Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/LDo2p6huD2uM0oTaksGWWqLnvCw.roa
File: LDo2p6huD2uM0oTaksGWWqLnvCw.roa (raw, json)
Hash identifier: Fs+4hEih0tzmd1vt0kuCWbCCyPaUtYVBDs9LN+nUrg4=
Subject key identifier: 2C:3A:36:A7:A8:6E:0F:6B:8C:D2:84:DA:92:C1:96:5A:A2:E7:BC:2C
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018D751D144CBCC06C90D64EB769DCB64845
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/LDo2p6huD2uM0oTaksGWWqLnvCw.roa
Signing time: Sun 04 Feb 2024 17:14:16 +0000
ROA not before: Sun 04 Feb 2024 17:14:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215780
IP address blocks: 5.39.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Apr 2024 09:26:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:75:1d:14:4c:bc:c0:6c:90:d6:4e:b7:69:dc:b6:48:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Feb 4 17:14:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2c3a36a7a86e0f6b8cd284da92c1965aa2e7bc2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:84:5a:1b:23:72:fa:5e:d0:df:88:b0:b6:f1:
8c:1a:7d:88:80:8e:95:51:14:71:57:5c:e7:5c:4b:
57:63:6b:0f:fd:0b:11:d9:b6:9d:66:1a:9b:7d:3b:
de:c1:4e:58:03:56:01:4c:f9:99:f9:a4:37:fb:fd:
da:ee:eb:d7:b8:f6:a1:6a:a1:c5:b4:5f:f0:ce:51:
c6:44:84:2b:e5:51:fd:01:24:25:45:93:f8:7f:03:
0a:70:16:4f:12:2c:46:04:61:3c:b7:9d:ce:36:0a:
e2:01:72:34:52:35:c3:4c:d7:9e:f3:19:82:6a:15:
53:1f:b7:13:fe:73:d9:85:eb:de:d2:d1:8a:3d:bd:
d6:cf:b6:4b:23:48:87:d9:73:de:0f:d0:10:11:c3:
88:1b:e6:6d:3e:48:61:e7:3e:f5:2e:1a:ac:e2:7b:
c8:0d:a4:3c:13:d9:f7:29:90:84:f8:1d:78:71:95:
fe:8a:42:93:69:2a:e0:38:5b:f4:9b:e7:d5:1a:d9:
ae:ba:df:6e:87:9b:a5:04:9a:eb:c3:66:38:dd:bd:
8c:0d:39:74:e8:f8:ae:d4:0b:b1:1b:97:bf:2b:44:
2a:98:d8:43:5d:be:f6:7c:78:89:ef:57:b2:1d:3f:
de:ac:42:d1:2d:7a:27:74:d7:e0:e5:6e:3f:ec:1e:
69:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:3A:36:A7:A8:6E:0F:6B:8C:D2:84:DA:92:C1:96:5A:A2:E7:BC:2C
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/LDo2p6huD2uM0oTaksGWWqLnvCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.253.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:09:8e:9b:ba:ce:89:33:30:f1:7f:2c:4c:40:b3:2f:db:dc:
15:d0:05:b4:56:27:63:2f:a2:df:89:56:39:d2:91:cb:06:55:
49:96:82:28:bf:63:32:02:b1:47:bc:50:47:f9:de:4f:87:af:
c4:03:0c:27:e7:88:77:e1:01:d6:c4:ca:90:13:dd:46:22:e6:
71:92:6c:c8:55:43:fe:95:7d:8d:cf:f4:9a:3f:e3:fc:d8:fc:
70:34:54:5a:d0:fb:9d:ce:37:1c:32:c0:51:1e:c3:78:a1:ee:
c9:18:27:61:53:c0:8f:c2:0e:b1:4e:5e:80:13:89:60:77:11:
79:86:e6:48:13:d8:9c:fd:c9:9e:28:f9:1e:4c:f5:f1:0e:e3:
99:8a:a6:5c:a6:ea:97:8c:48:91:61:27:e6:2a:2f:36:42:5e:
72:38:6b:18:d8:7d:d6:d2:70:c3:80:41:4d:15:62:49:36:ea:
9e:51:8a:b1:02:b7:fe:7f:0c:d2:41:40:c9:9b:20:25:4c:75:
3c:e3:f5:28:3b:30:9e:77:5b:28:5d:a4:95:b1:ff:d2:ed:d0:
61:e7:b9:f8:dd:fa:c6:a5:b6:31:01:9b:d2:93:87:dd:27:18:
57:52:ac:7d:1f:12:d2:de:a3:83:80:e0:12:9b:38:f7:2e:33:
2f:90:2f:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 6 10:33:25 2024 by rpki-client on console-fra.rpki-client.org