Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/2IeK8jd967e86z7s1aqy1WpMQws.roa
File: 2IeK8jd967e86z7s1aqy1WpMQws.roa (raw, json)
Hash identifier: ycxcK2NVFB/yaW/yrfFZVv2bVgq5w7JCyZ9CwJ0fWs8=
Subject key identifier: D8:87:8A:F2:37:7D:EB:B7:BC:EB:3E:EC:D5:AA:B2:D5:6A:4C:43:0B
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 0189BEBFA9117D351E56E22B1C101A7D9BC2
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/2IeK8jd967e86z7s1aqy1WpMQws.roa
Signing time: Fri 04 Aug 2023 04:12:58 +0000
ROA not before: Fri 04 Aug 2023 04:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 5.181.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Aug 2023 14:26:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:be:bf:a9:11:7d:35:1e:56:e2:2b:1c:10:1a:7d:9b:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Aug 4 04:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8878af2377debb7bceb3eecd5aab2d56a4c430b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:96:5d:ab:9f:87:3e:90:77:e7:92:d9:40:00:
18:0f:f1:5e:7c:e7:3c:d1:53:a6:29:9a:68:f3:1a:
8e:8e:d3:c2:16:65:20:b1:9c:28:cd:06:b7:b2:74:
7b:11:e3:0f:66:39:ac:2e:21:9e:3c:65:c6:57:36:
4e:9a:0b:c6:be:c2:5d:69:9b:19:49:d9:e8:71:48:
4f:fc:57:c2:3c:20:0b:ac:08:e3:2b:d4:46:89:37:
ff:21:ea:19:15:a0:a6:48:18:cf:c3:c7:46:c7:93:
37:42:63:bf:17:5f:40:7d:c3:69:7f:68:b7:5a:b9:
f3:57:fb:db:43:cf:1e:07:98:d6:a6:27:e6:d7:09:
90:7d:4b:50:1f:bd:61:3d:9a:61:6d:13:b0:fe:5d:
9c:86:b2:28:18:8a:1a:38:fa:2e:d6:34:94:9a:6f:
ea:11:8e:0f:1c:14:bb:53:b3:7f:f3:57:ba:0e:ad:
03:0d:05:1a:a7:e3:d7:97:ab:0d:90:ea:38:69:f8:
45:0a:e8:b1:0e:bf:5f:88:03:f1:fd:30:98:64:9b:
42:f9:1f:6d:19:db:18:05:99:66:d4:d3:30:85:0c:
23:46:26:5a:ae:ee:8a:ab:ac:86:e6:bf:09:21:84:
17:9b:1a:21:2c:af:20:12:47:bd:83:ab:39:f9:5c:
06:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:87:8A:F2:37:7D:EB:B7:BC:EB:3E:EC:D5:AA:B2:D5:6A:4C:43:0B
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/2IeK8jd967e86z7s1aqy1WpMQws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.200.0/24
Signature Algorithm: sha256WithRSAEncryption
40:18:4e:39:71:76:86:ed:e2:30:36:f3:f0:f2:9b:9a:e2:b0:
6d:c7:5f:00:b3:ee:df:a2:98:07:ac:27:cd:f7:40:58:82:0c:
aa:68:f1:54:3d:8f:04:b8:5e:75:f1:20:5b:d8:20:b7:43:f3:
6d:33:54:9b:33:a9:72:b4:45:a0:53:b7:ac:f1:3c:5a:c3:f7:
a3:dc:24:a4:53:30:d4:c7:1c:60:ba:61:f3:97:e3:ac:59:ba:
7b:82:74:b7:3d:ca:22:e0:0a:69:5a:5d:ee:2e:ce:33:9e:79:
b6:47:da:ac:cb:d4:4d:e5:0d:87:e4:de:b6:f2:81:81:30:d4:
57:32:bf:d9:3c:c6:a4:5a:ce:4a:0d:e9:e2:00:fe:57:61:d4:
a7:8e:ac:b1:4c:f7:2f:1c:ab:52:12:19:6c:68:f3:7c:ca:42:
ae:db:0d:09:40:82:ab:e5:b9:4c:41:aa:5b:ca:b3:53:bf:39:
38:7f:cd:22:cb:ff:13:50:30:e5:b0:66:4b:da:6e:17:24:b8:
c5:ca:7b:b0:b9:eb:ba:dd:3d:ed:42:ca:96:b3:f6:52:de:76:
67:1c:ed:16:84:13:69:51:71:06:81:d0:36:1f:c8:9a:5c:86:
83:88:7a:25:8f:23:27:f1:92:5c:4c:8a:ff:a0:12:ce:b5:78:
da:7e:4f:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org