Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/D-tLgGDH6P9R3B-4KFpMROZ9a4U.roa
File: D-tLgGDH6P9R3B-4KFpMROZ9a4U.roa (raw, json)
Hash identifier: z0D35PFLcu5MG3fB8DZO3RGjXsjw2w0p9Jfq0ph+Gqo=
Subject key identifier: 0F:EB:4B:80:60:C7:E8:FF:51:DC:1F:B8:28:5A:4C:44:E6:7D:6B:85
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 0187316CD79D1F60ACC31F1676265642E849
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/D-tLgGDH6P9R3B-4KFpMROZ9a4U.roa
Signing time: Thu 30 Mar 2023 07:30:29 +0000
ROA not before: Thu 30 Mar 2023 07:30:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 5.178.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Apr 2023 17:37:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:31:6c:d7:9d:1f:60:ac:c3:1f:16:76:26:56:42:e8:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Mar 30 07:30:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0feb4b8060c7e8ff51dc1fb8285a4c44e67d6b85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:67:26:b0:8d:59:0f:ad:a1:14:4f:7d:47:27:
8c:48:67:02:5d:d8:4e:40:5e:01:82:57:b9:20:ed:
e5:84:3d:e1:4e:d1:b0:0f:6a:a3:6e:34:53:1d:3f:
74:94:a6:e0:f3:51:00:cc:ae:58:b5:77:9a:98:7a:
b2:ae:f9:f7:62:52:dc:83:9a:38:15:d0:8d:91:f7:
71:b3:af:b5:c7:96:37:78:c4:98:02:cb:4b:a7:50:
ea:60:d5:09:1b:f8:1a:ae:6e:39:b5:46:47:ea:f7:
1e:68:a8:34:6c:94:e7:0a:2f:16:77:44:45:6e:51:
a1:0c:b9:3e:99:35:9e:74:26:7e:25:68:34:44:2c:
ff:26:67:93:23:34:88:dc:33:1e:fb:b1:59:41:ed:
55:93:ad:f6:18:8f:a1:d7:e9:fa:2a:6b:48:9b:7c:
46:41:21:aa:4a:9c:96:eb:ec:2b:c3:c4:26:9f:1c:
67:45:8c:c8:04:02:53:88:ff:b8:29:c4:c8:f5:b8:
c3:20:35:de:f2:22:78:89:74:34:98:97:df:f3:8b:
3b:a8:0c:66:a2:60:1b:b0:16:8b:a9:e3:0a:8f:63:
36:e9:80:89:57:6d:f5:a8:aa:4a:24:13:dc:66:5a:
55:5f:48:07:5e:b7:6c:48:79:a0:a0:3b:64:39:77:
82:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:EB:4B:80:60:C7:E8:FF:51:DC:1F:B8:28:5A:4C:44:E6:7D:6B:85
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/D-tLgGDH6P9R3B-4KFpMROZ9a4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.109.0/24
Signature Algorithm: sha256WithRSAEncryption
51:a5:49:02:d3:4f:11:77:54:93:c6:a9:71:e0:c7:77:b4:2f:
3d:81:13:81:56:78:09:c3:ad:c5:60:41:2a:99:61:b5:f4:c4:
c3:30:6e:9d:d9:21:46:52:45:c6:a3:ea:b2:95:6a:56:ca:c4:
d3:3f:cf:63:21:40:91:6c:69:77:51:6a:bc:93:54:37:6c:00:
03:8f:2d:35:83:39:20:d5:36:8f:c8:aa:dd:9c:bc:db:f5:c4:
52:15:87:69:c4:21:0c:c4:d9:20:75:09:eb:55:c6:c0:47:a5:
1b:71:2b:8f:8f:ae:60:12:96:30:5d:41:de:2d:a4:11:ea:d3:
7d:37:75:fb:9b:4a:f7:02:57:90:3c:ca:9a:62:5b:27:a7:91:
63:94:91:11:a9:30:fd:d5:cf:d6:9d:13:7a:42:ed:f9:ba:bd:
43:29:db:c1:b1:b0:07:ef:25:f8:0c:55:f3:b6:eb:05:45:ac:
35:99:4b:02:2e:4d:07:66:8e:56:1c:9c:3e:a4:ae:87:d8:41:
a9:66:5d:88:2a:be:08:7f:ef:27:89:2d:20:f8:c8:2c:0b:38:
7b:17:a1:78:04:36:3b:6f:c1:51:c4:c0:e1:1e:f2:07:b4:da:
df:bd:80:c6:4b:68:37:d0:ce:a2:98:0e:55:6e:be:f2:5a:14:
84:6a:e6:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:33 2024 by rpki-client on console-fra.rpki-client.org