Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/k20O_enAtaDzuyoQvv8e0TlndFM.roa
File: k20O_enAtaDzuyoQvv8e0TlndFM.roa (raw, json)
Hash identifier: M3/MlMOv3XdWFs4EHIDrGAyeZgbNEw1SYN5ho724T+Y=
Subject key identifier: 93:6D:0E:FD:E9:C0:B5:A0:F3:BB:2A:10:BE:FF:1E:D1:39:67:74:53
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018D1828A0B57BD5FD6B0CC7AFC354B4F20C
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/k20O_enAtaDzuyoQvv8e0TlndFM.roa
Signing time: Wed 17 Jan 2024 16:02:12 +0000
ROA not before: Wed 17 Jan 2024 16:02:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 5.144.179.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Feb 2024 17:39:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:18:28:a0:b5:7b:d5:fd:6b:0c:c7:af:c3:54:b4:f2:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jan 17 16:02:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=936d0efde9c0b5a0f3bb2a10beff1ed139677453
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f6:c6:4c:c0:bd:1d:d4:d5:85:ac:9d:6f:f1:
e0:84:39:8d:93:52:88:82:72:67:5a:46:ad:e9:08:
54:15:3f:49:1b:31:ad:07:16:84:6f:16:df:77:c4:
25:6a:0a:ab:3d:5c:06:d0:ef:f4:74:1d:de:ac:14:
91:59:02:78:a5:06:ad:61:49:b7:4a:8d:c6:64:0d:
80:9d:d1:3c:0a:29:9f:b9:e8:9b:bd:80:e1:94:57:
74:a7:8f:7b:69:89:10:5b:36:44:61:53:a5:36:37:
02:3e:8e:d0:0c:bf:9a:1b:43:0a:a6:81:e4:04:da:
55:33:23:23:cb:f6:48:ba:c0:5d:69:aa:14:7a:2f:
d6:27:a4:30:e2:54:77:1c:5a:82:b0:e0:24:55:df:
19:f4:d8:2f:85:eb:b7:f4:b0:60:17:b6:35:c4:e4:
0e:9c:e9:27:5f:dc:33:9b:92:d4:85:dd:39:4f:8c:
3e:b5:55:74:40:e0:f7:05:c8:98:62:b5:0e:f4:5a:
e6:b0:cc:2f:8a:b4:c0:00:be:3e:d0:ea:91:5d:01:
e2:8f:85:3b:37:f1:d8:67:08:6c:7d:a4:25:41:6d:
b6:2a:79:35:53:7c:72:f2:67:00:e4:83:d6:3b:28:
01:36:21:1f:dc:83:09:2d:75:22:42:5f:09:25:11:
b3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:6D:0E:FD:E9:C0:B5:A0:F3:BB:2A:10:BE:FF:1E:D1:39:67:74:53
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/k20O_enAtaDzuyoQvv8e0TlndFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.179.0/24
Signature Algorithm: sha256WithRSAEncryption
69:ee:18:5f:e4:b3:c4:b8:bc:9b:e4:44:62:79:22:bc:27:0a:
08:ff:f1:c7:0a:d1:46:3a:aa:43:cb:6a:ad:71:3b:e6:62:0c:
e8:55:1a:d0:57:86:26:bf:ab:a1:ac:20:4d:b3:45:b3:34:8e:
d0:57:16:52:f2:61:52:5c:eb:aa:75:4d:cf:3c:6b:8e:2b:8d:
86:72:41:76:1c:f8:c6:2c:2d:27:08:cb:1c:b5:fa:32:4c:7c:
ff:cc:de:ab:86:e3:1f:8e:e2:b7:41:f1:e8:fb:fa:b4:29:aa:
22:0a:66:90:c7:0c:e7:75:b1:6b:35:47:a7:6f:94:2b:5d:35:
da:d7:60:19:45:21:8f:a9:12:dd:33:05:58:92:1b:8c:db:e0:
31:ea:fd:b6:8c:01:b8:ba:51:e8:3a:f7:91:13:ed:42:88:3a:
07:1d:89:c0:0d:82:27:26:72:94:29:8c:38:f7:d9:c0:f0:2b:
9c:11:62:b8:e8:d7:1a:24:6e:07:c0:3e:94:5e:71:56:13:2f:
dd:3f:0b:20:67:ff:77:62:50:77:2d:1c:ad:de:8e:2d:10:f1:
fd:ec:ea:fe:6b:02:1f:21:f9:98:95:eb:d6:0c:b7:c6:50:1f:
d7:58:68:5f:45:80:7f:41:66:c6:a2:6e:c8:92:86:c1:49:f4:
91:14:01:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 22:11:16 2024 by rpki-client on console-ams.rpki-client.org