Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/XlF_P4rjtxAly_KuzSmfNR8wcu0.roa
File: XlF_P4rjtxAly_KuzSmfNR8wcu0.roa (raw, json)
Hash identifier: 0qM9M/pEbaJuH+9Wyq46J8+xtz8RMH+XqYiy0MyN9QI=
Subject key identifier: 5E:51:7F:3F:8A:E3:B7:10:25:CB:F2:AE:CD:29:9F:35:1F:30:72:ED
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018B3CAF58CB02253D9BEA26E3280294BE4A
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/XlF_P4rjtxAly_KuzSmfNR8wcu0.roa
Signing time: Tue 17 Oct 2023 08:10:06 +0000
ROA not before: Tue 17 Oct 2023 08:10:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 265919
IP address blocks: 5.178.103.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3c:af:58:cb:02:25:3d:9b:ea:26:e3:28:02:94:be:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Oct 17 08:10:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e517f3f8ae3b71025cbf2aecd299f351f3072ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f5:28:44:62:30:83:bb:30:d1:36:20:a0:cc:
7a:41:c8:71:a3:25:2c:a2:1d:47:e6:89:34:85:f7:
a3:dd:ff:c3:8f:7d:99:2f:b5:99:44:89:48:e2:a8:
1b:5f:4d:69:91:01:8c:bf:0a:8a:a0:7d:c9:00:46:
75:05:0c:57:eb:22:57:15:ca:4d:89:d3:9e:8d:fe:
d1:fc:f5:e3:47:4a:ec:5e:2f:97:f6:a6:18:0c:b5:
54:fb:be:71:0c:22:98:77:99:c9:12:f9:64:2c:53:
5b:55:cf:34:12:d8:30:0d:0e:bc:4f:fb:8a:10:c6:
d1:97:7d:52:c7:d6:6f:e6:0e:b1:60:89:5e:9a:13:
b1:3a:75:16:ea:b6:87:7f:96:b6:13:06:cb:6f:19:
46:78:4e:e2:ff:55:11:ba:7c:c5:3c:cb:51:e7:b0:
36:36:e8:eb:23:4c:4b:df:c3:1e:1d:d3:8b:32:fb:
da:8f:69:55:c7:0f:43:1a:b3:c3:ec:bb:11:3e:08:
6e:0a:31:6a:66:3c:03:eb:2d:22:68:55:61:1f:63:
35:0e:16:0d:3a:21:21:ad:dd:de:a7:35:98:ef:cf:
28:41:f8:a8:ab:73:39:2d:5a:fc:a4:09:e1:50:47:
de:12:5f:2f:ab:b1:79:6b:59:95:13:06:db:6c:d5:
a8:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:51:7F:3F:8A:E3:B7:10:25:CB:F2:AE:CD:29:9F:35:1F:30:72:ED
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/XlF_P4rjtxAly_KuzSmfNR8wcu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.103.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:31:17:51:53:8f:3b:bd:f8:c2:96:5e:4d:34:f3:20:74:45:
1a:1b:8a:ac:cb:14:da:50:ac:5e:6b:73:07:d8:f2:29:b3:80:
79:02:d3:19:19:21:b4:4e:2a:db:e8:46:2e:41:fd:d4:c8:29:
49:4c:ee:ed:e2:2b:dc:8f:06:bc:5e:e4:26:88:4e:22:8d:bd:
97:ff:ba:1d:37:3b:2c:cd:32:37:f0:46:2a:0d:d2:50:c3:7e:
a6:ed:2f:0a:34:86:de:f7:ca:4f:ae:a5:a3:6b:16:3f:38:a9:
70:a6:02:9a:33:94:d3:be:59:10:fe:9f:60:fc:3e:7c:8e:fe:
51:92:83:9a:61:0d:fd:98:d5:ed:94:cf:d1:d5:d9:a3:89:f3:
19:ee:ad:6a:fd:34:7e:17:2d:53:ab:dd:6b:4f:af:b7:cb:17:
bf:fe:63:54:40:71:85:e2:ac:4b:8f:cd:d0:1e:30:f8:ee:b3:
1d:cb:c3:a7:71:59:13:01:cf:a8:22:bd:38:76:e0:48:38:20:
b2:a6:54:f2:ef:aa:9f:dc:10:6a:2c:d2:22:da:af:c3:09:a7:
4a:7c:67:86:f7:92:54:da:48:ff:9e:59:69:1d:fe:27:c9:87:
54:43:39:51:0b:86:97:6c:a3:6d:c7:81:dd:97:04:75:78:b7:
11:a4:be:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 22 16:41:45 2023 by rpki-client on console-fra.rpki-client.org