Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/5-zVtMjGq3wl3M5lyepZQhu7Or4.roa
File: 5-zVtMjGq3wl3M5lyepZQhu7Or4.roa (raw, json)
Hash identifier: 1TtH2NrQ48jOekO8h+9krgOGBEROZ5Ujx+4l8U4vN7w=
Subject key identifier: E7:EC:D5:B4:C8:C6:AB:7C:25:DC:CE:65:C9:EA:59:42:1B:BB:3A:BE
Certificate issuer: /CN=d87821a7c8761e08121e70c9ff42ff9b6ad34e51
Certificate serial: 018B6721E3E137CB9588A67169DEFB579450
Authority key identifier: D8:78:21:A7:C8:76:1E:08:12:1E:70:C9:FF:42:FF:9B:6A:D3:4E:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Hghp8h2HggSHnDJ_0L_m2rTTlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/5-zVtMjGq3wl3M5lyepZQhu7Or4.roa
Signing time: Wed 25 Oct 2023 13:59:16 +0000
ROA not before: Wed 25 Oct 2023 13:59:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 217.147.180.0/24 maxlen: 24
217.147.181.0/24 maxlen: 24
2a0b:2900:ff00::/40 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:67:21:e3:e1:37:cb:95:88:a6:71:69:de:fb:57:94:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d87821a7c8761e08121e70c9ff42ff9b6ad34e51
Validity
Not Before: Oct 25 13:59:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7ecd5b4c8c6ab7c25dcce65c9ea59421bbb3abe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:de:ba:e0:4a:22:c3:34:63:4a:15:75:d1:e3:
52:c9:79:d2:07:bd:db:00:6c:eb:ac:3c:0f:35:5e:
af:9c:38:05:3b:43:87:33:00:af:b7:c1:33:4f:99:
ac:8a:de:c1:f8:b6:25:ed:e1:92:b4:f7:10:86:3a:
90:e0:eb:cc:2a:b5:b7:f4:68:15:cd:0e:fe:f0:24:
2b:15:8b:94:5a:f5:2d:12:c1:06:20:f1:4f:8d:5f:
76:9e:b4:7b:35:f4:4e:ca:82:dc:a7:d8:3d:6b:92:
af:05:3a:63:df:fe:d5:7c:4b:90:09:b7:72:5a:1a:
f9:99:08:10:e2:16:9f:74:bb:d4:17:59:aa:b2:8e:
8c:2d:fa:28:93:6f:3f:3b:22:a2:69:80:b5:5b:31:
1e:04:09:72:d1:e5:e7:90:36:39:d6:83:0f:ae:a4:
2c:d0:03:c8:bd:f5:a1:c1:21:1a:7b:60:8a:7f:75:
6d:c2:df:63:61:17:0d:10:9c:73:01:5b:0e:e0:24:
01:f3:da:e4:82:82:55:e1:aa:c8:61:c4:c8:1e:fc:
1c:d7:55:40:4f:06:01:c2:94:96:4f:a4:f3:05:00:
a5:a2:4d:95:d9:62:f2:86:47:79:12:44:e0:ca:de:
84:1d:cb:2d:ee:0f:4d:83:ce:b6:c5:ce:38:58:3f:
ed:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:EC:D5:B4:C8:C6:AB:7C:25:DC:CE:65:C9:EA:59:42:1B:BB:3A:BE
X509v3 Authority Key Identifier:
keyid:D8:78:21:A7:C8:76:1E:08:12:1E:70:C9:FF:42:FF:9B:6A:D3:4E:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Hghp8h2HggSHnDJ_0L_m2rTTlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/5-zVtMjGq3wl3M5lyepZQhu7Or4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/2Hghp8h2HggSHnDJ_0L_m2rTTlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.147.180.0/23
IPv6:
2a0b:2900:ff00::/40
Signature Algorithm: sha256WithRSAEncryption
07:97:b3:4f:9f:1e:bd:b6:f2:57:e1:7a:7a:3f:fd:2d:f1:da:
bd:b1:a0:1c:2c:3f:21:35:4c:db:98:60:a9:a6:6d:dc:0f:e3:
0f:b4:fd:d1:3a:5c:45:de:35:9b:dd:46:66:cf:25:d7:90:da:
c0:6c:65:4e:ad:28:3e:1a:a9:d7:f3:97:a3:03:5e:7d:bb:2d:
bf:71:7e:99:bc:b2:a2:4a:cd:e8:6d:8b:0b:25:0b:86:20:9b:
ad:07:60:1e:88:2a:9f:64:0c:39:f1:17:19:6e:57:b7:92:cd:
f6:69:b1:e6:fa:c3:8d:c5:57:02:36:d7:a7:43:da:4b:75:60:
68:6f:a5:07:a7:c2:57:c3:b4:29:cd:f9:ba:63:1e:b8:5f:73:
61:3a:74:3e:66:ba:43:81:0b:8a:1c:76:2d:e0:7e:e5:a1:90:
3f:e0:6f:2e:25:fd:3a:65:fc:28:69:95:33:9e:92:fe:91:bc:
a7:81:23:b8:a5:4f:1d:1b:68:00:cc:7c:61:cd:c7:cb:58:6d:
13:3d:2a:64:4d:40:cb:1d:66:38:a2:97:42:29:60:45:99:43:
e1:10:d7:c6:fe:53:0a:4a:31:88:03:84:42:70:bb:b5:74:38:
8a:9f:fa:8d:ea:85:be:09:47:42:b6:44:14:1a:12:18:d7:b0:
0d:a4:61:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 30 13:22:17 2023 by rpki-client on console-fra.rpki-client.org