Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/gZGyDf_mlcdeUC-e2-VJ--ie7zA.roa
File: gZGyDf_mlcdeUC-e2-VJ--ie7zA.roa (raw, json)
Hash identifier: CPCWE7GIZN+NZdBu+46WDKP1azWhIMzpfYx1bDjAXYQ=
Subject key identifier: 81:91:B2:0D:FF:E6:95:C7:5E:50:2F:9E:DB:E5:49:FB:E8:9E:EF:30
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018E52FF95B2632947802B637DA33EF8AFC2
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/gZGyDf_mlcdeUC-e2-VJ--ie7zA.roa
Signing time: Mon 18 Mar 2024 19:17:45 +0000
ROA not before: Mon 18 Mar 2024 19:17:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215567
IP address blocks: 5.178.96.0/24 maxlen: 24
5.178.106.0/24 maxlen: 24
5.178.107.0/24 maxlen: 24
5.178.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Apr 2024 22:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:52:ff:95:b2:63:29:47:80:2b:63:7d:a3:3e:f8:af:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Mar 18 19:17:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8191b20dffe695c75e502f9edbe549fbe89eef30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:79:d9:da:49:b1:75:bf:d1:3e:a7:af:ac:39:
12:47:7f:a9:da:54:94:ed:39:53:fd:24:b1:77:4a:
66:29:db:69:45:f2:03:08:f5:ac:5f:d4:52:29:eb:
8d:70:2e:0c:b9:dd:bd:7f:3b:6f:35:63:4e:ff:40:
9e:1d:b5:be:d7:4d:7c:a2:46:35:db:09:f4:16:0d:
21:24:87:5c:a7:c0:53:9d:ba:58:26:f2:f8:0a:22:
45:38:b5:3e:64:dd:d5:a8:5b:ea:5e:3b:98:4d:bf:
12:52:8d:10:c6:e3:69:f5:cb:f1:04:c3:41:27:5e:
c1:52:17:9c:8f:d1:b8:66:ac:11:2d:8e:d2:ee:31:
b0:fa:d7:95:03:5d:51:0f:a1:93:40:2a:85:37:7c:
53:a6:06:57:24:63:66:f1:5b:5b:6c:d3:3a:fc:20:
b1:1e:ba:c7:dd:7d:c8:53:08:ad:73:77:ce:3a:3b:
ce:c6:1e:87:f7:54:14:7a:09:25:8e:d5:c3:57:84:
0d:3f:34:aa:b4:4d:ae:1d:fd:3e:4c:97:b9:d8:e9:
3b:7a:a4:5c:34:4c:17:d4:65:91:05:88:2e:20:79:
84:02:a0:45:df:cc:08:17:82:d5:79:c8:6c:95:4e:
2c:a4:26:a9:0b:f2:0e:cb:e5:82:6d:e2:e8:fe:d1:
b7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:91:B2:0D:FF:E6:95:C7:5E:50:2F:9E:DB:E5:49:FB:E8:9E:EF:30
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/gZGyDf_mlcdeUC-e2-VJ--ie7zA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.96.0/24
5.178.106.0/23
5.178.109.0/24
Signature Algorithm: sha256WithRSAEncryption
75:3d:ec:e8:de:13:e6:1a:46:24:63:85:ff:66:78:9f:1f:7d:
96:6a:5b:f7:24:28:a4:ed:5d:bf:00:20:df:94:d6:b5:b4:11:
e7:70:7f:ec:9a:20:00:e9:31:a7:d1:34:59:21:9d:73:87:06:
bf:4f:01:17:cc:e5:14:25:87:9d:43:c3:5a:ad:46:de:35:22:
ae:e5:e3:0e:7d:c9:c8:93:e4:89:48:9b:6f:10:e6:56:55:1a:
10:52:d5:1f:85:ae:0c:0d:2d:75:b2:9c:c7:d6:7b:b8:43:c2:
18:54:32:db:6a:41:97:be:dd:0f:bd:2e:bf:8d:04:98:27:3e:
8b:15:97:e0:d1:7f:41:01:32:2b:f7:1a:3e:8f:31:92:71:14:
91:b3:19:cb:50:94:af:5f:93:78:a9:d6:1c:a7:7f:c7:71:e4:
cd:73:7b:36:28:15:53:59:a7:a8:cf:71:04:96:54:87:29:b4:
b3:d9:ea:4e:07:bf:c1:14:02:46:e0:b4:88:cb:ce:07:43:79:
e7:cf:25:a0:14:da:32:ec:1c:cd:94:53:ec:4f:3d:a3:e2:15:
0c:31:25:bc:10:16:cb:f1:e1:22:42:b0:11:6b:02:8b:84:ab:
e2:dd:a5:1f:32:e9:ef:b3:a8:7a:c2:77:44:d1:1b:e6:af:63:
bf:e2:df:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 6 23:22:28 2024 by rpki-client on console-fra.rpki-client.org