Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/eS06O28ToD-DRbJfhs0gDXK6NV0.roa
File: eS06O28ToD-DRbJfhs0gDXK6NV0.roa (raw, json)
Hash identifier: 5EZ2HbHJEcaFvYLOkE/4CtvxiaMJuJRAQPuOOWJjQOk=
Subject key identifier: 79:2D:3A:3B:6F:13:A0:3F:83:45:B2:5F:86:CD:20:0D:72:BA:35:5D
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018CC64B2AB2B4668804E163701505AC7747
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/eS06O28ToD-DRbJfhs0gDXK6NV0.roa
Signing time: Mon 01 Jan 2024 18:31:04 +0000
ROA not before: Mon 01 Jan 2024 18:31:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212815
IP address blocks: 5.178.101.0/24 maxlen: 24
5.178.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Feb 2024 20:09:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:2a:b2:b4:66:88:04:e1:63:70:15:05:ac:77:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jan 1 18:31:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=792d3a3b6f13a03f8345b25f86cd200d72ba355d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:cf:f2:7a:d6:d9:c6:71:e3:f3:72:d2:78:39:
90:4f:e6:1d:83:3b:f1:2a:42:50:8c:d6:9e:93:c1:
99:d3:f4:5b:38:d9:df:eb:15:6a:aa:d5:a2:4f:99:
ac:55:39:ee:1e:9e:8a:ae:21:98:b6:ef:86:65:02:
86:5f:93:ed:ce:a1:fe:b0:ea:69:7c:e6:8f:6b:23:
8b:4b:65:29:60:2e:d3:83:c5:3d:d3:08:5d:e0:55:
a0:28:20:8b:b8:64:19:87:ea:72:38:8e:dc:08:05:
1e:80:20:e2:d6:6a:5a:be:ce:ba:29:68:bb:9a:52:
47:63:a2:31:4e:e0:1c:88:e5:68:de:96:84:99:4f:
e9:4b:9f:41:68:e2:79:e1:8c:49:b7:06:0f:53:4f:
4c:90:68:e1:d8:73:1e:d2:6e:f4:e8:cb:f6:9c:d8:
3d:85:75:b6:b0:ea:ef:a9:b7:9e:9b:2d:07:f0:b9:
58:b5:22:23:9a:23:51:e7:08:7d:70:72:00:54:e8:
3a:1d:11:84:5b:5d:bb:01:1d:dd:15:91:59:c1:3d:
d1:57:d9:e6:a8:6e:be:3c:17:8d:de:5d:36:c8:1e:
fb:c0:79:21:c1:08:82:05:bf:d9:cc:ff:d0:88:6e:
cd:58:64:c2:e8:e5:21:2f:54:bc:fb:4a:17:8c:3b:
c3:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:2D:3A:3B:6F:13:A0:3F:83:45:B2:5F:86:CD:20:0D:72:BA:35:5D
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/eS06O28ToD-DRbJfhs0gDXK6NV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.101.0/24
5.178.107.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:a1:fb:2e:61:23:1b:96:30:b6:5d:c7:d7:51:60:fb:90:11:
57:e7:43:ee:9a:89:cd:98:05:1b:21:90:97:49:08:74:42:29:
19:11:fe:00:a3:7c:df:18:61:53:d1:a2:46:e5:b8:cd:8e:1a:
cf:38:3b:25:bc:79:59:83:f4:60:03:19:b8:0a:8a:7a:d1:e4:
83:34:1d:d5:6d:bc:41:9a:8b:38:6c:a9:e2:4d:da:1e:6c:9a:
43:f1:10:20:8a:7e:0a:f8:2f:6d:f3:bf:17:ba:b8:d7:c1:56:
db:6e:0b:3e:b1:25:af:dc:4e:8a:f3:c5:08:e8:43:63:34:00:
4b:e5:64:cc:5d:6c:5c:5a:74:0f:a6:dd:3f:50:ed:4b:61:7f:
cd:f9:d0:58:eb:85:86:b6:9a:e9:29:a8:d3:29:d8:c9:38:fa:
8d:1f:10:06:9f:1b:db:83:75:f8:93:b9:b4:02:aa:6c:06:2d:
c1:0e:3a:00:90:34:d9:ef:57:d6:a8:02:7e:c2:79:f1:10:e3:
49:ba:73:94:64:a6:bb:a2:20:5a:b0:e0:8f:96:9f:35:fa:92:
d1:51:4b:ba:a8:c7:43:14:b6:71:67:a6:86:7a:b7:d6:3f:a9:
5c:1e:c9:84:fd:bf:89:a9:72:0a:04:df:c7:5a:4f:e4:18:3c:
76:be:ae:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 26 22:58:35 2024 by rpki-client on console-fra.rpki-client.org