49:5f:05:34:27:28:0b:4c:73:6a:25:
00:2b:c5:69:ba:80:29:5b:2e:98:24:74:95:cc:77:30:5d:2c:
1c:9d:2e:0f:aa:2c:ca:23:81:71:a4:c4:06:fd:00:8b:de:80:
21:fc:1e:54:60:c0:f8:1e:3d:b0:23:be:0f:64:15:23:50:51:
40:d3:25:5e:6b:f8:4e:03:16:e1:78:59:a8:4b:0c:a4:c4:39:
84:d4:ac:96:70:eb:73:f4:97:c9:62:34:b6:42:bd:5f:9a:8c:
a0:f3:1c:48:b3:88:2e:1c:01:00:d7:23:38:8e:02:bb:03:f7:
b5:fa:72:0c:a1:b5:ae:5b:f6:0d:12:21:49:48:67:4c:fa:5a:
9a:40:c1:d2:95:4c:32:4f:b9:b8:af:14:16:fd:5f:29:b9:70:
1b:d4:1f:08:5d:ec:23:50:84:21:96:f2:aa:d0:98:83:b5:e5:
35:b5:03:bb:ad:6e:17:34:99:75:e1:98:90:4d:7f:0a:2d:20:
7c:d7:3e:fb:94:2b:83:31:90:12:ee:d7:26:f3:4f:39:c2:c6:
9a:5c:f3:05:07:b9:b2:9c:21:a5:e2:21:d2:ab:c9:d8:28:e3:
37:d3:94:f3:42:9c:6a:2d:43:c3:09:e5:d0:b8:bf:1a:7a:95:
bc:e1:8c:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:56 2024 by rpki-client on console-ams.rpki-client.org