Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/tl1WQTvBNZ-Gi7cdTaRD5Az1K4g.roa
File: tl1WQTvBNZ-Gi7cdTaRD5Az1K4g.roa (raw, json)
Hash identifier: 4yRXMRKOfeuUWUrIN1uqj6oehXPNJtqEJskVdnAxpEg=
Subject key identifier: B6:5D:56:41:3B:C1:35:9F:86:8B:B7:1D:4D:A4:43:E4:0C:F5:2B:88
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 01890D4C675472B334CCDBB6566473B833DD
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/tl1WQTvBNZ-Gi7cdTaRD5Az1K4g.roa
Signing time: Fri 30 Jun 2023 17:14:18 +0000
ROA not before: Fri 30 Jun 2023 17:14:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203394
IP address blocks: 5.178.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Sep 2023 07:55:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:0d:4c:67:54:72:b3:34:cc:db:b6:56:64:73:b8:33:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jun 30 17:14:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b65d56413bc1359f868bb71d4da443e40cf52b88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:99:54:a7:59:47:e9:98:b8:1d:63:65:ee:45:
61:2b:c6:e0:27:82:a6:b3:94:ba:f2:7a:25:13:73:
10:6f:19:74:ac:f1:83:5b:90:55:53:98:58:82:75:
a7:de:50:33:5b:2f:84:ee:79:72:0e:5e:7c:2e:d0:
12:96:54:a3:d0:53:07:75:2e:49:d9:f4:00:c9:ae:
26:dd:c3:21:da:99:d9:9a:5c:a6:eb:83:4b:78:6f:
82:96:23:26:3d:65:6d:37:0a:73:ea:29:6c:04:27:
bf:24:18:c4:da:7d:81:a3:5b:bb:ba:77:e4:53:64:
53:15:62:01:0d:e4:00:b6:82:1a:97:b0:18:1a:c3:
1b:81:0f:a3:23:a7:b3:34:11:38:58:62:0d:f9:55:
f1:a0:3a:b4:db:e5:55:55:62:ec:00:9f:a5:8c:39:
77:fc:08:94:d9:72:25:62:ee:21:3f:25:43:8b:47:
3b:8f:e9:0f:88:c6:4d:ba:f7:d9:08:53:b9:22:7d:
dd:8a:64:64:25:cb:de:97:ba:40:19:59:97:40:eb:
6b:62:ef:32:eb:b4:cf:f7:5d:8c:83:03:ad:52:67:
89:0a:35:a5:e8:e1:e2:4e:4b:1f:52:37:35:40:7b:
d7:2b:5e:ea:d3:09:af:c2:41:43:1f:ff:42:8c:8b:
d9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:5D:56:41:3B:C1:35:9F:86:8B:B7:1D:4D:A4:43:E4:0C:F5:2B:88
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/tl1WQTvBNZ-Gi7cdTaRD5Az1K4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.98.0/24
Signature Algorithm: sha256WithRSAEncryption
10:10:ea:60:7c:c8:ad:64:76:d3:2a:9c:a4:32:26:02:40:24:
d1:c4:89:f5:59:c1:43:45:8b:37:44:d6:9c:87:bc:5c:85:f8:
5f:a9:47:b4:58:17:f0:19:1b:a4:e5:86:51:51:12:a8:13:8c:
42:86:f4:1c:c0:ca:4a:cf:bd:fe:70:e4:65:7b:56:c3:26:a3:
b3:54:fd:dc:22:d4:9d:f5:ac:68:35:02:83:4a:5e:b0:1d:2d:
9d:e5:fc:6d:b9:76:22:f7:b2:da:c9:1a:1c:72:ff:0a:9e:ae:
3a:57:f8:79:33:a5:c7:3b:f1:ec:8c:ab:a3:52:ad:2e:4d:fc:
6d:d3:a6:6c:f7:d0:be:e4:54:66:41:e3:d0:69:e2:33:a5:9a:
4b:4c:b6:01:1f:16:35:a1:cc:cc:b9:f0:f2:50:aa:b7:dd:f3:
b2:c1:14:ea:4b:b7:5b:ea:e6:47:89:06:21:da:b4:0e:33:74:
d8:86:5c:68:8a:15:8a:8d:e9:f5:66:6d:56:1e:2f:f0:c1:5c:
08:2c:e6:36:46:83:7a:e1:f8:bf:bc:05:5c:e0:29:c6:b0:af:
f4:1a:2f:bd:97:b9:0b:fc:b7:6c:7a:1f:3b:53:13:b8:df:74:
30:ba:33:cf:8c:b0:64:61:e9:26:51:ee:60:96:b2:73:f2:76:
75:65:f7:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:15 2024 by rpki-client on console-ams.rpki-client.org