Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/TfoGGrL6rkeqww29TanOVWO9ysc.roa
File: TfoGGrL6rkeqww29TanOVWO9ysc.roa (raw, json)
Hash identifier: xy1jtzl8tYLrBsOCe7ckwPq/13a1r/T4qEF0Xlov2I4=
Subject key identifier: 4D:FA:06:1A:B2:FA:AE:47:AA:C3:0D:BD:4D:A9:CE:55:63:BD:CA:C7
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 019142BB1DB37DF928229E255AC97C7A1FDA
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/TfoGGrL6rkeqww29TanOVWO9ysc.roa
Signing time: Sun 11 Aug 2024 18:37:24 +0000
ROA not before: Sun 11 Aug 2024 18:37:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214408
IP address blocks: 5.178.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Aug 2024 14:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:42:bb:1d:b3:7d:f9:28:22:9e:25:5a:c9:7c:7a:1f:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Aug 11 18:37:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4dfa061ab2faae47aac30dbd4da9ce5563bdcac7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:9a:c2:65:eb:98:37:c0:b5:35:14:45:05:d2:
1f:ef:93:bb:9c:d0:47:3e:0e:32:a6:03:5a:ec:20:
8d:6e:9a:a0:df:c9:0c:99:d2:8a:51:2e:cd:19:6e:
28:88:c6:4c:e5:4f:17:bf:04:4e:2a:1a:fb:ad:8a:
7a:50:9f:3a:89:5c:4d:42:2c:aa:aa:f3:17:2d:b0:
1c:02:de:78:66:0f:0d:8b:6f:83:8e:d2:f9:e8:b3:
8a:c3:f8:6c:27:93:45:3d:9e:77:69:0e:0d:86:a8:
ce:a6:cf:fc:6f:c4:85:48:87:e9:7c:9e:99:ca:83:
ff:7e:14:7b:f1:f5:f6:1f:1f:16:27:03:75:e7:57:
20:4a:78:43:68:b6:f8:28:cb:83:d6:00:a8:08:ab:
71:89:d7:93:6d:d8:6a:73:6c:da:cd:c9:54:29:f1:
ba:7a:94:44:11:9c:5c:3d:19:c7:6e:9c:33:dc:c3:
c0:f7:0f:1e:68:fe:7d:b4:70:d7:e7:48:15:cc:8b:
33:b0:47:43:b8:2a:1f:36:fc:47:2f:c6:41:8d:17:
92:0d:83:07:fe:df:e2:ca:b4:bf:82:60:5b:33:d2:
5f:db:ee:08:e7:7e:d4:8c:cf:9a:33:6f:26:f8:bc:
f5:f6:92:8b:59:11:51:ec:1e:7d:d8:8e:55:90:8a:
cc:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:FA:06:1A:B2:FA:AE:47:AA:C3:0D:BD:4D:A9:CE:55:63:BD:CA:C7
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/TfoGGrL6rkeqww29TanOVWO9ysc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.110.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:73:08:23:ae:f6:82:fb:76:a8:28:84:b5:56:08:ad:97:a8:
7e:f3:a0:74:1d:a1:de:47:29:19:bb:25:7f:22:a1:b0:d7:29:
44:38:b4:27:63:73:b6:43:6c:ac:17:c6:6b:e6:c7:29:1d:88:
37:31:63:70:46:91:1e:6d:d9:89:a5:9f:53:e7:10:7c:01:c7:
da:11:86:98:54:e2:6d:a2:57:3f:c7:ad:86:74:4c:0d:98:48:
53:11:c9:5f:0a:73:75:8f:65:90:aa:fc:fb:b3:c9:19:be:64:
53:55:1a:4c:31:dc:27:4b:6c:fc:41:00:14:48:9d:3a:97:6d:
57:28:eb:10:8a:2a:01:21:36:c3:76:7b:15:61:f6:a1:bb:bb:
61:bb:f0:39:37:11:f9:ec:0f:50:ef:9d:c1:16:ae:ee:73:02:
64:d8:42:4c:6a:95:cc:47:b7:73:28:1a:99:d9:d5:d5:05:bd:
89:47:71:ae:44:c6:91:93:83:23:dc:93:84:4a:ab:e5:78:6e:
7b:14:9d:66:ba:c6:08:e9:6c:31:85:ab:24:a0:df:fa:bd:18:
89:31:b5:d3:9e:ed:59:f4:a0:28:88:3d:ae:18:9b:ed:84:db:
86:a4:b9:0c:f6:ce:00:f1:17:6b:fd:22:f9:10:4b:42:53:65:
62:21:fb:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 27 18:20:06 2024 by rpki-client on console-fra.rpki-client.org