Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/7z2UfzAX8ItqI_-Ucru9N4wb3zw.roa
File: 7z2UfzAX8ItqI_-Ucru9N4wb3zw.roa (raw, json)
Hash identifier: htToX6ovjXcy3s/TVfKbDvTvSKvVni1bXiPz02+h5Do=
Subject key identifier: EF:3D:94:7F:30:17:F0:8B:6A:23:FF:94:72:BB:BD:37:8C:1B:DF:3C
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 01890D4D51518BFC7FC0A0C1E6447C1E81D3
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/7z2UfzAX8ItqI_-Ucru9N4wb3zw.roa
Signing time: Fri 30 Jun 2023 17:15:18 +0000
ROA not before: Fri 30 Jun 2023 17:15:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 5.178.99.0/24 maxlen: 24
5.178.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Jul 2023 11:45:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:0d:4d:51:51:8b:fc:7f:c0:a0:c1:e6:44:7c:1e:81:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jun 30 17:15:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef3d947f3017f08b6a23ff9472bbbd378c1bdf3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:33:12:cc:6d:f6:e9:08:8f:2d:60:02:ad:32:
8a:01:16:2d:67:09:16:48:30:10:f0:ff:01:db:34:
25:c1:30:76:58:eb:14:32:56:69:80:99:36:20:c9:
88:f0:80:21:83:41:84:01:db:11:02:71:28:23:16:
50:e9:b9:21:de:90:6b:54:2d:0a:c8:cd:41:56:0d:
fb:23:b6:71:f7:83:bc:be:d5:53:67:c6:41:6c:e0:
8a:52:50:b7:d7:43:be:05:e0:f4:fb:ef:cc:2e:86:
c0:29:6b:09:91:40:dd:3f:b9:81:e3:2e:f4:6c:a9:
52:66:9c:e1:f8:da:b6:0c:c5:d8:e7:eb:48:e9:55:
99:fe:d0:3b:41:4a:c9:bc:c0:da:23:91:e5:94:b6:
fe:47:f3:1c:7f:47:8e:a6:e8:21:81:4a:4d:ae:ad:
1e:0a:a5:33:b5:49:e6:de:6c:24:e3:b0:30:51:54:
84:2d:90:12:25:ac:13:b3:db:77:35:62:2b:6b:53:
48:fd:2e:a9:b5:41:2a:f2:cd:76:b3:bf:41:71:c3:
a2:7f:55:c3:52:9b:03:f9:f0:d8:73:a1:7c:72:d7:
f7:a6:7c:6c:28:e7:79:ad:5a:30:b9:29:2b:d9:66:
cf:97:6b:86:fa:cf:66:9b:be:e8:2b:22:51:8a:0c:
e6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:3D:94:7F:30:17:F0:8B:6A:23:FF:94:72:BB:BD:37:8C:1B:DF:3C
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/7z2UfzAX8ItqI_-Ucru9N4wb3zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.99.0/24
5.178.109.0/24
Signature Algorithm: sha256WithRSAEncryption
21:59:6d:c7:e7:7a:eb:31:bc:70:88:d7:ae:63:b2:02:31:81:
91:c3:63:8a:8f:a2:66:08:c4:8b:57:fa:06:7b:35:cf:0e:92:
f1:73:25:1b:8c:12:40:af:f0:85:05:a3:05:01:5f:f7:b9:83:
55:4c:d9:1e:67:14:fa:b1:48:8f:1f:5b:fa:82:4f:ab:ba:b2:
47:5f:93:c4:00:f0:d8:6f:fa:4b:df:17:ec:82:02:ee:82:30:
e9:61:fa:9a:53:f7:5d:32:11:43:da:ca:59:89:63:7b:ec:11:
b7:78:55:dd:bb:3a:22:10:11:8a:c5:17:0b:19:94:f8:f8:75:
d0:36:49:13:ca:40:fb:b3:d9:fe:88:4a:a7:0d:8a:80:85:80:
b3:90:7e:12:dc:c3:c2:6f:f6:3f:67:a3:b7:40:96:69:4b:ea:
fa:5d:e5:6d:4f:4b:48:f9:4a:0c:a5:c0:f4:a0:21:48:f5:90:
31:72:b7:88:af:25:73:34:35:7b:71:3d:a9:1b:cc:6b:43:57:
26:4a:29:cd:fa:ba:54:67:d9:11:47:a2:fc:46:4b:5e:74:7d:
c4:14:90:eb:3e:fb:5e:4e:f1:c7:2f:25:b3:e5:50:ad:d8:12:
e6:3f:7e:b5:77:96:f6:85:94:2d:4a:0b:f9:6c:e2:cc:11:42:
a5:44:7b:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:33 2024 by rpki-client on console-fra.rpki-client.org