Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/Jhz4fociMpk7H0HXbH2qpqxii9g.roa
File: Jhz4fociMpk7H0HXbH2qpqxii9g.roa (raw, json)
Hash identifier: +wb63OIlYK541uluIeDyEcjHLdexzW7YStX/hGsdObY=
Subject key identifier: 26:1C:F8:7E:87:22:32:99:3B:1F:41:D7:6C:7D:AA:A6:AC:62:8B:D8
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 01872C8DE61C6B16EE83219C506B23C048CB
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/Jhz4fociMpk7H0HXbH2qpqxii9g.roa
Signing time: Wed 29 Mar 2023 08:48:29 +0000
ROA not before: Wed 29 Mar 2023 08:48:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60781
IP address blocks: 5.178.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Mar 2023 09:44:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2c:8d:e6:1c:6b:16:ee:83:21:9c:50:6b:23:c0:48:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Mar 29 08:48:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=261cf87e872232993b1f41d76c7daaa6ac628bd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a2:f8:ce:06:65:18:0b:41:41:30:67:6b:a9:
d3:43:04:77:8d:f7:6e:dd:18:c9:76:ec:cf:5a:d0:
47:4e:fd:40:38:27:be:b0:e7:90:bc:d1:91:64:f6:
7e:85:43:56:ce:14:2f:67:19:59:be:19:34:a7:6b:
ab:2d:d8:de:32:f1:d3:65:c5:4e:9f:11:cc:9c:8e:
f0:50:98:06:90:f7:36:a5:77:3a:c7:b2:e2:7d:dd:
52:5d:cd:44:75:ba:44:de:28:a9:68:20:be:1b:2d:
b8:bb:53:be:4c:cf:4b:72:33:a8:73:a5:09:9c:46:
84:0d:9b:fd:d0:25:83:1d:ed:0e:9e:60:c1:0c:f8:
59:49:28:53:20:bf:57:5d:22:07:12:30:d2:f1:91:
1e:9d:43:1f:80:a3:9e:7a:de:63:02:32:2d:b7:9c:
60:3b:65:4d:5e:e6:2f:9f:75:81:9d:3c:b9:f0:cb:
c2:d4:8b:a8:dc:15:fa:32:d2:80:7e:72:5a:85:9e:
f4:6d:29:4c:af:c8:69:89:d6:26:d8:9a:64:26:5c:
e8:65:21:1f:b8:e0:51:c5:2f:09:cb:5c:21:bf:79:
f6:e9:89:92:62:e8:bb:be:5e:b3:25:35:c5:34:cf:
da:ec:0c:87:82:9b:d6:79:99:74:78:fd:6d:a7:0a:
f4:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:1C:F8:7E:87:22:32:99:3B:1F:41:D7:6C:7D:AA:A6:AC:62:8B:D8
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/Jhz4fociMpk7H0HXbH2qpqxii9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.102.0/24
Signature Algorithm: sha256WithRSAEncryption
16:a9:83:87:15:8a:f7:b7:a6:45:e7:01:cf:2d:e8:96:90:ac:
0d:bc:8a:3b:47:9c:af:48:47:cf:7c:3d:32:58:ad:ba:97:27:
1c:d7:c1:77:d9:6e:a6:59:50:0c:cc:30:80:f5:0a:41:60:51:
0c:f2:a6:79:76:5c:c6:2c:ad:a3:49:2e:71:fd:d9:2c:c6:1a:
ad:6d:1a:f9:62:35:d4:d5:a8:20:14:1f:e8:55:e6:f5:1d:6f:
3d:d3:a1:42:2e:34:97:50:24:59:af:02:4a:a3:c4:24:b4:66:
75:c0:21:a7:fb:42:9c:1d:7c:ba:52:53:2d:4c:2a:94:15:a6:
94:98:78:e5:fa:dd:19:cd:2d:cc:bb:86:c8:f7:c6:ab:fe:07:
2f:72:13:66:0a:15:66:7a:33:3c:86:32:eb:5e:79:23:05:5a:
f6:76:ad:17:02:d8:94:c9:71:bf:d7:47:cb:e8:63:e1:2d:c2:
82:d1:20:45:eb:7e:86:1f:ea:0c:ef:82:42:3e:fc:1e:9b:3e:
a1:2b:8b:3b:a6:d0:95:25:83:bd:0f:c6:7e:38:18:fe:41:60:
93:eb:34:87:93:f3:79:71:f7:51:3e:1c:12:be:84:ec:5c:37:
90:e8:65:04:a3:5c:ef:b3:03:1b:48:f1:c5:4f:74:27:23:db:
c8:d6:0c:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:14 2024 by rpki-client on console-ams.rpki-client.org