Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/R0NJ-bD8SKn-HzZwWUpLYpWa_Ko.roa
File: R0NJ-bD8SKn-HzZwWUpLYpWa_Ko.roa (raw, json)
Hash identifier: FXi4uFj8THODe6vob6zShfAERB8YGs6MvXeMVYXvtvg=
Subject key identifier: 47:43:49:F9:B0:FC:48:A9:FE:1F:36:70:59:4A:4B:62:95:9A:FC:AA
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018DD2F32C1F9569177F5A3E91E50CC65942
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/R0NJ-bD8SKn-HzZwWUpLYpWa_Ko.roa
Signing time: Thu 22 Feb 2024 22:32:48 +0000
ROA not before: Thu 22 Feb 2024 22:32:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211014
IP address blocks: 5.144.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Feb 2024 17:04:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d2:f3:2c:1f:95:69:17:7f:5a:3e:91:e5:0c:c6:59:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Feb 22 22:32:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=474349f9b0fc48a9fe1f3670594a4b62959afcaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:71:5e:03:91:5d:4f:66:5d:aa:a7:98:80:e3:
5a:c8:fd:77:86:3f:71:d1:e7:16:85:fb:10:e7:26:
8d:2a:50:f3:f8:93:c0:cd:c3:d9:db:02:93:74:63:
09:3c:ff:1f:00:c7:7f:5e:4c:15:a2:67:8f:5e:26:
b7:14:7f:b9:31:2e:c9:bf:c4:09:80:27:b9:67:57:
03:c6:6f:1d:4e:05:0c:87:4c:5a:49:c7:f4:f6:08:
50:0c:44:cc:e6:e8:d0:62:d5:7a:53:c4:38:84:09:
d7:0c:37:1a:15:30:bb:e4:c9:d3:05:f4:85:d9:14:
2c:89:88:42:ce:d9:88:92:8f:62:be:46:1e:40:8a:
80:09:8b:cc:88:d3:93:7d:a9:cc:9c:50:a3:1d:5a:
8a:d6:b3:83:52:43:69:c2:b7:a3:bf:bc:19:54:13:
11:87:05:eb:9f:14:b9:a5:eb:82:31:1c:ef:77:3f:
5b:5a:60:4e:ce:50:e4:c7:6c:40:e9:fe:d3:05:c5:
55:1d:96:b6:ef:d5:d8:d6:9c:6c:55:b5:47:34:9b:
22:a4:8a:0a:c9:e4:eb:26:b8:0c:8d:f4:ef:b9:9f:
0d:70:f5:14:b3:5a:20:40:b8:77:4e:b1:1b:a7:98:
67:bd:1b:04:17:54:46:08:c8:34:a8:78:83:64:dc:
61:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:43:49:F9:B0:FC:48:A9:FE:1F:36:70:59:4A:4B:62:95:9A:FC:AA
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/R0NJ-bD8SKn-HzZwWUpLYpWa_Ko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.181.0/24
Signature Algorithm: sha256WithRSAEncryption
88:96:93:4f:2a:e8:0c:c4:f9:9e:6d:5b:fd:0b:b4:1c:da:ee:
7b:a6:28:eb:81:2c:f5:79:62:0b:e7:31:6a:35:07:2d:ec:eb:
92:ed:79:ca:4e:a8:a4:ec:3f:e8:06:b0:8d:3f:8f:d5:f2:d7:
a7:25:4a:75:d3:78:bf:ee:3a:99:ad:84:d4:cd:4c:38:5d:54:
0f:6f:16:5a:60:2a:e1:44:5c:64:db:99:14:3a:9a:ff:60:7a:
d9:fb:e2:94:1a:96:5d:e9:7a:72:9b:53:1c:9b:4c:8d:46:2f:
cd:3d:56:6a:0d:92:ac:6d:e3:2e:fe:22:4e:e8:ca:e5:c4:40:
a6:fb:5a:de:38:81:6d:bb:a0:8d:c2:d7:14:cd:51:f0:e9:36:
75:ea:ef:d5:57:69:7a:8f:8d:56:23:61:4c:a8:98:79:5e:a4:
1d:5b:97:e6:00:bc:8e:8d:d7:ab:fa:20:da:b7:69:26:fa:29:
b9:b8:be:ff:e6:bc:d8:2b:bf:ea:89:b1:33:f5:84:d0:69:8c:
7a:2a:81:ba:54:48:95:86:c4:6d:25:a9:b7:06:3f:5a:8f:71:
d3:d1:41:72:a8:5d:e6:1a:54:37:f9:5e:8d:5f:36:73:e2:4c:
bc:f9:4b:e0:0a:b8:d5:e1:e8:fa:7f:cc:56:c7:1f:14:5d:60:
09:cf:5c:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 22:11:16 2024 by rpki-client on console-ams.rpki-client.org