Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/FG4rBBrh7ZVD-cDoALIOGZ50VZU.roa
File: FG4rBBrh7ZVD-cDoALIOGZ50VZU.roa (raw, json)
Hash identifier: qJOJvNlAfRMY8nqDYyMNTIfm8VVxCSli6z+lFtDyUmo=
Subject key identifier: 14:6E:2B:04:1A:E1:ED:95:43:F9:C0:E8:00:B2:0E:19:9E:74:55:95
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018CC64B2A752188C163934100E671A04E21
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/FG4rBBrh7ZVD-cDoALIOGZ50VZU.roa
Signing time: Mon 01 Jan 2024 18:31:03 +0000
ROA not before: Mon 01 Jan 2024 18:31:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211522
IP address blocks: 5.144.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jan 2024 09:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:2a:75:21:88:c1:63:93:41:00:e6:71:a0:4e:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jan 1 18:31:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=146e2b041ae1ed9543f9c0e800b20e199e745595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fa:e7:1e:3c:bb:75:88:2f:14:03:8e:62:2c:
cd:7c:52:e9:1c:8e:68:27:59:84:d4:c6:6b:f2:bb:
e5:f9:7f:45:6b:fa:47:ab:97:39:09:1b:ef:8f:75:
49:0f:fe:9a:a5:19:62:7e:bd:29:83:41:72:52:5a:
2d:81:1d:87:d0:50:e9:9e:49:ae:4e:10:78:8e:b5:
7a:11:76:dd:ef:1d:f1:79:53:4b:c7:e2:be:d8:a4:
f8:8c:80:1b:b9:84:1b:48:31:f6:75:a3:78:e5:af:
78:8d:f7:a5:a7:3f:1e:6b:81:4d:d5:fa:47:55:e4:
fe:31:c1:0d:06:e4:0f:10:c5:c2:1d:ee:13:51:cf:
bd:d8:34:21:7a:ba:ec:e9:a2:5b:99:2c:09:2f:3d:
07:90:65:37:e5:a5:8e:5f:4c:70:b5:71:68:44:6c:
a1:68:1a:87:ad:57:fd:42:7f:e0:37:70:cb:f6:f5:
2d:fd:38:97:30:97:c4:ff:fe:f6:09:cd:e1:6f:6f:
ef:e0:61:45:60:c6:17:90:1e:07:01:48:11:32:28:
cc:a7:78:6e:27:d4:08:3f:6f:c5:c3:02:c7:4f:d1:
14:00:2f:fa:45:e3:42:ae:f9:4d:52:5c:93:75:63:
9d:7d:30:aa:e9:fd:d5:94:b6:a9:27:d0:54:17:e2:
f4:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:6E:2B:04:1A:E1:ED:95:43:F9:C0:E8:00:B2:0E:19:9E:74:55:95
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/FG4rBBrh7ZVD-cDoALIOGZ50VZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.180.0/24
Signature Algorithm: sha256WithRSAEncryption
18:05:6b:df:3f:a1:67:9f:40:44:3d:a2:74:b2:65:8b:f9:f8:
e9:bc:03:28:df:33:0e:ea:1b:42:ca:97:4a:a6:55:4a:34:eb:
18:92:df:b5:aa:57:f7:c2:f9:23:70:1a:9d:bf:b4:9e:70:3f:
97:80:30:b4:1f:7e:ab:58:ee:fa:1e:2b:3b:18:4b:f6:d0:3d:
b9:d6:0c:10:64:9c:d3:7a:39:80:87:52:9c:82:00:e5:2c:ed:
6d:15:6a:e0:ce:8a:08:d0:60:e4:6c:a9:c3:a1:b6:12:6d:a7:
f9:f0:4c:c8:49:98:a1:58:85:27:4b:74:00:3d:8d:c0:2b:4e:
2c:7f:ba:82:24:f8:0d:dd:7b:9e:7a:5e:fa:09:83:19:bc:ec:
4c:b0:ae:34:42:f7:8e:f3:db:d1:32:a9:7e:cb:bc:de:12:f9:
31:e5:d2:78:c9:bc:a4:cc:05:e1:ed:12:cc:81:cd:87:e8:b8:
e2:49:b1:33:fc:da:f1:6f:53:ce:3b:a4:1c:16:80:b6:21:4d:
66:69:2c:19:a8:44:b4:9e:58:36:24:f3:6a:d5:74:80:c7:d2:
ab:e2:64:ac:fb:81:2f:63:da:94:6a:d0:59:cb:23:f1:08:89:
08:47:2f:e3:69:ef:71:8b:ab:87:98:68:4f:77:d7:3c:97:e1:
ca:4e:91:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:14 2024 by rpki-client on console-ams.rpki-client.org