Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/97rEJwJRu-EZkm2SwvkH69MLeV0.roa
File: 97rEJwJRu-EZkm2SwvkH69MLeV0.roa (raw, json)
Hash identifier: gB4WD2e4uz1xl6hzQKcA167I6/IFaH5u5SAYDOs/J8M=
Subject key identifier: F7:BA:C4:27:02:51:BB:E1:19:92:6D:92:C2:F9:07:EB:D3:0B:79:5D
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 0189BEBFA81778ECB30BEBB4F6317BBE0632
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/97rEJwJRu-EZkm2SwvkH69MLeV0.roa
Signing time: Fri 04 Aug 2023 04:12:58 +0000
ROA not before: Fri 04 Aug 2023 04:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 5.181.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Aug 2023 14:26:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:be:bf:a8:17:78:ec:b3:0b:eb:b4:f6:31:7b:be:06:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Aug 4 04:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7bac4270251bbe119926d92c2f907ebd30b795d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:3a:79:59:5a:a0:8b:4c:a3:18:9d:7d:ac:00:
92:24:e4:6d:90:9b:10:d1:a8:91:92:20:70:7d:4e:
38:59:d5:da:dd:5b:82:97:a5:e2:f1:09:1f:73:f2:
4d:10:33:15:10:93:6d:0e:46:a5:ac:87:df:91:0b:
9a:14:4a:07:5b:7d:ba:31:a1:96:1c:fb:05:92:54:
3f:70:81:96:e7:8b:a0:f6:a2:ef:1f:da:5a:0f:90:
83:1d:d2:d9:6a:6f:11:94:a9:81:5b:1f:1b:66:10:
f5:75:74:49:a7:09:1b:60:23:73:44:2d:c1:e9:86:
ed:22:00:00:6e:35:93:aa:f1:d5:a9:7d:7e:0a:3e:
da:53:18:65:aa:83:d9:5f:3c:49:cc:1e:d7:b3:ee:
eb:c1:f2:e8:c5:1d:87:6a:c3:da:43:40:81:08:57:
0a:f6:6b:a0:83:99:ed:72:45:68:0d:94:8c:0d:73:
3a:78:9d:27:e2:26:4c:98:68:b1:5d:0a:f4:22:63:
a9:35:65:5b:19:fd:8b:e8:1f:e7:07:43:63:ee:53:
cd:61:94:d2:4b:cd:da:51:44:16:b6:a6:aa:56:03:
ea:2e:45:de:16:71:79:82:c7:72:cd:38:22:ca:b2:
74:1f:39:b5:a2:15:fa:5d:22:18:38:4b:1c:55:1b:
9d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:BA:C4:27:02:51:BB:E1:19:92:6D:92:C2:F9:07:EB:D3:0B:79:5D
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/97rEJwJRu-EZkm2SwvkH69MLeV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.200.0/24
Signature Algorithm: sha256WithRSAEncryption
68:6c:a2:01:2e:b3:0c:5f:57:4d:44:1c:46:80:56:e9:fe:07:
be:12:be:a5:6f:44:0a:8e:93:45:33:2f:7f:d3:5c:78:c5:bd:
df:62:a3:7e:1c:a6:5d:8c:a4:1a:72:1b:d2:ed:ed:9c:cf:9f:
7b:a7:72:e4:02:41:11:a4:ce:74:8e:de:7e:f5:3a:7c:d2:5a:
52:fd:3c:9e:ea:83:7a:4b:73:36:bd:ec:08:b3:48:40:4d:ff:
22:fd:34:04:45:e4:be:f5:84:5c:61:39:f7:d6:02:34:af:ee:
a4:9a:e7:c6:6c:d3:bc:81:e4:8e:ba:e2:25:bd:bd:16:ca:a7:
79:c7:3e:a0:05:9f:35:02:52:10:79:a6:e6:8e:bf:b3:ec:8e:
e2:d3:51:c7:3e:13:2d:d4:38:13:9d:72:4d:d3:8b:ab:f3:7a:
32:f6:1d:3c:6d:1d:fb:3c:bb:64:76:0c:00:34:34:aa:7a:df:
15:e2:de:7f:7a:01:e4:df:20:44:34:88:80:79:91:9e:29:08:
7c:b4:da:d4:98:22:d8:e0:cb:5b:2f:bd:46:2f:7f:c2:81:cd:
00:fb:90:3d:9d:cf:cb:42:c2:d3:ff:22:3c:c8:27:58:a2:2d:
68:1d:67:6e:1f:9c:07:7f:34:6e:ef:ac:54:85:02:7a:51:c5:
7f:d9:04:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org