Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/o09sydg2TtYgEXadIUqHWVwglWI.roa
File: o09sydg2TtYgEXadIUqHWVwglWI.roa (raw, json)
Hash identifier: 58+HTEEHljtXIjYrqfAzfQJFxSbSB3db7aWdu0rjTzc=
Subject key identifier: A3:4F:6C:C9:D8:36:4E:D6:20:11:76:9D:21:4A:87:59:5C:20:95:62
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018B723372321F1240E891D6CE74B471E91C
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/o09sydg2TtYgEXadIUqHWVwglWI.roa
Signing time: Fri 27 Oct 2023 17:34:15 +0000
ROA not before: Fri 27 Oct 2023 17:34:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44547
IP address blocks: 5.178.111.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:72:33:72:32:1f:12:40:e8:91:d6:ce:74:b4:71:e9:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Oct 27 17:34:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a34f6cc9d8364ed62011769d214a87595c209562
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:47:ca:32:bc:99:43:df:30:98:b7:52:3c:74:
5a:77:2c:5c:08:2d:ff:cb:1c:27:25:1e:f4:63:bf:
27:cc:bf:b1:a3:f3:1e:5f:ac:48:dc:0d:d0:58:76:
05:4c:b8:e6:a3:9c:4f:c5:33:31:8f:6e:aa:65:0e:
3d:d2:76:b6:ba:35:b5:68:16:aa:73:59:d3:4c:0e:
07:e0:2b:4d:00:8c:37:f5:78:c4:ca:2f:f8:7e:63:
52:54:6c:06:f1:f5:b6:39:b6:7d:a9:47:bd:f3:37:
5b:4f:db:ea:ec:51:47:de:18:e5:60:03:21:1e:8c:
c3:3f:20:a3:1a:9e:a4:e5:4d:1d:d4:11:fb:07:5d:
e2:b8:19:4d:0a:c2:1b:36:76:95:2a:a7:f6:f1:3a:
22:ce:33:e7:0a:87:a5:59:ba:92:7b:8a:c4:eb:c8:
86:65:ea:01:d3:a4:10:8b:01:50:f7:d4:c4:cc:74:
87:6f:8f:59:94:27:7f:45:a7:8a:2e:12:03:b5:d7:
08:fa:3b:8c:52:c4:42:7d:65:b6:08:ed:f8:df:eb:
85:ea:ad:53:3c:77:da:7e:39:c3:ee:6e:40:98:9a:
58:7f:cb:ed:87:bc:ac:f4:ef:d7:ad:71:bb:7d:e6:
1f:5a:62:23:41:3d:d1:89:be:03:0e:bc:b6:00:a9:
cc:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:4F:6C:C9:D8:36:4E:D6:20:11:76:9D:21:4A:87:59:5C:20:95:62
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/o09sydg2TtYgEXadIUqHWVwglWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.111.0/24
Signature Algorithm: sha256WithRSAEncryption
46:c4:b0:1e:e3:e3:44:09:1c:9d:37:43:a8:91:ca:87:7d:f1:
6c:66:d8:c1:70:0a:3f:50:e4:e9:c8:c6:a5:1a:b8:4e:a9:e6:
62:c4:5e:44:56:17:d3:58:34:63:e3:05:e5:64:7d:3c:a4:7f:
b4:d5:29:59:00:70:ef:a9:76:a7:32:ba:03:c5:dd:04:68:54:
77:c0:f5:39:65:a4:87:f2:1e:45:eb:ac:3e:10:f8:03:a5:00:
d9:02:ff:18:39:00:d5:69:75:d5:b4:fe:6f:8c:03:8c:cc:f8:
d8:ea:af:d0:69:a5:78:47:1c:ae:62:7c:53:53:09:63:91:7d:
37:6a:99:4f:09:6d:c1:1e:d9:67:76:6f:a2:20:8e:6f:0a:57:
b9:e8:5f:aa:b3:7b:d8:bf:9d:a1:79:e3:c6:94:1b:09:d2:c7:
b9:44:35:53:06:1e:9d:68:74:a0:5c:e6:26:ba:82:29:2e:52:
41:fe:d4:98:88:b4:5e:6f:5b:ba:41:04:ed:83:c7:3e:46:3a:
f6:4c:ae:2f:f2:e3:84:d6:d3:d5:67:19:1b:c1:d7:36:c4:07:
0f:f9:70:e8:1b:25:81:10:b5:73:1f:44:b6:06:ff:72:4c:2e:
a6:b5:f2:19:f9:e3:81:da:33:8e:d2:d0:4b:03:ad:d7:d3:5a:
33:ad:9e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:56 2024 by rpki-client on console-ams.rpki-client.org