Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/DY4R-JtrVSm8uEyA3Tr42WC3Fng.roa
File: DY4R-JtrVSm8uEyA3Tr42WC3Fng.roa (raw, json)
Hash identifier: UcPte8bu+/zLN2ti7sGPP9y4HuN+7Fiw8uCJsb64gOQ=
Subject key identifier: 0D:8E:11:F8:9B:6B:55:29:BC:B8:4C:80:DD:3A:F8:D9:60:B7:16:78
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018BA4211FF8CB577EF0FCBF63BD2E58518B
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/DY4R-JtrVSm8uEyA3Tr42WC3Fng.roa
Signing time: Mon 06 Nov 2023 10:15:16 +0000
ROA not before: Mon 06 Nov 2023 10:15:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142430
IP address blocks: 5.144.176.0/24 maxlen: 24
5.144.178.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a4:21:1f:f8:cb:57:7e:f0:fc:bf:63:bd:2e:58:51:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Nov 6 10:15:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d8e11f89b6b5529bcb84c80dd3af8d960b71678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:33:82:d6:60:31:60:8c:5d:8d:81:cd:45:ef:
a4:ed:a0:b1:6a:8a:32:5a:32:23:c8:05:b4:48:40:
9c:1b:e6:62:24:47:4f:f7:11:84:0a:7b:a0:4e:fd:
7e:eb:53:2f:a3:5d:d8:2f:45:96:01:a7:78:08:40:
20:e2:52:8a:8c:6d:dd:74:68:ce:71:77:1c:09:31:
f3:e5:6a:d1:cd:4a:a5:82:a1:13:88:e8:12:fb:5f:
09:aa:b2:4a:eb:09:66:fc:bc:c7:5a:21:1a:68:9e:
8d:db:e7:a6:13:af:37:8b:a3:97:00:a1:f0:6a:66:
a9:bd:b0:67:dc:55:e8:c7:b6:d9:b3:75:82:47:1a:
0a:d5:e8:58:f8:0c:d2:eb:2b:5b:04:10:1e:6f:1e:
3e:d4:d1:0f:04:78:ef:f5:71:1f:42:1c:de:8a:66:
36:fb:ff:9f:79:48:a1:17:c4:f3:f7:c0:8e:cf:5d:
85:0f:77:24:9d:dd:be:22:6e:c9:df:e3:39:56:57:
cf:fb:0a:41:a9:f0:d0:18:c6:a5:4e:4f:89:62:80:
47:45:e7:46:28:03:80:bc:e8:e5:6f:2e:65:94:02:
36:de:f6:f4:4a:11:ab:f7:f2:8d:73:5f:0f:e5:e2:
81:58:ad:70:82:7f:99:62:2d:76:77:c2:22:e8:9b:
7e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:8E:11:F8:9B:6B:55:29:BC:B8:4C:80:DD:3A:F8:D9:60:B7:16:78
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/DY4R-JtrVSm8uEyA3Tr42WC3Fng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.176.0/24
5.144.178.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:53:7a:51:29:85:11:47:4b:2c:ec:2d:e9:33:0a:58:5b:0a:
23:57:3f:49:17:11:24:5a:cd:15:f8:00:60:70:2d:50:68:bb:
09:6b:0a:6b:bb:53:3f:33:74:fc:ca:bb:79:39:09:95:d5:1a:
f5:eb:ba:8a:4e:59:83:fe:ee:23:97:d3:77:2f:5f:d4:2f:5b:
32:d2:ea:bf:a8:45:9d:b5:56:5b:e2:dd:0e:a3:f7:96:31:f5:
79:48:36:4d:88:72:4b:f1:d4:69:ce:3e:5a:8d:ff:0d:cf:84:
e0:07:cf:2c:de:a1:b3:55:bf:f4:e2:5c:48:0c:e3:ca:54:b3:
71:98:4f:de:c9:f3:81:fb:87:fd:14:cc:1a:6a:ce:c5:a5:1c:
8d:b5:e2:93:aa:1f:23:7c:6e:b0:af:a2:2e:c4:f8:04:e5:fa:
bb:2e:77:0e:22:94:f1:8a:27:15:18:ae:05:57:1d:a0:32:99:
a8:72:61:6f:5d:22:aa:03:43:d3:75:c6:e8:31:78:2e:92:7f:
0f:64:a3:25:03:a2:5c:75:1e:cb:a5:e3:a1:8b:d0:ef:0d:dc:
e2:28:13:ad:e4:9b:15:c6:a3:59:3e:18:8d:1a:25:f5:1a:4c:
11:ce:e4:c9:70:a8:a0:d6:07:18:f0:25:27:6b:9f:f6:2b:b7:
d3:40:f5:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 7 08:14:06 2023 by rpki-client on console-ams.rpki-client.org