Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/pPYMhbstMHu7mLiVywuZTzky1W8.roa
File: pPYMhbstMHu7mLiVywuZTzky1W8.roa (raw, json)
Hash identifier: o4+WyHN9vuPh58jK7oPOAd/MW8jnTsXQf2ql652pWhQ=
Subject key identifier: A4:F6:0C:85:BB:2D:30:7B:BB:98:B8:95:CB:0B:99:4F:39:32:D5:6F
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 01913B10997D249B1CDD8CE0236B6F637D8F
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/pPYMhbstMHu7mLiVywuZTzky1W8.roa
Signing time: Sat 10 Aug 2024 06:53:49 +0000
ROA not before: Sat 10 Aug 2024 06:53:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57043
IP address blocks: 185.5.38.0/24 maxlen: 24
185.5.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Sep 2024 04:14:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:3b:10:99:7d:24:9b:1c:dd:8c:e0:23:6b:6f:63:7d:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Aug 10 06:53:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4f60c85bb2d307bbb98b895cb0b994f3932d56f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:89:4e:46:3b:7e:32:75:6b:d7:31:d9:af:80:
94:81:36:04:1b:01:d5:2c:ff:d1:53:3b:bf:c3:ea:
89:3b:31:f4:11:50:d6:03:fd:54:9a:a8:1c:56:8e:
f1:3e:a3:a2:b7:d4:f7:1f:e0:ea:50:b1:e1:1c:d9:
7b:45:4a:bc:7b:c2:a6:97:30:0b:cd:9c:95:81:42:
e2:65:ca:5d:39:c8:02:99:3e:eb:0d:ad:0c:eb:53:
1a:92:01:5a:3e:d6:a3:2d:c6:27:43:95:ae:17:bc:
27:21:40:4c:91:69:6b:74:d7:bf:7e:99:18:a2:80:
7e:34:81:17:18:01:c3:da:f6:82:b4:10:75:6a:5d:
d6:ba:02:07:05:6b:08:84:14:06:2a:06:c3:d1:23:
b2:f2:a0:fb:1b:e0:ed:11:3c:fe:76:ee:c1:0f:70:
9b:3e:8b:72:1f:c9:2e:dd:4e:cb:c0:e7:4e:45:70:
49:50:56:e5:2c:ba:53:3a:32:96:12:88:4d:6b:f7:
c8:ba:84:96:d9:bc:0c:df:de:8e:cb:9a:c6:a3:c3:
15:8f:55:00:02:1b:7e:42:ee:06:91:15:98:c1:95:
2d:d1:80:72:bb:33:04:a4:4e:18:7c:91:3d:38:e6:
23:c4:ee:c5:5a:d8:0a:eb:2c:82:b6:ba:89:2c:05:
06:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:F6:0C:85:BB:2D:30:7B:BB:98:B8:95:CB:0B:99:4F:39:32:D5:6F
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/pPYMhbstMHu7mLiVywuZTzky1W8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.38.0/23
Signature Algorithm: sha256WithRSAEncryption
9d:15:94:94:58:4e:b5:86:96:29:ea:0d:21:73:57:e9:79:1c:
47:83:a6:23:c0:66:0e:2d:2c:b4:ed:ef:7c:74:cf:3a:22:a1:
9f:ea:e4:a2:29:70:76:9b:b7:b1:15:16:86:5c:cb:91:de:72:
96:30:a1:a8:61:42:02:e4:6a:0e:cd:bb:bd:37:3c:0a:d9:16:
7f:4d:02:f7:78:d7:89:42:5e:6a:fb:b4:d2:07:93:64:b6:c3:
fe:14:a5:3c:d3:19:bb:c5:03:59:b5:11:a7:21:f0:00:84:ae:
c6:ef:00:78:98:92:aa:49:bc:23:3a:73:17:f1:eb:14:9a:dc:
f0:5e:f5:43:99:e5:93:16:d1:87:f1:14:3c:e7:62:c9:28:61:
5e:99:d8:1d:aa:32:8f:fc:5e:f1:bb:f5:44:47:5a:ef:82:74:
2b:67:0a:b0:f3:54:bf:07:d4:bb:08:bb:75:24:2b:4f:5a:e2:
ed:79:d6:87:4a:e8:1e:a6:e3:e1:b3:fc:4c:12:fb:3d:aa:e6:
ab:43:0a:3a:d1:96:49:c5:28:b2:91:85:38:a6:72:43:5e:a5:
5f:91:17:2f:b5:f9:1e:5d:f3:24:6d:a6:3c:9a:00:0b:66:4c:
7f:68:da:5b:10:05:c9:d5:15:14:66:8d:79:44:58:d5:85:77:
ad:af:26:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 9 05:07:13 2024 by rpki-client on console-ams.rpki-client.org