Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/F7WUudD5oIOWODrdhu8pf5V5Itk.roa
File: F7WUudD5oIOWODrdhu8pf5V5Itk.roa (raw, json)
Hash identifier: q3E5x7Qx+QwPXZcwxSCRj2wstOgGl1u8w/N9nrSAA1A=
Subject key identifier: 17:B5:94:B9:D0:F9:A0:83:96:38:3A:DD:86:EF:29:7F:95:79:22:D9
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 018A187D64F229EFF0809BA20A3BC3BC9BD8
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/F7WUudD5oIOWODrdhu8pf5V5Itk.roa
Signing time: Mon 21 Aug 2023 14:26:25 +0000
ROA not before: Mon 21 Aug 2023 14:26:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 5.181.200.0/24 maxlen: 24
45.158.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:18:7d:64:f2:29:ef:f0:80:9b:a2:0a:3b:c3:bc:9b:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Aug 21 14:26:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=17b594b9d0f9a08396383add86ef297f957922d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:9c:bb:0d:51:78:8b:d5:82:75:12:42:d9:45:
f0:32:7b:c8:f4:f1:89:22:b4:a9:dd:52:bf:70:bb:
8f:ed:3c:a2:fb:22:6d:20:3b:23:10:d6:60:35:d9:
d5:d6:cd:1c:68:c3:e4:1c:59:f2:71:f9:05:c1:da:
fb:29:55:73:06:e1:61:25:05:60:77:27:3b:be:24:
4f:e1:e8:2c:6b:4e:8c:73:0c:f7:65:8c:60:ed:ef:
f0:94:fa:30:91:fa:94:37:5a:85:27:5e:24:8c:81:
f3:2c:2e:38:af:d7:13:42:7a:53:3f:98:b8:50:fb:
73:08:af:11:5e:f2:ab:5f:3a:4b:c4:d7:c8:ca:4a:
9b:19:61:c3:6c:1c:77:4b:35:bb:ca:fa:81:ff:33:
c8:ba:de:1d:07:c8:f2:c9:f5:59:cd:28:01:f4:5f:
2a:39:34:19:66:00:c3:f6:78:d8:0b:1f:2c:98:0d:
e9:74:ed:45:9a:98:10:4c:ee:dc:b7:98:34:60:bf:
a8:ec:00:f1:e5:38:3b:cb:8b:42:fb:ec:1e:d1:fe:
87:38:f7:a8:71:bf:fe:d8:45:6f:35:f0:da:16:c5:
ce:91:a3:ca:67:16:b3:38:bc:3c:f7:cd:a4:d5:7c:
f7:5b:f7:d8:2b:b5:76:d3:f1:35:af:0a:3e:4e:2f:
4c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:B5:94:B9:D0:F9:A0:83:96:38:3A:DD:86:EF:29:7F:95:79:22:D9
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/F7WUudD5oIOWODrdhu8pf5V5Itk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.200.0/24
45.158.83.0/24
Signature Algorithm: sha256WithRSAEncryption
21:79:96:80:9c:9f:9e:e2:d1:2c:3e:db:ee:58:82:e1:55:ff:
d2:74:34:18:6c:39:fd:4b:83:ec:eb:68:54:6b:0d:b9:8e:c2:
d5:d5:fc:ea:20:14:b3:a4:a3:ef:e2:4b:7a:f6:a7:e6:4d:bd:
cc:b7:ad:41:fe:dc:da:4a:a2:e2:2d:74:95:62:c8:76:69:95:
2d:aa:59:59:dc:21:70:23:8b:b3:20:2e:f4:62:8f:eb:08:8d:
1e:38:e0:ca:0a:d7:1f:f1:11:12:09:18:22:bb:d6:22:50:a4:
33:0a:48:95:8b:e3:db:fd:89:ea:ab:ce:00:4d:77:37:ce:fb:
8c:bc:e1:86:63:4f:ff:cc:24:54:9a:6f:ba:b7:73:06:a6:bb:
91:13:02:e7:06:9c:7a:fc:3b:e8:ca:e8:0a:fe:e3:0b:1c:61:
b6:b4:9c:90:8b:3a:d9:9f:58:9e:be:9f:7c:a8:e3:2d:5b:30:
7e:b3:98:f8:84:99:40:6d:28:e7:e1:f5:7b:b8:35:ae:d5:f6:
14:58:cf:41:18:a4:0a:15:f1:ad:9a:da:a3:f6:04:a6:b6:97:
18:39:84:cf:89:63:b0:ef:f6:b6:c8:7e:98:b9:3f:89:bc:cd:
4a:d0:c1:3b:b8:ec:5b:a9:43:a5:47:dd:d0:42:20:b8:fc:66:
94:54:b8:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org