Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/vJ1P9hN1-ePPhStXiM0lig3DhwM.roa
File: vJ1P9hN1-ePPhStXiM0lig3DhwM.roa (raw, json)
Hash identifier: 4M3ILOpu3s7GUKmHXcSKcDd1Ms3L+jXEhhDytRSTb+g=
Subject key identifier: BC:9D:4F:F6:13:75:F9:E3:CF:85:2B:57:88:CD:25:8A:0D:C3:87:03
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018C5321EA00D42C9C938CE01178AC99A722
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/vJ1P9hN1-ePPhStXiM0lig3DhwM.roa
Signing time: Sun 10 Dec 2023 09:49:40 +0000
ROA not before: Sun 10 Dec 2023 09:49:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142430
IP address blocks: 5.144.178.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:53:21:ea:00:d4:2c:9c:93:8c:e0:11:78:ac:99:a7:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Dec 10 09:49:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc9d4ff61375f9e3cf852b5788cd258a0dc38703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5e:df:1e:e6:a3:64:34:7d:a5:72:ad:cc:35:
b3:42:a2:09:6e:89:a3:cf:3c:52:0e:bc:e5:fb:ed:
82:e6:a7:6b:8a:a1:ed:b0:74:d1:1e:05:a5:f2:ff:
1d:08:f1:9c:b7:85:1b:14:8d:19:05:e6:ed:52:a8:
2d:fc:f1:b7:bb:ec:00:df:90:81:8c:b7:fb:16:42:
fd:00:08:8b:31:8c:39:25:0e:fa:46:92:c4:21:af:
0a:1c:4b:46:b6:54:34:67:89:71:e4:c8:b4:e7:0a:
05:fa:d9:b3:31:f4:d2:d8:0e:12:11:6c:63:27:8a:
a9:de:de:51:8f:ed:d8:3a:96:11:3f:1b:c4:7c:0e:
39:1d:69:35:dc:13:29:7a:c2:13:36:d3:13:c6:05:
c2:f7:fa:ae:92:f8:ba:12:2c:96:d1:50:71:84:90:
b9:51:e4:76:f4:2d:c6:27:ca:10:34:bd:24:fa:14:
20:9e:2d:ac:bb:db:f3:f7:45:ab:5e:13:76:fe:1b:
94:8e:8f:0e:60:80:db:08:d1:dc:31:e2:35:f4:48:
e2:4c:1a:dd:6f:76:b5:d5:17:33:18:f6:a2:70:52:
90:27:62:69:a4:75:d2:d7:20:58:c0:9f:66:46:82:
48:43:50:f6:9c:3a:4a:d3:15:8d:55:2a:9e:2b:3d:
82:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:9D:4F:F6:13:75:F9:E3:CF:85:2B:57:88:CD:25:8A:0D:C3:87:03
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/vJ1P9hN1-ePPhStXiM0lig3DhwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.178.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:bd:9d:6b:3f:ab:20:e2:45:0f:00:79:8a:42:68:35:7d:07:
ee:65:09:44:ca:ff:e0:8f:8f:5d:36:1c:6c:c6:da:0c:88:47:
82:5b:4c:d3:7f:d2:5d:13:33:7f:94:f0:5b:58:e2:83:82:c2:
dd:60:f6:ad:1f:7b:4d:bf:a2:63:0b:7c:ff:3d:a9:f7:ff:5a:
e7:fd:f9:62:ac:bd:93:8d:cc:9a:7e:1d:d7:38:ca:72:99:7e:
69:52:af:e2:6c:6f:dc:75:f6:3f:50:81:06:e9:db:70:19:e8:
d0:ce:09:ee:d8:b9:d5:63:9c:60:09:77:f3:12:fe:1e:1b:be:
12:0a:95:1b:37:77:bc:27:82:21:1e:fd:ba:74:ad:25:05:a3:
1e:45:51:ee:df:c9:0a:61:d4:a6:b1:04:35:73:85:af:15:a1:
92:1e:11:79:4f:ba:69:fb:10:46:ac:4b:7d:55:40:0c:a3:82:
ac:3c:44:85:c9:ad:d7:7b:d1:41:a4:8b:16:4d:af:69:f2:fe:
ef:97:0a:c6:07:3a:eb:cb:35:61:85:3d:7b:85:2f:6a:00:30:
74:98:86:32:ea:1c:87:37:83:45:aa:79:da:59:14:87:b6:77:
fd:51:cc:0c:40:14:86:ed:e8:fb:83:94:1b:f6:07:75:dd:77:
1a:5a:16:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 19 10:05:23 2023 by rpki-client on console-ams.rpki-client.org