Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/gDmiDh-ClrL-DGInIIIgc0x5jKM.roa
File: gDmiDh-ClrL-DGInIIIgc0x5jKM.roa (raw, json)
Hash identifier: R93xFj0Idl6ZeaCf0edBREQFYksn6nrAXT6NwCdu31Q=
Subject key identifier: 80:39:A2:0E:1F:82:96:B2:FE:0C:62:27:20:82:20:73:4C:79:8C:A3
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018C5E8BFE81A811DBB8D0A6783A4B44FB3C
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/gDmiDh-ClrL-DGInIIIgc0x5jKM.roa
Signing time: Tue 12 Dec 2023 15:01:21 +0000
ROA not before: Tue 12 Dec 2023 15:01:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216081
IP address blocks: 5.144.176.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5e:8b:fe:81:a8:11:db:b8:d0:a6:78:3a:4b:44:fb:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Dec 12 15:01:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8039a20e1f8296b2fe0c6227208220734c798ca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:26:da:f5:18:dc:33:1c:47:6f:48:91:6c:6b:
34:2b:65:a1:6c:e9:a8:47:af:92:7d:d5:75:32:7d:
3c:eb:64:b1:2e:e4:bd:7b:73:6e:46:aa:d8:9e:8b:
3d:54:8d:9f:2d:ad:67:a3:2d:54:f2:a3:99:a2:af:
71:d7:63:24:ed:64:77:f6:bf:d1:58:b1:56:d3:78:
61:8c:93:29:68:1a:3d:80:16:4c:47:b8:e6:ac:d1:
09:e0:b6:44:84:cb:9c:d5:69:26:ea:07:b5:95:46:
51:fe:21:67:63:62:96:e0:d4:8e:8d:5b:ba:43:0a:
b4:d4:72:9a:07:37:61:c7:7b:a1:82:46:40:5f:49:
16:2e:8f:ff:67:0a:1b:84:b4:68:aa:5a:a1:6f:e7:
4b:a9:40:c9:03:e8:86:cc:e1:72:22:0f:28:fc:00:
5c:40:f0:94:a6:97:9d:9e:f8:1e:26:8c:51:ec:32:
e2:04:c8:b3:bc:6a:9c:25:46:01:69:eb:ae:a8:83:
66:59:f5:8d:7e:3f:2e:d2:1f:09:d5:ff:b0:f3:89:
e0:36:5c:44:40:33:e5:ca:e2:a2:a2:9a:24:49:89:
ca:00:6b:0a:78:65:40:aa:9b:5e:0c:42:ff:3d:eb:
c2:0d:90:ae:76:db:44:5f:d1:55:2b:6c:73:7d:87:
d1:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:39:A2:0E:1F:82:96:B2:FE:0C:62:27:20:82:20:73:4C:79:8C:A3
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/gDmiDh-ClrL-DGInIIIgc0x5jKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.176.0/24
Signature Algorithm: sha256WithRSAEncryption
37:1f:0a:0b:03:52:49:52:dc:46:12:b9:6a:9b:15:98:e3:39:
0f:4f:05:4b:3e:b2:9b:5c:38:3c:3e:5c:c0:e6:19:48:95:7a:
82:f7:6f:6e:68:c8:44:c8:59:ad:d8:85:f7:ac:e8:cf:90:46:
68:99:f0:d1:48:c0:38:49:2a:c2:fd:b0:f9:c0:da:21:ed:9b:
14:4f:0b:02:93:35:a7:42:89:b2:51:01:68:b2:ea:e2:63:d3:
ee:88:d2:bf:88:23:98:a0:24:be:c7:8e:3c:17:e3:e3:b9:08:
ba:47:41:8d:be:7f:51:e6:bd:7a:a6:26:e8:fb:2e:ca:ef:6d:
4c:41:02:d4:63:2a:8e:c4:7a:57:02:b4:81:4a:6c:af:dc:74:
89:d3:db:6e:32:28:53:6a:18:85:65:39:39:a2:77:4f:25:1c:
1a:74:d0:91:ad:47:54:e6:28:5e:d0:0f:11:96:9e:fa:3c:40:
4a:6e:44:c8:8b:bb:63:02:1e:f0:36:a0:b5:99:8c:b9:c0:ee:
44:ee:3a:6c:9a:ad:a5:fa:7f:02:b5:13:2a:cd:25:f9:f4:9d:
0b:29:3c:30:52:dd:bb:95:d8:a3:c6:68:12:19:46:cc:9d:d4:
eb:58:be:1d:27:4e:6c:4c:a5:0c:cc:2d:c9:50:93:43:f0:79:
b8:0c:a6:1f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxei/6BqBHbuNCmeDpLRPs8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzMTg4MTczMmEzZTI0NWE5NTliYzY3OWUwNDU4YzM5Zjg5
M2U0NmIwHhcNMjMxMjEyMTUwMTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MDM5YTIwZTFmODI5NmIyZmUwYzYyMjcyMDgyMjA3MzRjNzk4Y2EzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgSba9RjcMxxHb0iRbGs0K2WhbOmo
R6+SfdV1Mn0862SxLuS9e3NuRqrYnos9VI2fLa1noy1U8qOZoq9x12Mk7WR39r/R
WLFW03hhjJMpaBo9gBZMR7jmrNEJ4LZEhMuc1Wkm6ge1lUZR/iFnY2KW4NSOjVu6
Qwq01HKaBzdhx3uhgkZAX0kWLo//ZwobhLRoqlqhb+dLqUDJA+iGzOFyIg8o/ABc
QPCUppednvgeJoxR7DLiBMizvGqcJUYBaeuuqINmWfWNfj8u0h8J1f+w84ngNlxE
QDPlyuKiopokSYnKAGsKeGVAqpteDEL/PevCDZCudttEX9FVK2xzfYfRkwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIA5og4fgpay/gxiJyCCIHNMeYyjMB8GA1UdIwQY
MBaAFBMYgXMqPiRalZvGeeBFjDn4k+RrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUt
Y2Q2MTUyMjYxYzZmLzEvZ0RtaURoLUNsckwtREdJbklJSWdjMHg1aktNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUtY2Q2MTUyMjYxYzZm
LzEvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABZCwMA0G
CSqGSIb3DQEBCwUAA4IBAQA3HwoLA1JJUtxGErlqmxWY4zkPTwVLPrKbXDg8PlzA
5hlIlXqC929uaMhEyFmt2IX3rOjPkEZomfDRSMA4SSrC/bD5wNoh7ZsUTwsCkzWn
QomyUQFosuriY9PuiNK/iCOYoCS+x448F+PjuQi6R0GNvn9R5r16pibo+y7K721M
QQLUYyqOxHpXArSBSmyv3HSJ09tuMihTahiFZTk5ondPJRwadNCRrUdU5ihe0A8R
lp76PEBKbkTIi7tjAh7wNqC1mYy5wO5E7jpsmq2l+n8CtRMqzSX59J0LKTwwUt27
ldijxmgSGUbMndTrWL4dJ05sTKUMzC3JUJND8Hm4DKYf
-----END CERTIFICATE-----
Generated at Wed Dec 13 13:10:32 2023 by rpki-client on console-ams.rpki-client.org