Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/4uzTd9K1XxZ8hDVqGyKFbSDb2hw.roa
File: 4uzTd9K1XxZ8hDVqGyKFbSDb2hw.roa (raw, json)
Hash identifier: FmHYYN9HrTb89WDmeqcZMWMXmqArah4clrxlIHajDOE=
Subject key identifier: E2:EC:D3:77:D2:B5:5F:16:7C:84:35:6A:1B:22:85:6D:20:DB:DA:1C
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018CC64B28C60C86114377B61BD8640F4F0D
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/4uzTd9K1XxZ8hDVqGyKFbSDb2hw.roa
Signing time: Mon 01 Jan 2024 18:31:03 +0000
ROA not before: Mon 01 Jan 2024 18:31:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44620
IP address blocks: 5.144.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 20 Jan 2024 10:18:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:28:c6:0c:86:11:43:77:b6:1b:d8:64:0f:4f:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jan 1 18:31:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2ecd377d2b55f167c84356a1b22856d20dbda1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:09:fc:ad:a5:35:f9:9e:ac:72:ca:5d:70:76:
95:d1:03:04:b0:0b:e0:34:57:53:79:94:99:52:7b:
60:c5:5f:c6:1e:d1:e1:ce:53:c9:36:6c:5f:c8:2c:
46:da:26:37:59:08:7c:df:fb:57:d4:ac:e1:e0:2d:
56:c6:49:32:7e:d3:f3:d0:99:2c:8b:79:74:b5:67:
9f:46:7f:75:e1:90:49:71:a4:0a:e3:4a:e0:be:1c:
b0:58:f6:83:79:4e:a1:48:90:23:cf:d4:0d:ea:08:
78:7e:25:20:9b:6f:f2:87:f6:f5:89:97:67:28:bd:
2d:80:bb:b1:8f:07:8e:63:45:4b:5a:fd:27:ae:1a:
bb:5e:39:b8:e5:40:db:57:75:38:4f:1e:ed:e9:ea:
94:02:e3:b2:d8:9d:80:08:63:db:39:b7:8a:de:78:
b1:03:7a:f2:e2:52:be:33:40:c4:a2:8a:b8:2a:c9:
d3:dd:2f:be:7b:1d:32:5f:f0:d0:b8:f2:dd:2d:04:
fd:dd:6e:0d:fd:94:8c:a9:cd:39:31:1d:32:0d:84:
27:ed:a9:5b:b3:95:5e:e0:de:b2:ce:d7:4f:1b:32:
e5:44:f9:07:70:e6:cb:3c:95:97:05:c9:bc:44:19:
34:96:d5:f7:59:2a:c7:1f:0a:5a:40:88:ce:8c:7e:
5e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:EC:D3:77:D2:B5:5F:16:7C:84:35:6A:1B:22:85:6D:20:DB:DA:1C
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/4uzTd9K1XxZ8hDVqGyKFbSDb2hw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.177.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:e9:07:8e:87:79:fd:2c:79:03:80:cb:5c:37:dd:96:71:da:
ed:49:23:91:d2:56:99:2f:35:c1:91:72:c8:d9:40:6a:ce:86:
1e:81:a7:c6:14:95:4b:3a:44:cf:17:08:44:68:d9:8f:35:6c:
3e:56:d4:41:55:97:06:c8:a4:82:2c:df:f7:93:36:58:5e:1f:
1f:37:cd:01:3f:c7:9e:cd:cc:92:4b:fb:71:35:b5:97:94:62:
44:3e:0b:6c:1a:33:fa:ac:90:b6:5b:b4:81:db:a9:41:87:12:
2b:a0:96:ce:16:4b:7b:36:a0:0b:ad:87:a8:6e:97:20:dc:98:
d5:6c:fd:0d:4f:87:00:1e:29:a3:67:72:ea:72:58:02:c3:e5:
c8:a9:59:de:57:c8:17:8b:2a:ef:86:0f:d8:7a:b1:92:6d:e4:
a1:b5:aa:23:c2:92:79:7d:36:61:a8:07:ca:8b:77:53:17:96:
22:9a:73:70:d8:ff:9e:6d:ac:dc:37:8d:2b:1c:59:9a:a7:5d:
10:39:c6:cb:30:9f:33:3c:e5:f3:db:ff:f2:1f:16:bb:f9:0e:
43:95:f8:99:8d:c1:b4:3d:96:e0:c0:25:17:7f:02:e2:a1:83:
d7:8f:75:b5:31:0f:e0:16:b4:25:82:7c:29:51:58:f3:ba:26:
35:44:4b:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jan 20 12:52:19 2024 by rpki-client on console-ams.rpki-client.org