Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/bEOa1-7LQisZUJMpXVFedM0lbIg.roa
File: bEOa1-7LQisZUJMpXVFedM0lbIg.roa (raw, json)
Hash identifier: KRs7ZPdULMvZJVjPUHolyRv8+4HghDpw4poM+jYjc2Q=
Subject key identifier: 6C:43:9A:D7:EE:CB:42:2B:19:50:93:29:5D:51:5E:74:CD:25:6C:88
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018DC644E5188B7E19A7A14FBA27D0BA0491
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/bEOa1-7LQisZUJMpXVFedM0lbIg.roa
Signing time: Tue 20 Feb 2024 11:27:00 +0000
ROA not before: Tue 20 Feb 2024 11:27:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215567
IP address blocks: 5.178.106.0/24 maxlen: 24
5.178.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Feb 2024 20:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c6:44:e5:18:8b:7e:19:a7:a1:4f:ba:27:d0:ba:04:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Feb 20 11:27:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c439ad7eecb422b195093295d515e74cd256c88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:df:fb:93:c0:24:09:0b:a7:f5:55:73:ba:f4:
0c:5c:80:d4:35:c0:48:3a:f2:8f:dd:ee:55:28:e3:
8a:98:09:43:83:1a:b3:11:cb:e7:a9:9e:a1:46:85:
a1:10:1d:8b:a3:fb:f5:f2:a4:88:05:31:db:39:81:
c3:77:e5:27:75:7c:36:c1:b2:a0:fa:bb:61:8b:f1:
b8:5e:8f:51:18:de:a0:21:45:29:e6:66:21:bc:92:
7a:f4:fc:09:97:ad:c0:75:43:de:cd:99:50:09:5a:
78:77:75:ca:f6:e1:6b:be:4a:55:5e:b0:a6:a1:a3:
af:8a:9f:70:5a:bb:45:83:48:18:32:97:4a:0f:c5:
26:29:9d:3c:e6:2e:8b:b4:9f:8f:1e:4e:81:0f:bf:
ea:51:ff:94:94:41:d9:71:06:88:51:65:de:82:17:
53:4e:5a:35:61:94:5a:b9:b7:c2:06:ab:70:d0:ef:
59:bb:c9:96:95:c4:42:b9:a5:5c:bf:be:cc:a9:6e:
4b:7a:7e:e2:64:c1:4f:fd:30:d3:c3:06:53:2d:68:
0a:3d:8b:ae:2b:ee:f2:60:39:77:96:31:ba:b8:b5:
e4:e4:85:d1:56:58:38:f6:c3:cc:c6:4b:3d:db:ee:
27:6e:70:82:af:7d:3a:02:d0:7e:ef:96:f5:8c:e4:
6f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:43:9A:D7:EE:CB:42:2B:19:50:93:29:5D:51:5E:74:CD:25:6C:88
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/bEOa1-7LQisZUJMpXVFedM0lbIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.106.0/24
5.178.109.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:fb:29:29:28:1e:18:42:70:1f:32:a4:f2:5c:b4:89:16:dd:
85:69:a5:ec:ab:ae:55:14:ea:17:18:e1:97:f7:26:9e:83:5e:
30:ef:8d:a2:67:a2:d4:9a:12:5a:cf:f0:b4:c3:dd:ce:82:e1:
cc:e7:f0:e7:a1:a7:19:d1:b2:c4:18:f2:c7:02:13:cf:61:40:
4b:0e:2b:36:f1:b6:7b:33:bd:48:f7:c4:19:ec:68:06:50:4c:
ea:16:8f:42:0f:c7:70:89:16:0a:29:47:38:07:f4:b1:74:40:
af:fa:98:d7:3f:3e:97:39:dd:e8:f0:ff:65:14:84:2f:68:99:
38:8e:da:f2:75:f4:8a:af:a4:00:4b:45:b4:5b:81:3f:53:00:
ca:11:f7:c3:54:fd:c7:f3:cc:34:ae:03:11:19:82:f3:7f:80:
e6:cb:6c:a2:38:5b:c3:e0:39:e9:c0:b9:54:46:27:4f:e7:f9:
f6:db:49:d2:61:3e:66:30:66:14:a7:21:64:a7:52:84:4a:8c:
ec:9a:38:a9:0f:1d:99:d0:57:60:78:4b:8e:b4:37:43:fd:7e:
71:2a:44:16:41:a3:6f:e4:58:dc:d4:91:93:89:b2:e1:20:01:
90:9d:db:a0:bf:01:c0:43:ec:b1:3d:b4:4d:8d:00:05:93:24:
6e:94:45:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:15 2024 by rpki-client on console-ams.rpki-client.org