Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/fDirMq7anKPMgKq4_GQqLPsjEGs.roa
File: fDirMq7anKPMgKq4_GQqLPsjEGs.roa (raw, json)
Hash identifier: 9fUqrFxNRcvU4Q6Ynn2WizY9EjT90t7/idm0vbWlqNw=
Subject key identifier: 7C:38:AB:32:AE:DA:9C:A3:CC:80:AA:B8:FC:64:2A:2C:FB:23:10:6B
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 019001E2BCFE46B77CF361FBB87381993AB6
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/fDirMq7anKPMgKq4_GQqLPsjEGs.roa
Signing time: Mon 10 Jun 2024 11:22:35 +0000
ROA not before: Mon 10 Jun 2024 11:22:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51765
IP address blocks: 5.144.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Jun 2024 13:43:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:01:e2:bc:fe:46:b7:7c:f3:61:fb:b8:73:81:99:3a:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jun 10 11:22:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c38ab32aeda9ca3cc80aab8fc642a2cfb23106b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a0:2a:86:9b:d7:0b:e4:8e:f5:37:da:87:a4:
82:e3:52:7b:37:75:35:8a:b4:ae:c5:a6:b0:fd:de:
44:14:51:cd:62:14:70:b3:c1:a7:1d:e0:f9:d0:6e:
f1:6c:e4:73:41:58:66:da:68:5f:05:b9:11:22:5f:
1b:df:8a:0e:72:44:2a:2f:fb:61:71:10:aa:d3:79:
58:68:98:fb:af:d2:55:07:27:04:54:cc:0e:c6:8c:
58:40:29:13:55:89:58:9b:51:1b:c3:5d:d6:5b:cc:
45:d3:46:2e:bc:0b:33:43:c5:76:77:70:86:4b:36:
f7:fd:19:da:81:dc:2b:bf:5b:2d:8b:6e:3b:53:af:
d7:45:4b:6f:09:a1:18:9f:a5:49:1b:bd:0c:a6:c6:
ef:99:28:34:cc:be:5e:0a:da:ea:c4:8c:0e:a4:42:
c8:15:eb:b2:e8:35:1d:1a:99:84:04:a1:4a:56:85:
9a:d2:9e:69:ec:ff:a3:70:b2:a6:0c:3d:f5:ac:12:
8e:a8:9f:db:ec:eb:fd:99:a7:ce:ad:75:42:40:ac:
22:7e:e1:e7:fa:7d:31:4f:ec:fc:94:b5:8c:18:ab:
0a:60:7c:66:52:99:33:b2:04:89:c5:f2:51:b1:9c:
06:91:08:d5:ae:0d:62:2b:ee:43:f7:31:6e:31:11:
64:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:38:AB:32:AE:DA:9C:A3:CC:80:AA:B8:FC:64:2A:2C:FB:23:10:6B
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/fDirMq7anKPMgKq4_GQqLPsjEGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.180.0/24
Signature Algorithm: sha256WithRSAEncryption
e1:0d:27:d2:6d:32:61:e5:40:b4:51:a1:94:db:07:3a:c8:ed:
e8:54:62:e0:82:67:88:0f:12:a5:7a:69:20:f1:33:57:c0:b4:
80:07:77:08:3b:47:8e:93:15:55:64:8b:26:21:4c:6a:93:ef:
1d:c2:23:73:76:73:a2:57:1d:27:00:85:0b:a3:00:05:cb:a0:
3f:2c:91:10:73:c4:ac:96:f2:58:fc:ca:ee:24:9d:a9:63:10:
a4:af:46:00:e4:46:0d:91:00:0b:9e:70:34:5e:c8:35:8f:90:
5a:a4:9d:0b:9c:8b:dc:8c:c9:ce:f2:bd:52:4e:2f:8c:f8:f4:
f6:e6:77:1a:be:f9:6f:55:86:aa:8f:14:94:81:e7:3b:5d:26:
5d:85:ec:29:19:0f:77:cd:94:68:5f:ff:4a:6e:f0:b0:9a:60:
a7:38:77:f8:23:75:7d:7f:27:30:f7:00:47:ce:a0:29:0e:c4:
26:e8:ef:98:49:6d:41:72:80:43:33:a2:63:73:1d:b5:4f:dc:
a5:35:ae:1f:bf:56:3a:ca:7c:db:1a:4b:2f:6e:f5:7e:1f:00:
be:e0:7a:1b:cd:b0:61:eb:16:0c:fb:76:f2:10:0d:ff:ad:de:
14:22:89:01:66:38:39:a6:28:67:d7:60:fb:fe:48:6e:31:c8:
21:ff:9e:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 11 17:40:39 2024 by rpki-client on console-fra.rpki-client.org