Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/LyMAzb-TDFmeSYk6BbRPQqMHKzk.roa
File: LyMAzb-TDFmeSYk6BbRPQqMHKzk.roa (raw, json)
Hash identifier: qxOkh6IcKYi2vjc450I6KipR0076RkGFz6P2dg3PiDM=
Subject key identifier: 2F:23:00:CD:BF:93:0C:59:9E:49:89:3A:05:B4:4F:42:A3:07:2B:39
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 0188E9C44FD3115D1C1D072F3CCBA79F85FC
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/LyMAzb-TDFmeSYk6BbRPQqMHKzk.roa
Signing time: Fri 23 Jun 2023 19:38:56 +0000
ROA not before: Fri 23 Jun 2023 19:38:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198883
IP address blocks: 5.178.101.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e9:c4:4f:d3:11:5d:1c:1d:07:2f:3c:cb:a7:9f:85:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jun 23 19:38:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f2300cdbf930c599e49893a05b44f42a3072b39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:30:0d:e7:74:d4:bb:2c:ed:09:87:8c:0d:2f:
e1:a9:09:a3:13:6b:f5:cf:03:13:ae:e8:4a:ad:28:
58:c9:28:0b:2a:3c:48:a1:fa:b1:7c:08:59:05:df:
f6:0b:16:2d:9f:ad:ce:97:fc:8c:eb:8c:0d:24:af:
40:f3:f7:26:7d:08:ef:76:65:46:a6:99:6c:53:93:
ca:54:91:af:c9:6c:8a:75:86:ca:6c:7b:83:5a:b3:
da:07:e8:3f:d9:78:74:aa:4e:5f:7b:3c:d7:f3:47:
14:f2:3c:fd:05:b1:9b:b3:a8:c9:61:32:72:f0:f6:
1d:5f:eb:b6:1d:ba:d8:9c:dd:e9:a3:1c:b2:d5:06:
3b:91:ee:1a:82:fe:ef:d7:b9:43:4d:c0:51:30:ef:
5a:8d:93:de:d8:25:54:05:70:bd:77:0a:27:43:28:
5e:14:b8:47:2e:41:a5:fb:96:f3:2c:b9:56:42:51:
60:b6:95:f8:bd:75:15:2e:3b:9a:87:9e:d1:2f:50:
30:92:a9:b2:fe:c2:9d:e4:24:9c:e6:fe:ad:ab:a1:
d6:88:ae:bb:5c:3d:a0:25:5e:61:4f:e8:9e:ea:c1:
d6:88:47:e9:d3:31:f6:01:d4:d8:b8:4e:af:18:99:
b7:16:82:f7:4e:54:3d:06:33:d1:98:ce:96:18:94:
82:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:23:00:CD:BF:93:0C:59:9E:49:89:3A:05:B4:4F:42:A3:07:2B:39
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/LyMAzb-TDFmeSYk6BbRPQqMHKzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.101.0/24
Signature Algorithm: sha256WithRSAEncryption
07:14:1e:16:a1:55:9b:9c:c0:e1:8f:53:77:ae:ad:ef:1d:c1:
29:3d:0e:ce:0f:d7:52:59:02:db:3b:3a:67:5b:1d:fd:41:51:
f0:67:19:47:52:48:b0:b4:08:50:d5:d0:21:21:b5:06:dd:25:
b5:c6:c8:93:b8:06:20:c3:1d:a7:6a:12:52:f6:4e:d9:88:4f:
f9:d8:47:ed:b0:61:77:2a:ed:e3:2a:e8:8f:28:5d:9b:97:2f:
08:7e:04:40:e0:65:e7:37:f6:b6:71:0e:9d:1b:59:45:38:24:
51:87:6e:71:53:42:5b:b3:49:f1:27:8b:50:f8:de:b4:5d:39:
1d:47:c9:d1:e8:0f:bc:ca:9a:2f:66:35:05:1d:30:10:9a:09:
d9:5a:ab:fe:a0:6d:08:b8:9d:b3:10:7f:93:60:ad:7a:3f:7e:
ee:df:e6:3a:e1:c1:e6:d1:2b:d9:9c:8e:ec:ef:b5:9c:3e:a6:
89:fb:90:30:7e:7f:60:25:00:6a:cd:1c:25:ec:1e:29:4f:29:
20:b9:f6:8e:59:45:ab:b1:df:e4:e8:9d:34:33:8f:4f:38:78:
12:db:b0:f6:e3:a9:de:4e:fc:7a:28:5c:8d:55:b9:77:af:b4:
87:41:5a:53:85:8d:ee:11:b7:59:f2:28:5c:b4:95:96:11:51:
2c:ae:29:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:33 2023 by rpki-client on console-ams.rpki-client.org