Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/phKO-yWYg2LN3PFcE9aYQlD29vY.roa
File: phKO-yWYg2LN3PFcE9aYQlD29vY.roa (raw, json)
Hash identifier: m8IX79ko650/Fx0ZvFhjPqtBRkZFcv7y/2JkStxJSG8=
Subject key identifier: A6:12:8E:FB:25:98:83:62:CD:DC:F1:5C:13:D6:98:42:50:F6:F6:F6
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018B9A3BDD3C5A5DCE929E406F7002F5D637
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/phKO-yWYg2LN3PFcE9aYQlD29vY.roa
Signing time: Sat 04 Nov 2023 12:08:16 +0000
ROA not before: Sat 04 Nov 2023 12:08:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142430
IP address blocks: 5.144.178.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Nov 2023 10:15:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:9a:3b:dd:3c:5a:5d:ce:92:9e:40:6f:70:02:f5:d6:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Nov 4 12:08:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6128efb25988362cddcf15c13d6984250f6f6f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:68:a2:5d:43:05:71:dc:8f:34:16:e2:19:4c:
77:2b:25:13:e8:88:44:a7:08:bd:e7:3a:ef:9d:b9:
fb:26:23:75:fd:22:a1:d2:b0:58:e5:3f:69:da:db:
e3:49:ee:11:dd:e4:b1:fc:af:30:05:9f:de:64:88:
2a:7e:5c:33:c3:dc:18:9c:ac:05:ec:01:a7:c2:da:
bf:2d:bf:bc:0c:73:de:74:4e:2d:dc:9e:07:f3:41:
4b:fd:96:aa:4f:0a:36:1b:a0:bc:a9:8e:02:2c:98:
68:5d:fa:c0:c6:5c:dd:fd:50:4f:e0:8d:37:b7:e6:
4b:8d:65:77:2b:b4:64:e4:e4:93:85:76:27:fe:a7:
85:c6:70:68:52:6b:21:7b:04:51:a9:15:d9:fc:ac:
cc:9f:2f:3f:5b:29:23:46:07:43:7f:52:61:3e:36:
d4:81:0a:68:bd:94:a6:79:45:bd:70:82:2d:8b:e4:
48:22:9e:f0:00:92:5e:56:81:77:66:2f:f6:a9:2e:
6b:f8:e2:f8:29:c4:23:d8:15:10:85:df:17:c2:32:
fd:c9:28:af:c5:5d:e9:af:79:24:f2:6b:33:0d:c6:
9e:6b:16:1c:ff:c5:8a:76:4d:3c:de:69:84:17:a8:
dd:7f:fe:8e:4e:92:86:ee:5b:a8:af:9d:e7:3b:eb:
4e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:12:8E:FB:25:98:83:62:CD:DC:F1:5C:13:D6:98:42:50:F6:F6:F6
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/phKO-yWYg2LN3PFcE9aYQlD29vY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.178.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:27:44:1b:5a:14:79:33:33:fe:7f:91:d5:a0:e0:29:ac:c8:
2e:2c:35:15:1b:eb:cb:4d:df:fe:e5:89:f4:1e:f2:16:c7:42:
33:c3:82:5a:ae:dd:85:07:2d:59:4a:e2:e6:28:f8:98:8d:27:
4f:80:83:34:41:3a:a8:99:cc:df:4f:47:30:34:52:57:45:de:
be:da:ae:21:f1:71:e7:7e:30:eb:69:b2:d9:c8:66:7c:3c:e5:
f6:ad:c0:16:90:5c:f0:8c:c1:6e:e8:5a:e3:69:d2:bc:c6:79:
5a:d8:ae:db:20:c1:ff:cd:f8:a0:b1:9d:0d:af:f3:48:c1:43:
d6:8f:49:93:e4:5d:c7:a1:f3:38:3f:bc:83:59:89:47:a0:15:
1c:4a:7b:e1:49:db:ee:e3:2d:06:0c:9f:e2:33:41:21:47:4c:
4f:78:51:d7:74:75:2e:89:3f:e1:76:35:39:40:1b:80:0d:9b:
d0:56:c7:ea:c2:27:44:e8:f6:55:e8:17:30:ad:83:c0:d6:c7:
e8:df:ef:84:15:3e:76:eb:fa:b6:db:a5:dc:01:e9:b3:ca:cd:
94:33:e9:0a:bc:1c:16:6e:d7:0f:1a:08:b6:5d:38:b7:ec:1b:
29:61:72:21:d3:5c:98:7b:7d:bd:81:47:9a:cf:0a:02:ba:89:
6b:fb:81:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:15 2024 by rpki-client on console-ams.rpki-client.org