Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/jDOfSSyRvvg1tyJMFhHRR8gZxhc.roa
File: jDOfSSyRvvg1tyJMFhHRR8gZxhc.roa (raw, json)
Hash identifier: Y6bvsrqvTtWrrciHff/vbACqYvlQsFoTRpyE7qpI/9E=
Subject key identifier: 8C:33:9F:49:2C:91:BE:F8:35:B7:22:4C:16:11:D1:47:C8:19:C6:17
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018DD528F76DEC9F4E2D5F21BA9FB40AB129
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/jDOfSSyRvvg1tyJMFhHRR8gZxhc.roa
Signing time: Fri 23 Feb 2024 08:50:48 +0000
ROA not before: Fri 23 Feb 2024 08:50:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5511
IP address blocks: 5.180.233.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Feb 2024 11:40:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d5:28:f7:6d:ec:9f:4e:2d:5f:21:ba:9f:b4:0a:b1:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Feb 23 08:50:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c339f492c91bef835b7224c1611d147c819c617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ac:f9:1c:e0:2a:ac:f9:f3:50:b4:ec:7f:f3:
cb:f8:94:69:92:16:ed:5a:58:b2:b3:a0:7f:ea:a8:
70:4b:ae:24:ca:5e:de:f1:e7:12:3a:df:6a:08:f3:
ba:20:38:66:3d:05:14:27:91:e5:a2:3d:6e:eb:80:
49:7a:cb:4e:0b:96:6d:55:f2:17:3a:5f:52:46:d6:
54:06:ea:74:2c:e4:f0:47:44:ba:d7:82:ac:82:cc:
f6:49:22:5c:8c:a5:68:79:64:b4:20:3b:46:b6:3b:
15:c6:96:f7:1d:fd:1d:3b:67:4e:35:f5:6f:a7:ea:
2b:21:a7:10:cb:ea:90:5c:91:a4:9e:9e:5c:ec:f3:
f8:7c:cf:0d:a2:f1:a1:ec:00:a7:4e:c1:5d:06:74:
36:eb:f5:57:03:73:a9:a5:6c:10:fe:83:9a:ba:d7:
81:be:77:7f:30:71:1e:62:6d:27:1b:4b:58:cb:89:
69:78:78:95:d3:f0:eb:5b:2c:3b:7e:4a:da:49:f0:
b4:d7:48:fb:0c:fc:0b:0f:f4:43:27:80:2a:5c:ea:
3c:9f:48:60:c1:32:27:f1:7b:88:cc:74:7f:8d:0b:
35:1f:ae:0f:d5:e4:3e:3c:3a:60:3f:f8:7b:9e:b3:
10:7e:a7:3f:64:c9:10:04:25:2d:8a:fc:f5:e9:cd:
e1:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:33:9F:49:2C:91:BE:F8:35:B7:22:4C:16:11:D1:47:C8:19:C6:17
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/jDOfSSyRvvg1tyJMFhHRR8gZxhc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.233.0/24
Signature Algorithm: sha256WithRSAEncryption
54:11:2a:84:51:4e:15:65:48:9e:a8:d9:a2:38:37:40:3e:d0:
90:75:be:46:61:0b:60:d0:6c:b5:5b:6c:59:4e:a9:c3:a7:48:
d7:64:02:ab:ac:98:40:75:f6:f6:8c:a9:c2:f8:94:6c:7c:b3:
80:cd:98:7b:63:76:11:43:2e:e4:61:57:04:13:64:f3:e9:3b:
8f:17:34:67:52:c2:cf:58:c5:13:d7:c8:36:19:da:83:b6:4b:
d6:79:4f:89:e6:92:cb:e3:5d:76:ba:c5:a3:74:f2:5f:fb:2c:
46:ac:87:0c:c0:c7:99:17:53:37:28:1b:5d:50:d9:26:32:e1:
7a:db:0d:6e:10:d0:62:36:65:80:e9:1c:e9:a2:68:aa:38:3b:
c2:6b:c4:7d:45:60:5c:43:ff:35:45:36:b1:b6:d9:4b:7c:32:
20:9e:dc:91:2f:81:c3:69:47:8b:73:d6:09:6e:92:bc:e4:db:
98:c3:9d:ca:47:b4:b8:f6:78:4b:52:3e:94:f7:a8:76:c5:8d:
42:9f:da:83:f5:00:44:93:9a:8b:4e:05:24:51:1f:35:91:75:
05:cc:67:21:4b:ec:56:07:06:18:cc:83:73:96:68:b7:6e:c4:
28:18:f6:08:65:c8:4b:89:5e:29:d9:d6:69:07:e0:a3:94:ab:
d0:bb:92:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 16:20:21 2024 by rpki-client on console-ams.rpki-client.org