Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/u9oC53xr0MHz1K1X0t6ArB7R-hc.roa
File: u9oC53xr0MHz1K1X0t6ArB7R-hc.roa (raw, json)
Hash identifier: orJHrpiDqqQmiEv0dqgsa6G6P452RbGbKo72tl5bmv8=
Subject key identifier: BB:DA:02:E7:7C:6B:D0:C1:F3:D4:AD:57:D2:DE:80:AC:1E:D1:FA:17
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 01872CCD1050F787EDDF839C3E047BAF4DD6
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/u9oC53xr0MHz1K1X0t6ArB7R-hc.roa
Signing time: Wed 29 Mar 2023 09:57:29 +0000
ROA not before: Wed 29 Mar 2023 09:57:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60781
IP address blocks: 5.178.102.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2c:cd:10:50:f7:87:ed:df:83:9c:3e:04:7b:af:4d:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Mar 29 09:57:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bbda02e77c6bd0c1f3d4ad57d2de80ac1ed1fa17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6c:86:b9:df:d4:a1:eb:d1:83:b8:cf:30:a7:
59:d7:74:87:62:71:59:2e:0d:4a:e6:a1:21:93:59:
b5:ff:7f:02:e6:2b:f3:ab:f5:62:c5:bc:35:da:66:
c8:11:88:20:eb:7b:8c:5e:52:c8:29:6f:d4:b2:9e:
fb:7e:9a:25:da:9b:9d:d8:1e:6e:64:e7:a8:5e:69:
37:1a:5e:61:71:4f:51:17:b7:63:87:74:a2:ac:4e:
23:f7:0c:86:cb:3b:92:9f:7d:da:94:cf:7e:80:29:
3c:eb:dc:68:2a:a0:6e:e0:28:44:70:73:86:1a:1e:
a7:0d:89:4d:6b:6f:1f:37:46:33:ad:c1:50:11:14:
56:fc:f2:3a:fb:3d:44:40:02:1a:f5:f3:4e:65:fc:
5f:50:61:81:e1:17:7e:60:2c:22:4a:0c:d3:d9:6a:
55:f7:25:7a:2e:fb:c8:bd:5c:52:8f:0a:5c:97:9a:
20:b0:4c:0d:53:d4:8b:7c:a8:9a:6a:cc:81:62:54:
93:bd:36:0a:f8:0b:24:d6:63:8a:4b:8d:a2:d9:af:
d5:37:d4:d1:75:17:74:53:26:85:6f:b2:c0:cb:3c:
ed:28:11:89:66:49:8d:c4:ba:27:03:11:9a:7b:43:
71:db:d3:b2:96:4b:a8:62:08:0c:e5:3e:0b:6f:67:
25:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:DA:02:E7:7C:6B:D0:C1:F3:D4:AD:57:D2:DE:80:AC:1E:D1:FA:17
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/u9oC53xr0MHz1K1X0t6ArB7R-hc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.102.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:bd:28:31:9e:61:f8:4a:a5:af:7b:21:7d:43:9f:c9:39:81:
b6:2c:1a:3a:99:23:ac:b3:f8:73:70:30:3e:32:3f:95:2b:7d:
3e:fc:f6:15:03:9a:df:3a:41:e4:fb:89:76:72:30:f3:89:4e:
04:6e:12:20:30:ba:37:4f:29:41:74:32:4c:d0:d1:e8:6e:2b:
89:b2:2e:7b:20:1a:bf:da:fd:2f:09:64:aa:a8:49:c1:f7:28:
4d:8a:8b:e6:eb:25:cb:d1:e7:04:1f:7b:91:11:f0:0f:a2:80:
29:a6:ba:48:fd:00:60:2e:de:ac:3d:b3:f1:bb:e8:af:20:c3:
b1:29:c6:1b:8b:da:37:0b:d4:77:fd:42:ba:90:ea:bb:0e:35:
4f:8b:35:59:b8:84:f3:5e:d0:9f:35:fc:61:df:73:65:4a:b3:
bd:ad:9f:32:16:f9:d0:d2:59:2e:bb:ca:91:71:15:0e:83:ff:
09:70:0c:2f:ea:82:a4:32:8e:8e:b5:a2:18:ad:74:30:68:41:
0e:87:23:a1:49:e9:c3:a7:ca:4b:e6:b7:70:13:ee:72:02:f2:
39:b9:74:3e:84:9b:56:11:fa:5f:7e:22:63:b7:52:a6:0e:f4:
f6:09:f0:8a:79:11:9c:62:be:0e:89:f2:d9:75:94:82:97:08:
52:26:ef:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:44 2023 by rpki-client on console-fra.rpki-client.org