Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/UQTe2T-xg3iDPtIueOdc7LPlyjM.roa
File: UQTe2T-xg3iDPtIueOdc7LPlyjM.roa (raw, json)
Hash identifier: P4k0aISMqPn977k1062DEPMU47I2oS2fjETkFHHO0tM=
Subject key identifier: 51:04:DE:D9:3F:B1:83:78:83:3E:D2:2E:78:E7:5C:EC:B3:E5:CA:33
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018D1D9665623EFF295B1220E6F103597AD7
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/UQTe2T-xg3iDPtIueOdc7LPlyjM.roa
Signing time: Thu 18 Jan 2024 17:20:12 +0000
ROA not before: Thu 18 Jan 2024 17:20:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 5.178.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 11 Feb 2024 11:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1d:96:65:62:3e:ff:29:5b:12:20:e6:f1:03:59:7a:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jan 18 17:20:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5104ded93fb18378833ed22e78e75cecb3e5ca33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:4c:37:59:e6:eb:09:52:78:59:19:54:92:a8:
1d:6b:20:43:e3:5a:20:44:75:d7:13:10:90:66:10:
a9:80:63:3f:07:bd:e9:8a:f0:d3:aa:e0:48:f2:c0:
5b:32:5b:f0:fc:ed:c9:40:a1:a1:62:b0:62:27:af:
ac:bc:bc:99:72:9a:97:5b:0c:39:c9:b3:53:ca:1b:
3b:6b:99:40:27:24:68:00:57:af:de:ae:2d:49:77:
3f:bf:61:90:33:d2:3c:1c:cd:4d:62:38:02:61:b2:
0c:20:38:74:c6:e2:c4:8a:79:4f:d1:33:16:f4:97:
b7:92:a6:7e:75:60:79:0f:cb:98:49:b4:25:de:76:
d6:46:0f:63:fa:40:70:d6:b4:89:40:13:44:c9:5a:
f9:0d:89:a2:37:7f:99:93:9c:e3:f1:73:f9:aa:4c:
9a:97:8e:a0:ab:fe:0f:70:42:3f:be:df:d2:15:1b:
60:0b:6a:ed:a5:6c:f7:e0:2e:88:17:03:33:d7:bd:
ad:8d:18:c2:b7:bd:1c:13:b8:cd:f5:e6:d6:31:13:
da:b0:70:37:89:f4:18:5c:7b:df:ea:13:c9:91:f8:
bf:bd:90:a0:15:4a:1c:eb:ea:dd:ba:f5:2f:10:08:
66:d9:a5:f8:49:51:1d:3d:c6:4b:07:67:6d:06:d0:
36:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:04:DE:D9:3F:B1:83:78:83:3E:D2:2E:78:E7:5C:EC:B3:E5:CA:33
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/UQTe2T-xg3iDPtIueOdc7LPlyjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.108.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:14:b5:20:77:0d:3b:a8:36:ac:d2:f2:de:fc:c5:42:31:e0:
8f:33:65:bb:cb:7c:11:a8:b3:b5:72:b3:76:ab:9d:fd:86:ce:
3b:ce:98:97:90:7e:ef:b9:7c:ce:e4:25:f4:97:9e:75:7d:0f:
a3:3b:5f:81:d6:65:74:28:bf:15:ce:10:45:99:44:73:85:4f:
74:7b:82:01:8d:ff:a6:50:ba:9c:8e:38:a5:30:36:56:a1:17:
68:aa:f2:65:88:26:e3:31:66:1e:93:13:c9:c8:85:1a:01:e7:
94:b7:1c:a3:c7:3f:21:0a:45:76:d6:77:31:47:5e:b9:ce:d2:
33:74:d5:c0:f6:a0:b7:c3:ff:5e:1a:a9:9c:aa:f5:5f:0a:e0:
43:4f:62:88:88:5b:cf:27:96:05:7b:98:d1:ea:89:65:07:bf:
9b:e0:38:0e:dd:0f:c3:a8:5f:fd:5a:88:81:f9:c3:ae:94:ff:
44:47:1e:39:2f:5e:b2:30:e2:93:80:a9:9e:d5:3a:71:3a:0c:
c7:8f:e6:d2:10:32:0e:6d:4f:76:dd:8b:9b:01:c7:09:9a:dd:
04:e8:5a:94:da:ab:b1:cf:02:77:2f:06:48:56:50:01:03:cb:
73:3e:19:e1:6d:61:e7:af:74:91:0c:16:4e:bb:43:32:0c:82:
e0:ce:f6:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 11 12:07:03 2024 by rpki-client on console-ams.rpki-client.org