Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/aihdR9XS9gqIJdpVKegjVoUCKbA.roa
File: aihdR9XS9gqIJdpVKegjVoUCKbA.roa (raw, json)
Hash identifier: eO5Ks3NvN2HLVgqb7KSPQg9mWs2pC47+oO83q6IXdq0=
Subject key identifier: 6A:28:5D:47:D5:D2:F6:0A:88:25:DA:55:29:E8:23:56:85:02:29:B0
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018DD21773B974178A75D03E7165DF438C76
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/aihdR9XS9gqIJdpVKegjVoUCKbA.roa
Signing time: Thu 22 Feb 2024 18:32:48 +0000
ROA not before: Thu 22 Feb 2024 18:32:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 5.178.98.0/24 maxlen: 24
31.192.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Feb 2024 16:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d2:17:73:b9:74:17:8a:75:d0:3e:71:65:df:43:8c:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Feb 22 18:32:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6a285d47d5d2f60a8825da5529e82356850229b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:80:6c:f8:cb:ee:4a:c4:da:37:e1:51:b1:9a:
97:9f:4b:1e:b2:e2:8c:c1:bf:fa:c8:bb:41:04:f5:
66:b1:01:77:ea:38:87:ba:ff:d2:d0:fe:1f:1b:12:
64:31:31:18:83:8c:77:63:48:93:87:56:19:e7:47:
55:67:7b:56:c0:ea:bb:e9:2d:49:7b:45:9c:71:3e:
bd:6f:37:f7:7d:4b:6d:7a:fc:01:cf:b8:b0:ad:e9:
cf:70:10:a7:78:8d:31:3a:3e:a7:4b:79:43:72:b5:
6a:ce:9e:70:e0:ba:22:77:c5:07:00:a4:fa:68:09:
79:5a:d0:cf:80:84:0e:a0:d6:a0:7d:71:8c:52:2d:
12:72:13:8f:d2:10:0f:5b:31:cc:79:77:1d:50:5d:
27:a2:ee:ab:c3:f1:94:1a:b3:7b:95:c2:fc:28:47:
5a:c0:c2:04:a1:cb:ab:6a:42:7d:e2:b1:5a:c8:b4:
d1:15:69:9f:28:f7:bc:f3:e8:1d:8e:ad:a8:8e:08:
d8:74:a9:3f:b6:ed:ef:bf:a2:b2:a9:a0:94:b0:d9:
7c:2d:25:d8:b9:ec:05:f7:e3:41:d7:97:04:d0:3c:
dd:ed:9a:a4:71:ba:2a:08:a0:77:4d:77:c2:22:5c:
21:06:99:39:d9:62:4b:3f:4e:c1:2d:4d:69:18:04:
5a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:28:5D:47:D5:D2:F6:0A:88:25:DA:55:29:E8:23:56:85:02:29:B0
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/aihdR9XS9gqIJdpVKegjVoUCKbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.98.0/24
31.192.246.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:79:34:1e:38:62:34:3a:94:bf:ea:83:57:9a:95:6b:18:a0:
bb:5a:53:eb:9b:a8:f8:0b:b4:6f:f1:f8:a0:fb:d3:30:bf:aa:
70:b6:25:c9:ef:3e:91:ff:69:66:f3:31:00:f4:37:14:7a:7f:
2f:31:7c:55:1d:90:e7:4b:11:7f:59:b7:d2:92:73:17:4c:8b:
cb:41:f9:e2:4e:92:2b:3d:88:fe:15:09:cc:0c:01:d6:bf:01:
c5:12:3e:92:70:08:ca:92:f7:79:90:7b:e9:27:4a:84:5d:21:
e6:bf:1d:de:e8:ab:b7:96:64:52:14:4d:45:b4:72:13:aa:ea:
ac:3e:9a:4d:33:41:45:a1:c8:8e:80:16:38:23:8e:d3:b2:30:
80:a6:ca:d8:8e:c7:42:71:34:cf:b6:24:c3:37:f2:2c:0f:24:
91:1f:6a:0b:38:e1:68:18:82:c4:d3:ad:4d:de:61:e3:74:43:
1a:ba:4c:c7:0c:14:91:c3:c4:f2:f8:e4:4e:fe:a1:26:db:d9:
53:c5:56:5d:92:b5:78:a3:59:5d:7b:5a:6f:aa:02:d4:3b:0a:
66:a7:f0:8d:00:d0:58:69:03:1c:93:94:25:5b:c9:68:c6:4b:
9a:f8:d8:c5:1e:9f:31:f0:77:2b:93:88:cf:41:19:73:23:6b:
6a:b5:b7:eb
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY3SF3O5dBeKddA+cWXfQ4x2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzMTg4MTczMmEzZTI0NWE5NTliYzY3OWUwNDU4YzM5Zjg5
M2U0NmIwHhcNMjQwMjIyMTgzMjQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YTI4NWQ0N2Q1ZDJmNjBhODgyNWRhNTUyOWU4MjM1Njg1MDIyOWIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAooBs+MvuSsTaN+FRsZqXn0sesuKM
wb/6yLtBBPVmsQF36jiHuv/S0P4fGxJkMTEYg4x3Y0iTh1YZ50dVZ3tWwOq76S1J
e0WccT69bzf3fUttevwBz7iwrenPcBCneI0xOj6nS3lDcrVqzp5w4Loid8UHAKT6
aAl5WtDPgIQOoNagfXGMUi0SchOP0hAPWzHMeXcdUF0nou6rw/GUGrN7lcL8KEda
wMIEocurakJ94rFayLTRFWmfKPe88+gdjq2ojgjYdKk/tu3vv6KyqaCUsNl8LSXY
uewF9+NB15cE0Dzd7ZqkcboqCKB3TXfCIlwhBpk52WJLP07BLU1pGARaqQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFGooXUfV0vYKiCXaVSnoI1aFAimwMB8GA1UdIwQY
MBaAFBMYgXMqPiRalZvGeeBFjDn4k+RrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUt
Y2Q2MTUyMjYxYzZmLzEvYWloZFI5WFM5Z3FJSmRwVktlZ2pWb1VDS2JBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUtY2Q2MTUyMjYxYzZm
LzEvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABbJiAwQA
H8D2MA0GCSqGSIb3DQEBCwUAA4IBAQCneTQeOGI0OpS/6oNXmpVrGKC7WlPrm6j4
C7Rv8fig+9Mwv6pwtiXJ7z6R/2lm8zEA9DcUen8vMXxVHZDnSxF/WbfSknMXTIvL
QfniTpIrPYj+FQnMDAHWvwHFEj6ScAjKkvd5kHvpJ0qEXSHmvx3e6Ku3lmRSFE1F
tHITquqsPppNM0FFociOgBY4I47TsjCApsrYjsdCcTTPtiTDN/IsDySRH2oLOOFo
GILE061N3mHjdEMaukzHDBSRw8Ty+ORO/qEm29lTxVZdkrV4o1lde1pvqgLUOwpm
p/CNANBYaQMck5QlW8loxkua+NjFHp8x8Hcrk4jPQRlzI2tqtbfr
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:15 2024 by rpki-client on console-ams.rpki-client.org