Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/Dau35l8RndOKoiyQcSOI9tSfIxI.roa
File: Dau35l8RndOKoiyQcSOI9tSfIxI.roa (raw, json)
Hash identifier: q1tP4lX4PG2pLV3cEfm8uUCum9ooEPsOstJwCGq+BHQ=
Subject key identifier: 0D:AB:B7:E6:5F:11:9D:D3:8A:A2:2C:90:71:23:88:F6:D4:9F:23:12
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018900BCC4B29DE42B0AF37945ED69641C0B
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/Dau35l8RndOKoiyQcSOI9tSfIxI.roa
Signing time: Wed 28 Jun 2023 06:41:58 +0000
ROA not before: Wed 28 Jun 2023 06:41:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212815
IP address blocks: 5.178.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Oct 2023 15:27:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:00:bc:c4:b2:9d:e4:2b:0a:f3:79:45:ed:69:64:1c:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jun 28 06:41:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0dabb7e65f119dd38aa22c90712388f6d49f2312
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:78:09:10:62:10:d8:c4:34:3b:4a:7f:ba:47:
f7:ed:a6:a8:46:c5:9d:97:1d:4e:32:ff:1f:c6:18:
77:0c:58:96:4f:11:98:0d:66:37:4a:db:ad:9b:5e:
b4:28:53:8e:25:2b:e7:59:c0:bc:3c:33:f6:55:e7:
87:44:d4:91:50:81:80:ae:91:cc:27:5c:5f:aa:01:
00:ca:75:39:f9:39:33:1d:8b:69:8a:f4:fd:4a:80:
70:80:c3:03:76:39:cd:62:08:d4:24:02:a6:a3:87:
83:4c:a8:4d:68:ac:ff:6b:c6:eb:9c:98:27:01:5f:
3e:bc:4a:68:af:43:14:53:ae:a3:e1:97:c1:0e:a3:
83:b9:5c:28:0d:90:c1:05:f1:51:80:d7:a7:02:0e:
17:63:65:1a:a9:15:b6:db:ef:e3:10:47:58:6c:c6:
3e:79:ce:0e:d8:cc:d8:b6:84:cb:77:3b:0d:bd:af:
41:ad:c8:14:1b:11:6f:0a:26:e1:a0:2e:ac:72:45:
5b:ce:91:62:37:c1:0e:5d:e0:41:27:cd:a5:c6:7f:
0e:df:bd:22:82:e7:ed:c5:99:74:75:7f:f9:71:18:
30:d3:04:3a:e7:68:6c:ad:e7:37:0c:cc:36:95:d9:
28:c0:03:1a:07:a5:df:10:49:2e:6d:bc:bc:a3:bd:
5f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:AB:B7:E6:5F:11:9D:D3:8A:A2:2C:90:71:23:88:F6:D4:9F:23:12
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/Dau35l8RndOKoiyQcSOI9tSfIxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.107.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:a4:16:d3:b3:11:68:4f:54:5f:76:09:b2:1f:e3:21:e3:35:
92:8e:4e:f3:05:d7:6b:3f:ff:40:8f:95:99:b1:81:b4:78:ea:
fa:bb:50:ff:58:23:7a:f6:3e:0d:c3:f9:94:bb:b3:f2:7b:cf:
94:e6:9c:a1:6a:4e:1f:a5:2f:24:fe:9a:7b:37:f5:be:ee:1a:
4e:0f:4a:dd:b3:88:b4:45:b8:10:00:4d:6c:5c:79:04:81:ac:
0a:dd:6a:a8:30:99:82:95:c4:b1:ef:70:59:7f:0a:c1:89:2b:
b9:76:22:af:f3:8c:05:7f:43:49:c5:20:1e:1a:a5:69:3b:e6:
a2:b4:48:db:c7:ac:7f:0f:0e:74:b7:ac:f8:86:c6:a4:c4:01:
94:ea:72:54:1d:ee:1a:2d:c9:43:a7:a3:ed:3b:1c:67:48:bf:
ad:b0:a0:29:e5:bd:61:8c:07:ed:bb:0c:d8:86:5f:dd:1d:8b:
d4:7d:07:09:30:74:35:55:6c:0f:2e:3c:41:42:8d:88:12:de:
35:ce:2f:c9:b6:ec:bc:6c:c4:2d:d0:c0:4c:01:ef:b9:0d:17:
6e:fe:ed:40:97:1f:ad:f5:c8:06:74:c7:e0:37:af:20:7e:b3:
be:a0:09:a8:5a:ff:0c:26:dc:2b:23:7f:18:1f:0a:ef:c6:f2:
19:4b:59:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:33 2024 by rpki-client on console-fra.rpki-client.org