Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/dGOL09IFHJaO_iDqJZAjuxIaG6A.roa
File: dGOL09IFHJaO_iDqJZAjuxIaG6A.roa (raw, json)
Hash identifier: U130+5XLLgChOVHlmOpROk0j/OlJhLJ7hzNwVZ0AXyQ=
Subject key identifier: 74:63:8B:D3:D2:05:1C:96:8E:FE:20:EA:25:90:23:BB:12:1A:1B:A0
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018CC64B2AF58167B51F709CF38A247AA068
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/dGOL09IFHJaO_iDqJZAjuxIaG6A.roa
Signing time: Mon 01 Jan 2024 18:31:04 +0000
ROA not before: Mon 01 Jan 2024 18:31:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213035
IP address blocks: 5.144.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jan 2024 22:36:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:2a:f5:81:67:b5:1f:70:9c:f3:8a:24:7a:a0:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jan 1 18:31:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=74638bd3d2051c968efe20ea259023bb121a1ba0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:ce:81:6f:42:c9:bc:e3:24:fa:47:cb:9b:fa:
bc:fe:87:f5:f8:c7:62:37:07:88:63:8b:dc:52:d6:
28:54:a0:61:fd:ad:6d:55:93:bf:8f:f9:8d:fd:66:
a4:12:fd:65:f1:56:27:57:1a:92:f8:ca:6c:d6:a1:
5d:e2:b9:d5:18:bf:f8:ac:2a:2f:01:3d:4a:dd:16:
c1:6d:24:8e:11:46:0c:58:04:7b:ae:5e:81:0b:97:
dc:d1:57:a6:2e:75:e0:12:57:db:75:60:c4:8c:43:
67:8f:d7:78:63:ab:bc:97:33:51:14:d6:5c:1b:e4:
6c:b9:c3:c3:eb:0a:20:92:0b:ce:9c:44:df:59:c7:
c8:c3:2e:68:b5:cc:1b:f4:40:a0:6d:11:e3:7f:7a:
f6:8c:c4:36:17:74:9c:02:74:28:60:57:05:a3:6e:
fd:cf:d2:2e:49:d2:e5:8b:a3:46:d4:f8:a8:a1:6c:
2d:da:7a:81:3c:b6:8d:0e:88:a8:8b:b2:6e:a9:15:
48:3b:64:e7:fa:10:70:1c:80:78:22:2a:2d:c1:40:
90:59:19:79:79:0e:71:e4:23:ef:15:c9:76:02:fa:
af:a1:5e:ef:35:18:a3:02:ae:5b:71:71:70:5a:39:
4d:4d:92:c3:3c:bf:90:0b:3d:42:c2:f9:94:14:16:
7c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:63:8B:D3:D2:05:1C:96:8E:FE:20:EA:25:90:23:BB:12:1A:1B:A0
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/dGOL09IFHJaO_iDqJZAjuxIaG6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.181.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:cb:e9:52:d7:a2:78:95:f0:18:bf:14:e8:28:de:18:2e:19:
6f:c0:63:84:0a:09:8a:a4:30:45:ef:56:f2:d8:4f:ff:bb:93:
d8:a9:17:fc:e5:eb:3c:8e:ef:d4:66:e5:0b:7e:97:05:56:c4:
a1:fc:92:67:5f:17:42:c4:c8:ea:92:99:5c:68:d2:c8:4f:31:
92:84:bc:7b:2e:45:e8:f6:c9:d0:a2:37:4b:9b:0d:48:35:a7:
31:2b:37:e8:f1:97:53:10:95:13:91:28:6f:1e:67:ec:91:6e:
b3:0d:cd:d0:86:05:11:46:4b:4a:3c:2b:6a:a1:d2:13:63:bb:
f9:91:f7:6d:71:b1:75:83:27:46:06:10:a9:dd:50:f9:96:b5:
e3:99:45:74:51:75:4a:ca:c9:b1:69:e6:f7:98:31:20:d9:5f:
f8:19:5a:df:77:2d:23:48:77:81:04:4b:54:fe:fd:8d:a0:7e:
ca:56:d2:bd:2b:d7:85:de:52:8e:c7:03:79:ba:14:3d:db:e8:
7d:84:65:3a:37:54:7c:e4:da:1f:7b:70:fd:69:86:2d:81:78:
f5:10:48:7b:22:48:cb:58:4a:a4:0c:5d:08:52:90:c2:fb:8c:
c8:b8:b9:bd:fa:22:8e:4d:d3:5c:a5:6a:fc:bc:63:cd:7d:98:
0b:a7:07:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 10 00:27:51 2024 by rpki-client on console-ams.rpki-client.org