Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/i5U180tRZThYmorE0Tx4ySOA2Sw.roa
File: i5U180tRZThYmorE0Tx4ySOA2Sw.roa (raw, json)
Hash identifier: 7Lny876lYuRlK0A7uDRa2ZiXk/AhFModNllBVZVsQXQ=
Subject key identifier: 8B:95:35:F3:4B:51:65:38:58:9A:8A:C4:D1:3C:78:C9:23:80:D9:2C
Certificate issuer: /CN=5ca9f75dca2cd3b39353e0300b30ba5b62976a2b
Certificate serial: 018733509FC5505B05C0E9DCD299170726FD
Authority key identifier: 5C:A9:F7:5D:CA:2C:D3:B3:93:53:E0:30:0B:30:BA:5B:62:97:6A:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XKn3Xcos07OTU-AwCzC6W2KXais.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/i5U180tRZThYmorE0Tx4ySOA2Sw.roa
Signing time: Thu 30 Mar 2023 16:18:54 +0000
ROA not before: Thu 30 Mar 2023 16:18:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5398
IP address blocks: 217.18.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:33:50:9f:c5:50:5b:05:c0:e9:dc:d2:99:17:07:26:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ca9f75dca2cd3b39353e0300b30ba5b62976a2b
Validity
Not Before: Mar 30 16:18:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b9535f34b516538589a8ac4d13c78c92380d92c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:15:b6:ee:1f:13:b0:de:1c:9e:eb:c8:bc:44:
7e:c8:3f:51:26:99:c7:00:3c:91:98:54:ce:26:66:
bd:56:c0:61:ee:45:ce:91:1d:82:3d:29:99:66:d1:
f3:50:4c:97:ec:1b:f4:2e:18:9a:1b:87:c9:0e:13:
24:45:1f:c3:5b:f2:84:b2:75:79:95:da:9a:25:47:
1f:f1:61:9b:0f:ac:e1:54:f2:12:96:cd:9d:c4:e1:
2f:67:57:35:af:a5:ae:cf:46:f4:e3:8d:fe:55:db:
16:37:71:dd:2f:17:cf:d3:3b:a9:8b:33:9e:6e:a3:
72:80:53:14:96:c5:03:62:67:39:33:70:5c:3d:c7:
89:e1:ca:23:85:f3:5e:7d:15:fb:85:ee:fe:39:4c:
9b:3f:44:50:f0:d2:dc:0b:64:92:53:da:77:b3:ae:
63:35:7e:13:b4:74:26:7f:9c:c8:bd:c0:e2:e5:c2:
65:fa:fd:50:a5:93:87:0e:a4:85:43:03:a2:b2:5a:
82:09:0e:88:b3:50:09:d7:0c:b4:ee:13:a8:2c:37:
8e:35:3d:92:b5:3f:c5:b5:5e:2f:76:35:2b:cb:67:
5e:53:1d:bb:66:ff:fa:5a:e6:0e:e1:f2:a2:b7:e1:
73:55:80:45:26:cd:68:04:9e:c1:18:cf:83:d3:ca:
7a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:95:35:F3:4B:51:65:38:58:9A:8A:C4:D1:3C:78:C9:23:80:D9:2C
X509v3 Authority Key Identifier:
keyid:5C:A9:F7:5D:CA:2C:D3:B3:93:53:E0:30:0B:30:BA:5B:62:97:6A:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XKn3Xcos07OTU-AwCzC6W2KXais.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/i5U180tRZThYmorE0Tx4ySOA2Sw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.18.3.0/24
Signature Algorithm: sha256WithRSAEncryption
91:df:fa:6d:13:6f:fe:65:b3:3f:9a:8c:e6:29:30:6a:00:1b:
dd:95:5f:48:7c:4b:50:d6:11:c3:99:6b:80:94:7e:24:d2:ab:
ac:ee:36:a4:f4:8f:12:c2:77:f2:13:2b:7b:16:86:cf:d7:e3:
81:51:0d:73:fc:58:f5:5f:74:6b:ae:84:99:f1:06:85:8e:0c:
8d:6d:5d:b1:9d:09:14:4f:02:0e:0c:51:f2:b9:9c:10:1c:52:
c4:bd:a7:5b:1b:93:e5:01:4b:2b:39:f7:3f:ef:8f:9d:a2:11:
b8:19:9d:2a:75:ae:db:39:b0:73:0d:1b:02:a0:41:5d:42:5d:
8c:e8:05:d0:25:4a:73:99:d1:37:94:96:1f:a7:77:b4:78:7f:
9a:4d:05:3b:a2:7b:67:b6:c1:ad:b8:d3:83:72:79:17:2c:91:
89:0f:9c:fe:d5:e6:1b:1c:83:61:6f:89:b1:e1:72:20:f1:00:
52:c4:f8:11:06:56:31:1f:a0:2b:f7:71:dc:97:d5:1e:1d:db:
bb:72:57:c9:2d:32:60:1f:75:c8:9d:57:c5:02:cb:f1:10:54:
59:59:9c:6c:c1:93:cd:20:76:64:16:ae:3d:4b:88:73:0e:b5:
41:35:6d:8b:de:46:d9:54:3c:df:83:f4:5e:69:fe:76:ff:8c:
1a:de:d4:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:05 2024 by rpki-client on console-fra.rpki-client.org