Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/jhhuE_bNEk_PW4m2Razv7i6c1Qo.roa
File: jhhuE_bNEk_PW4m2Razv7i6c1Qo.roa (raw, json)
Hash identifier: U6paetTqwgfZoxoZ903gJ7fmOtxGzLAdu7j+LhECzXM=
Subject key identifier: 8E:18:6E:13:F6:CD:12:4F:CF:5B:89:B6:45:AC:EF:EE:2E:9C:D5:0A
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 0189265C4D7159D6A9E5216CF189F3C85106
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/jhhuE_bNEk_PW4m2Razv7i6c1Qo.roa
Signing time: Wed 05 Jul 2023 14:02:10 +0000
ROA not before: Wed 05 Jul 2023 14:02:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 5.178.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 31 Jul 2023 13:26:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:26:5c:4d:71:59:d6:a9:e5:21:6c:f1:89:f3:c8:51:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jul 5 14:02:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e186e13f6cd124fcf5b89b645acefee2e9cd50a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:39:df:66:6d:99:fe:03:1d:02:15:90:e9:31:
bb:4f:21:f0:5e:35:e2:5d:0b:b8:e0:58:48:70:0b:
f8:ff:ec:2d:a4:8a:89:72:26:cb:40:e6:a0:c0:44:
1f:f6:ab:a6:c9:b5:e3:5d:2c:9b:5c:89:33:cb:59:
e1:21:5a:5a:48:74:b5:3e:59:e0:a5:57:06:b5:ea:
1e:83:b9:bb:21:f2:08:46:80:32:7c:70:41:fd:3f:
6d:49:c1:e4:6a:d6:da:4c:7c:9a:c0:8b:d3:39:7c:
de:1d:33:98:5b:e4:18:08:09:f8:3c:4d:3a:7b:34:
d7:26:d4:da:7f:42:7e:5e:eb:96:c9:fc:b6:0e:b5:
e5:26:9e:32:f8:ce:cc:2f:ac:26:4e:7d:64:3f:4f:
72:be:11:48:17:61:33:b2:bb:45:8c:49:1e:b4:37:
b4:bd:54:4e:40:44:f0:75:93:6e:19:da:67:e3:eb:
de:8e:b2:a1:73:11:6b:0b:3b:60:39:9f:4d:3c:94:
0c:cd:99:eb:5a:62:7e:7c:93:1e:75:60:2e:9d:c3:
b9:5e:80:54:ca:6c:89:67:df:4d:d0:86:f3:51:20:
7b:14:40:63:a5:09:ac:97:cb:f2:a1:ef:b5:68:8a:
2a:0f:fb:78:71:1c:7c:b4:20:f8:a9:89:01:11:8b:
68:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:18:6E:13:F6:CD:12:4F:CF:5B:89:B6:45:AC:EF:EE:2E:9C:D5:0A
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/jhhuE_bNEk_PW4m2Razv7i6c1Qo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.103.0/24
Signature Algorithm: sha256WithRSAEncryption
31:96:62:df:a9:0b:8c:66:6e:9f:6e:60:56:eb:3b:ea:12:a2:
04:ea:3f:92:33:93:dd:dd:d1:cb:2e:33:56:69:1f:e2:84:f6:
6c:14:85:01:5a:73:8f:66:e5:de:48:04:b1:70:41:41:df:3d:
0a:f3:65:77:2d:7a:15:6d:4b:1b:2b:58:e9:7a:ed:71:2b:91:
f9:03:ac:fa:56:62:1c:e7:19:9d:3a:40:79:d8:1d:e6:ca:3d:
71:b7:b4:b8:b0:86:ca:bc:42:e7:0c:d0:b1:82:0d:38:6d:10:
7f:0e:ba:ed:f3:bb:25:e8:7c:65:11:e4:50:e0:d7:1e:38:aa:
0c:29:dd:90:f3:bd:2e:1d:17:0b:d7:b7:b5:df:c9:a9:16:d6:
4e:a6:0f:ff:0b:55:de:89:bb:4f:89:95:f2:d5:39:71:f1:91:
92:86:b1:c3:81:21:2b:28:d3:d5:e9:19:ac:e6:99:a0:f4:1b:
48:1c:62:90:a9:2f:15:d7:5d:1f:13:28:94:a4:24:96:26:b6:
77:53:8d:71:a7:c1:5a:08:84:68:1b:f7:05:8f:d2:be:5d:0a:
ed:6e:d1:5f:07:f4:2a:35:65:e1:4c:70:ab:b6:39:1f:c1:f1:
a2:0d:0f:f1:dd:07:22:9d:e5:ff:14:c6:67:ae:73:0e:02:8b:
f8:bc:f8:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:33 2024 by rpki-client on console-fra.rpki-client.org