Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/tnhaghrAWeUfpi5d2tD7cCZEepk.roa
File: tnhaghrAWeUfpi5d2tD7cCZEepk.roa (raw, json)
Hash identifier: VFJ0GdZDHuugQZXTdx054NAAbOVBMsNOd3A8ynlcpyo=
Subject key identifier: B6:78:5A:82:1A:C0:59:E5:1F:A6:2E:5D:DA:D0:FB:70:26:44:7A:99
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018B391913452CD5FCFAB2D08F8C0EBB1B88
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/tnhaghrAWeUfpi5d2tD7cCZEepk.roa
Signing time: Mon 16 Oct 2023 15:27:06 +0000
ROA not before: Mon 16 Oct 2023 15:27:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212815
IP address blocks: 5.178.101.0/24 maxlen: 24
5.178.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:39:19:13:45:2c:d5:fc:fa:b2:d0:8f:8c:0e:bb:1b:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Oct 16 15:27:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6785a821ac059e51fa62e5ddad0fb7026447a99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:3c:4e:af:93:e5:40:0e:1d:8d:62:71:01:54:
cd:b3:ae:17:79:6a:13:28:56:0a:2a:08:8d:7f:e3:
23:0a:b5:48:6f:bf:f9:f7:09:eb:06:eb:45:6f:70:
b6:74:94:79:20:d3:88:5e:ab:8d:c5:3b:08:81:a6:
a2:86:6b:af:fd:06:31:a9:29:fd:94:9a:de:14:04:
35:54:2a:1a:c1:55:d8:c2:99:18:f1:cb:09:a3:71:
c6:b2:6f:cc:1a:70:11:0f:10:40:e0:f7:c2:68:8b:
cc:c9:41:63:2b:fc:28:4b:06:df:0c:f5:34:5b:58:
31:f6:62:43:96:bd:aa:2c:98:ef:22:c2:7f:cc:36:
1a:d3:2e:5c:ee:d6:77:2c:8d:37:b4:cc:30:b0:a8:
76:e6:67:c2:47:37:cd:b3:05:a5:ba:48:3a:8d:8e:
e6:4b:d3:4d:43:aa:e2:2d:83:3d:a8:00:cf:aa:22:
07:3d:85:8b:62:b2:67:c8:10:06:a1:75:a8:c2:43:
06:a2:cb:0a:9b:4d:c0:46:32:eb:fa:87:d8:4f:c6:
d2:74:7e:c0:62:38:9a:ab:3e:f4:b1:1d:6a:a2:47:
1c:f6:f8:b1:e0:2b:dd:f9:c1:01:0b:96:9a:30:30:
d1:fc:b9:b9:ce:f3:64:39:63:53:e9:d5:32:2b:b6:
96:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:78:5A:82:1A:C0:59:E5:1F:A6:2E:5D:DA:D0:FB:70:26:44:7A:99
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/tnhaghrAWeUfpi5d2tD7cCZEepk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.101.0/24
5.178.107.0/24
Signature Algorithm: sha256WithRSAEncryption
72:63:63:18:af:84:e9:b6:98:6d:67:bb:49:02:95:31:7d:37:
22:61:0c:21:91:66:b1:da:ba:f2:96:7c:a4:1c:08:65:de:f4:
0c:5b:63:89:5c:b3:ed:b8:64:eb:a6:f3:1c:d3:4d:57:70:ab:
a6:88:bc:9e:95:f4:0e:10:73:9a:9f:a9:87:04:a0:6a:c9:e9:
f9:9f:f4:25:c6:8d:33:95:59:47:f2:f4:79:b7:3e:89:d3:bf:
0b:f0:2b:ca:b6:06:61:48:de:60:08:94:01:43:55:c4:f6:fb:
56:e9:5b:89:d9:23:96:98:31:69:da:35:3d:c8:89:50:e7:81:
b0:21:b5:aa:fc:aa:45:02:24:02:68:05:9a:83:80:a5:65:80:
e5:ed:5c:62:69:93:6c:ed:9e:19:c9:81:21:fb:20:c3:cc:5b:
57:a8:ad:0d:cf:70:8c:30:05:60:a6:b5:d8:df:41:8b:83:ba:
99:58:88:a9:d8:9c:b7:30:77:2f:8d:00:de:d9:35:d4:71:55:
ad:f6:57:e3:f7:59:07:93:dc:ce:76:ae:7b:c9:39:09:b1:b8:
44:f5:a9:54:80:29:cc:27:3f:4a:7e:ed:86:5d:3c:75:d7:da:
d7:4d:c4:2b:dc:d6:46:21:a9:4b:64:22:b7:0e:94:a6:86:3c:
b1:36:a9:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:15 2024 by rpki-client on console-ams.rpki-client.org