Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/g096W-lE_GMfdnSJBTXO167H8po.roa
File: g096W-lE_GMfdnSJBTXO167H8po.roa (raw, json)
Hash identifier: ZwUgjXprkcChBejgdSlHg1io20zLveAgnZQmcudefGg=
Subject key identifier: 83:4F:7A:5B:E9:44:FC:63:1F:76:74:89:05:35:CE:D7:AE:C7:F2:9A
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018CD5786C45DA61C6979F28DA111EBD0737
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/g096W-lE_GMfdnSJBTXO167H8po.roa
Signing time: Thu 04 Jan 2024 17:14:48 +0000
ROA not before: Thu 04 Jan 2024 17:14:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205203
IP address blocks: 5.144.178.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 15:07:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d5:78:6c:45:da:61:c6:97:9f:28:da:11:1e:bd:07:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jan 4 17:14:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=834f7a5be944fc631f7674890535ced7aec7f29a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5f:10:83:f0:3b:ec:4d:8a:90:a4:3d:d0:93:
a0:b7:13:1b:02:0e:51:5e:4c:05:85:31:9b:01:1f:
f6:ef:d0:29:d4:a8:4d:a5:6f:92:74:f1:12:a4:24:
df:44:32:d8:fc:a9:ec:ad:3c:0d:9c:62:1c:64:56:
13:cf:a6:db:c9:9c:b9:b0:fd:a3:32:1d:05:0e:30:
94:0c:cf:7e:76:67:27:4d:d4:90:cf:bd:a8:14:5f:
f8:72:9f:35:de:5d:3d:bf:4e:76:fc:3e:bf:83:e3:
94:87:b4:ed:ce:80:77:8f:65:8c:83:24:ee:c6:5c:
a3:5d:de:6c:41:09:cd:ba:ad:42:c8:aa:95:98:35:
d6:3a:05:25:aa:b9:fc:3d:ed:fb:27:8d:f1:8e:37:
4f:40:2a:d6:4e:5e:5e:ce:d4:5b:97:4f:ca:30:74:
7c:85:0d:a7:7a:3a:25:1c:fc:21:be:fe:d8:d0:12:
ce:0a:a9:16:59:1c:49:3e:c1:44:97:29:c8:d6:03:
bd:aa:b6:a0:61:83:9f:58:61:07:24:e1:3a:0d:7a:
7d:98:11:85:25:9a:f8:ab:89:eb:89:72:5e:17:82:
ed:43:2b:cb:05:38:8a:bd:e9:7c:81:c7:82:32:13:
11:f6:89:46:df:59:de:bf:54:92:37:18:72:ae:b0:
69:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:4F:7A:5B:E9:44:FC:63:1F:76:74:89:05:35:CE:D7:AE:C7:F2:9A
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/g096W-lE_GMfdnSJBTXO167H8po.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.178.0/24
Signature Algorithm: sha256WithRSAEncryption
06:39:2d:22:92:f4:35:a7:ee:64:64:93:06:f9:bc:95:2c:b1:
cb:ec:ea:af:6b:7d:18:4d:5f:5f:02:6e:30:a4:19:b4:5f:20:
15:64:6d:c4:90:a4:25:40:ad:61:bb:1a:8b:a5:d5:b9:b9:49:
1f:68:ac:31:05:b2:90:aa:9d:a3:89:a1:86:6e:96:9b:1f:93:
34:27:fe:47:76:dc:b7:0e:1e:51:a1:a4:60:70:f1:ec:f5:30:
2c:75:cb:fb:a2:d2:8e:65:7d:00:fc:3f:f6:70:52:bc:87:8c:
ca:b7:41:72:6d:ea:10:48:38:01:4f:cd:0c:5f:2b:06:e8:6b:
33:a2:83:ce:2a:9d:b1:72:b7:89:7b:ed:f9:e5:2a:59:a6:98:
51:5f:30:e9:0c:42:9c:95:c0:7f:14:38:cb:27:3b:2e:dc:fe:
be:2d:65:1b:af:6a:f8:28:52:87:34:ff:30:25:02:03:de:75:
8a:13:0e:d2:8d:4f:bb:84:e6:e4:6d:f5:6b:84:91:64:54:5f:
32:c6:6a:81:2a:71:d5:f3:06:7d:c5:e9:88:7a:70:db:1b:dd:
c4:dc:5f:ea:22:4e:f3:c5:8d:3b:ef:8c:79:bd:2d:0c:a5:0b:
5f:bd:e5:42:4e:b9:e8:e2:7c:e4:38:21:a8:1b:fa:2a:78:5d:
16:e9:4b:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 7 19:25:58 2024 by rpki-client on console-fra.rpki-client.org