Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/EZxfUFwWMLqVhJIDMAEp4o2tziM.roa
File: EZxfUFwWMLqVhJIDMAEp4o2tziM.roa (raw, json)
Hash identifier: 1O6C9PBp5IEToC8aixka9pVJgW27WjhVpuoAgk8/gpc=
Subject key identifier: 11:9C:5F:50:5C:16:30:BA:95:84:92:03:30:01:29:E2:8D:AD:CE:23
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018DA92356E69C11E4F0D3B6E1D73B0F9614
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/EZxfUFwWMLqVhJIDMAEp4o2tziM.roa
Signing time: Wed 14 Feb 2024 19:41:21 +0000
ROA not before: Wed 14 Feb 2024 19:41:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 5.178.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Feb 2024 18:32:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a9:23:56:e6:9c:11:e4:f0:d3:b6:e1:d7:3b:0f:96:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Feb 14 19:41:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=119c5f505c1630ba95849203300129e28dadce23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:67:b8:99:a8:33:c6:e6:f7:37:41:84:b6:9e:
e4:f5:54:88:e6:48:6a:20:69:c6:7e:ad:f0:5e:e6:
b0:e1:f8:7e:f0:0a:90:7e:26:43:e1:55:88:cc:3b:
36:59:26:0a:79:15:c7:54:5b:28:25:5e:09:60:3d:
68:c0:f6:9b:c8:94:69:1e:c5:a5:a5:cc:ac:26:ba:
88:6c:dd:49:d5:73:8f:54:d5:6f:ee:41:c9:49:11:
c0:a0:b8:a6:d9:28:e9:b1:b2:4f:3a:46:42:9d:99:
d3:9a:ce:05:e3:42:bc:f5:e4:8b:d5:b1:0a:cc:39:
84:02:e3:08:61:71:7a:f8:b0:b2:fc:53:51:40:ca:
47:c2:ac:25:a9:0b:67:f0:e0:5f:9f:9f:6c:58:01:
cc:c1:4a:80:6d:6a:cf:33:79:40:52:1e:8c:9e:30:
de:58:6b:2f:3a:ec:35:de:4f:a1:f0:aa:af:eb:14:
80:a1:96:87:89:7d:9b:1a:3c:0a:71:bd:24:11:cb:
74:99:86:d3:44:8e:9c:ca:6d:9d:a1:04:77:50:71:
5b:bf:10:a9:c0:bc:b1:de:7f:96:71:2b:60:16:86:
2a:80:63:1e:a1:93:5b:08:5f:2d:d5:75:b4:9e:ce:
42:f8:ea:55:0f:f5:81:a7:97:ce:7b:25:f8:5c:c8:
fe:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:9C:5F:50:5C:16:30:BA:95:84:92:03:30:01:29:E2:8D:AD:CE:23
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/EZxfUFwWMLqVhJIDMAEp4o2tziM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.98.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:60:87:e4:0c:98:db:a7:42:1f:8d:d9:dc:c3:30:5f:66:db:
c1:be:9f:d3:c1:9a:3d:2c:3c:9a:5b:0b:2a:8d:43:20:91:e0:
ee:f2:5c:85:af:80:71:4d:39:12:3f:9d:92:c0:44:77:92:71:
af:83:66:fa:4f:9b:e1:4d:e0:7d:cf:6b:25:8f:d0:57:f1:9c:
fd:4a:82:2b:b6:c8:02:81:77:eb:4a:c1:ae:01:14:e5:8e:ff:
3f:f2:4e:ab:41:d4:64:c8:58:5e:24:2f:9a:c1:a2:b7:a7:4a:
5a:8e:12:a7:68:d1:d1:bf:54:90:90:af:98:ab:9c:99:54:df:
09:be:89:4c:00:59:22:ac:96:2a:0f:34:0e:37:0d:a3:aa:b0:
88:c7:de:f7:7b:24:64:40:49:2e:02:a9:06:3e:64:c4:b4:6e:
8c:f1:8e:ac:f3:ff:90:9f:a0:32:7d:04:ba:9e:07:0d:df:30:
0a:93:f8:4f:b9:e2:b6:35:90:c6:84:c1:3c:ec:e6:3a:51:0b:
89:ed:4f:b8:2c:ad:60:8e:86:b3:7e:e1:78:7c:66:27:1b:11:
bf:1d:8b:52:a0:03:b6:40:6f:22:68:e7:1d:31:3e:f5:68:36:
a4:b2:2e:76:dc:7d:cc:1d:3f:85:51:4a:df:af:33:8e:c1:8b:
d2:ed:4f:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 22 23:37:11 2024 by rpki-client on console-fra.rpki-client.org