Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/yHzLumpsZAKB1c01a3caUyCG7iA.roa
File: yHzLumpsZAKB1c01a3caUyCG7iA.roa (raw, json)
Hash identifier: jK5CF/El/63s94R3l9FSxOZQSrikeIp6FeE+T/aScfM=
Subject key identifier: C8:7C:CB:BA:6A:6C:64:02:81:D5:CD:35:6B:77:1A:53:20:86:EE:20
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018B298975657706AD1C93E4399D16762C0C
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/yHzLumpsZAKB1c01a3caUyCG7iA.roa
Signing time: Fri 13 Oct 2023 14:55:56 +0000
ROA not before: Fri 13 Oct 2023 14:55:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209492
IP address blocks: 5.178.108.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:29:89:75:65:77:06:ad:1c:93:e4:39:9d:16:76:2c:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Oct 13 14:55:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c87ccbba6a6c640281d5cd356b771a532086ee20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:9b:f4:de:96:71:9c:1e:1b:c7:e9:a0:c5:03:
57:06:79:88:99:c3:26:39:98:e1:f6:98:f0:5f:be:
cf:8d:12:ae:d9:56:60:6d:f7:86:69:76:d3:8d:40:
79:a3:07:35:e6:ec:f9:9b:3e:a3:1c:5e:a4:24:53:
45:25:33:18:2d:bb:1f:0e:9d:b9:16:d9:1a:06:af:
24:b3:90:02:72:a0:3b:cd:77:80:25:9e:48:da:75:
80:d5:ca:04:32:b8:3e:93:c8:10:1f:71:2d:e1:de:
9c:1e:d1:0b:cd:15:a6:25:50:00:be:bc:40:49:09:
a7:e1:46:ca:44:5b:1b:a1:9e:5b:72:78:4c:40:3c:
31:19:82:8a:25:f5:26:95:6f:3c:e9:6d:f6:46:61:
59:2b:93:c5:39:5f:ee:b7:ff:60:31:6a:15:5d:66:
45:53:f3:2b:2b:5b:b0:1a:c5:a9:74:c2:94:f8:dd:
ef:43:b7:3a:bc:72:cc:7d:d8:44:cb:1c:99:09:fe:
77:73:4c:1c:68:11:57:a5:e0:e7:24:78:3d:ce:86:
42:06:12:eb:3e:a9:3c:be:7e:5b:2f:02:95:28:37:
06:e5:93:14:17:42:4b:46:d8:11:3b:4a:68:c2:91:
84:eb:0e:f3:2a:20:c4:b1:60:16:45:a8:42:20:1d:
dc:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:7C:CB:BA:6A:6C:64:02:81:D5:CD:35:6B:77:1A:53:20:86:EE:20
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/yHzLumpsZAKB1c01a3caUyCG7iA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.108.0/24
Signature Algorithm: sha256WithRSAEncryption
27:3f:50:72:f4:08:89:3e:be:ca:20:23:c3:36:fa:ee:95:37:
1c:d2:b8:13:16:b0:21:93:3a:d9:17:66:92:bb:f4:5a:98:c9:
54:0e:f5:6a:30:e1:64:be:fa:26:e3:d5:23:98:12:f8:aa:8f:
8c:74:f5:3b:99:91:08:b6:b1:9e:7c:51:ee:41:cd:cd:9d:05:
9c:5a:4e:f8:b2:07:7a:09:60:c1:aa:8f:e4:ef:a1:51:3d:1f:
2d:7b:91:d3:6b:fd:fb:36:a8:f0:91:dc:75:45:61:28:c5:73:
b0:b2:1f:d7:31:5f:61:d3:07:75:c4:71:2a:a3:a0:de:a0:96:
c8:d2:73:5d:57:35:24:ba:53:b9:f9:2d:5a:9a:b1:ec:08:ef:
da:04:a3:98:44:42:13:dc:d4:a0:a9:12:c0:a0:8f:27:7d:f5:
69:cf:d8:31:52:76:a1:ac:c9:d2:3f:9c:05:01:28:7b:4c:37:
a1:d6:36:fe:17:70:df:bb:fc:af:64:4b:ec:26:e4:96:8c:7c:
25:31:10:ec:b8:09:af:42:fc:67:fb:4d:e1:8e:78:52:d7:64:
00:5d:a9:2e:57:c6:82:fc:47:37:ee:fc:84:17:d0:47:bc:1a:
b3:8a:b4:16:72:aa:fe:0a:a9:c2:d6:42:0f:ad:21:83:bc:4b:
20:5c:43:ef
-----BEGIN CERTIFICATE-----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Generated at Sun Nov 12 17:14:26 2023 by rpki-client on console-fra.rpki-client.org