Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/eGh4nMFZ2xuOW9eRlw2lzArO3NQ.roa
File: eGh4nMFZ2xuOW9eRlw2lzArO3NQ.roa (raw, json)
Hash identifier: hSojV4tY5SI5Hy085ER1xYRWlVcibBOEPN6hzO8n5K0=
Subject key identifier: 78:68:78:9C:C1:59:DB:1B:8E:5B:D7:91:97:0D:A5:CC:0A:CE:DC:D4
Certificate issuer: /CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Certificate serial: 01878F34E6CB3D794EEA7D98202ACFDA6DDE
Authority key identifier: 17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/eGh4nMFZ2xuOW9eRlw2lzArO3NQ.roa
Signing time: Mon 17 Apr 2023 12:33:41 +0000
ROA not before: Mon 17 Apr 2023 12:33:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 5.180.179.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Apr 2023 13:12:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8f:34:e6:cb:3d:79:4e:ea:7d:98:20:2a:cf:da:6d:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Validity
Not Before: Apr 17 12:33:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7868789cc159db1b8e5bd791970da5cc0acedcd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e9:9b:3a:40:2d:b3:32:1b:a7:c7:aa:3a:de:
7a:26:82:7a:c1:54:49:27:8c:1e:bf:11:bd:fb:be:
58:30:4d:97:c5:1f:0b:4d:d0:bf:ec:39:b6:f1:82:
11:fe:6b:d5:9b:ab:41:3d:3e:d7:5a:a2:a0:36:0b:
1c:49:5f:89:de:4a:b2:fd:42:cc:c0:45:dc:f7:17:
b1:d0:98:bf:80:60:a5:ce:1c:89:bb:37:10:de:20:
6b:f1:8f:98:e0:bd:93:ab:2d:06:83:00:ff:0a:a8:
61:28:d2:d6:31:88:b3:ef:48:a1:d1:eb:f6:83:c8:
76:c9:fc:21:c0:2c:f6:43:d7:7a:b2:a6:28:53:22:
39:a2:b0:97:30:d2:2d:43:0d:41:38:06:0d:eb:72:
ad:81:0c:aa:56:2c:14:80:23:49:cb:29:bd:96:cb:
7f:0b:b1:0a:29:fb:e7:90:48:82:a9:98:67:86:13:
25:ed:47:d9:13:4f:be:a4:16:39:39:25:6e:41:4c:
4b:ac:8a:ce:9a:cd:5a:06:f0:59:d1:a0:ac:35:1a:
b5:e3:53:42:a5:5e:e6:4d:25:08:12:eb:4e:34:29:
cf:43:63:db:28:b7:34:55:85:d5:c3:40:e2:8d:f3:
10:f0:84:46:17:3e:e3:c3:dc:c3:a7:f8:c2:7d:53:
3a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:68:78:9C:C1:59:DB:1B:8E:5B:D7:91:97:0D:A5:CC:0A:CE:DC:D4
X509v3 Authority Key Identifier:
keyid:17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/eGh4nMFZ2xuOW9eRlw2lzArO3NQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/F7UEL8INm6sWduCa9_8bpb-trnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.179.0/24
Signature Algorithm: sha256WithRSAEncryption
61:f0:14:c4:0e:e7:e8:0f:10:bc:cb:f4:8b:aa:de:c0:4c:b1:
b3:5d:06:52:1e:92:0f:40:c4:9f:5b:7a:d8:66:5d:47:d7:ba:
53:fe:e4:c5:8e:a3:c3:be:3e:38:f5:e3:ac:0a:b1:c7:46:bd:
38:dd:0a:d4:15:53:6b:77:cc:fd:c1:3d:8c:f3:ae:75:81:1e:
8c:c1:13:b9:cc:b1:14:01:4a:7d:c9:0d:cc:e8:3f:4b:b8:57:
10:98:d7:16:98:fe:68:76:d9:44:8a:d1:4c:3f:a1:22:f1:b1:
27:34:aa:0d:e4:4d:40:00:9d:f8:a5:0a:e6:31:9c:a1:f7:2c:
33:b6:7a:de:e2:13:f3:ce:3d:83:de:71:12:02:34:55:8f:d2:
2b:8b:fb:ef:b6:5b:43:5c:9d:6c:ba:e7:46:f4:eb:00:9f:dd:
c9:3a:68:9e:c2:56:1b:dd:b2:6f:9b:07:53:0e:5b:90:34:8c:
7f:6c:ce:23:41:dd:a4:fb:8c:26:ed:f2:2a:1f:01:95:14:d8:
a1:14:eb:3c:67:7f:5a:26:f2:44:6c:ab:96:05:42:28:66:33:
4c:aa:10:7f:a5:e1:ae:17:eb:0f:86:55:37:87:e2:75:33:77:
12:47:4c:3a:d4:b1:00:73:3d:0e:58:5a:9c:63:87:3d:73:74:
45:e7:cb:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:14 2024 by rpki-client on console-fra.rpki-client.org