Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/2fwkJccPg5tcHAvpH6QGSWtC1Ko.roa
File: 2fwkJccPg5tcHAvpH6QGSWtC1Ko.roa (raw, json)
Hash identifier: KkveruuFikk8qmJ4Iror9waaEaGXOyVlZU2tnEN1BZw=
Subject key identifier: D9:FC:24:25:C7:0F:83:9B:5C:1C:0B:E9:1F:A4:06:49:6B:42:D4:AA
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018DF91A0536FE676F5A18B430CE5407773B
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/2fwkJccPg5tcHAvpH6QGSWtC1Ko.roa
Signing time: Fri 01 Mar 2024 08:20:48 +0000
ROA not before: Fri 01 Mar 2024 08:20:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 5.180.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Mar 2024 12:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f9:1a:05:36:fe:67:6f:5a:18:b4:30:ce:54:07:77:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Mar 1 08:20:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d9fc2425c70f839b5c1c0be91fa406496b42d4aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:0a:56:84:0a:58:17:88:e0:11:f0:1f:3c:b0:
b5:f8:17:33:14:1a:71:2a:76:7c:7d:96:88:5b:fb:
8f:3f:7d:9a:36:80:6c:83:31:ac:65:40:41:93:b3:
f0:c2:84:62:ce:9d:3d:0c:16:d3:58:61:4e:7a:75:
f3:34:e4:99:2e:bd:db:f3:e5:c8:2a:5c:99:d1:fd:
a3:b7:dd:8c:2a:52:21:e2:c7:04:4c:ab:e0:db:14:
cf:b9:f1:44:9e:2a:77:04:c3:e4:f7:56:58:78:81:
2d:f8:fd:aa:e2:ef:9e:ff:06:9f:fc:f3:93:5e:16:
72:bc:9d:af:7d:b5:eb:43:28:20:02:67:a5:30:a0:
e0:36:4e:c2:42:77:9a:91:5b:ee:47:f1:8b:ae:eb:
85:6a:aa:5e:b3:4f:28:90:e6:9d:ce:c7:03:96:0f:
0e:a7:13:9e:54:40:b2:65:25:7f:31:5d:a8:6b:bb:
72:0e:2f:34:b2:fc:70:51:ae:af:ca:b6:ac:e0:92:
0e:cb:08:f0:d3:85:f2:90:76:dc:20:f8:dc:73:9e:
3e:46:a5:f3:da:a5:6e:a6:de:0c:80:e7:be:dd:2e:
39:5a:79:3f:ea:ba:ac:91:95:6a:3c:f4:6d:29:2c:
0e:96:66:a5:fe:f9:a1:2b:00:98:0d:94:d2:17:ce:
8b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:FC:24:25:C7:0F:83:9B:5C:1C:0B:E9:1F:A4:06:49:6B:42:D4:AA
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/2fwkJccPg5tcHAvpH6QGSWtC1Ko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.235.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:c6:87:b9:e0:91:9f:62:56:80:b9:61:3d:a2:29:b7:fb:e0:
b7:64:76:d9:cb:b8:f8:f5:6a:d3:e0:64:b5:82:bd:bc:da:10:
93:94:b2:3b:11:d4:9e:e7:3f:5c:c5:a2:3b:4b:4f:f6:cc:f7:
e2:f0:67:3c:38:3d:70:c9:9e:cb:ae:4b:e6:a6:fd:de:55:e0:
c6:b1:4b:28:14:88:81:6f:f7:7e:56:bf:c0:81:e7:18:b4:ef:
8b:4d:18:f9:e8:7d:c9:f3:43:cb:2f:df:73:ce:a2:ef:00:4a:
c3:df:83:12:d4:8c:e8:2c:34:bd:05:62:e8:6f:9e:a1:ea:a5:
de:c1:12:d1:61:e6:c7:ed:3a:ce:c3:dc:5d:59:04:ba:f1:5b:
bf:eb:0a:b7:20:3d:b4:03:5d:ea:8d:7e:e4:5a:2d:b1:a4:e6:
f1:bb:8b:e9:01:1a:4c:e7:4f:43:a6:a3:70:c3:f6:57:d3:e6:
8e:af:3b:57:3a:97:01:2f:2e:16:a6:d7:85:96:f0:54:ec:33:
ec:b6:b9:20:c9:26:b3:bf:f4:2c:f7:bb:93:64:44:dd:a9:1d:
87:be:76:33:2e:21:e4:56:d8:1f:00:17:13:67:ed:a4:08:ca:
e2:73:49:77:96:5f:1f:48:91:63:93:16:f4:15:5d:0b:e3:16:
5d:0a:fb:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 1 16:01:14 2024 by rpki-client on console-fra.rpki-client.org