Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/pZApmiSSz790FGjRl7DC2OCioWQ.roa
File: pZApmiSSz790FGjRl7DC2OCioWQ.roa (raw, json)
Hash identifier: AlsQCcFKEteikAiia7DEIL2V5rMgPz4vXjc4kflfzxY=
Subject key identifier: A5:90:29:9A:24:92:CF:BF:74:14:68:D1:97:B0:C2:D8:E0:A2:A1:64
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018AA2CBF619A1AB6A212FE32EDB3AA429B3
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/pZApmiSSz790FGjRl7DC2OCioWQ.roa
Signing time: Sun 17 Sep 2023 10:59:50 +0000
ROA not before: Sun 17 Sep 2023 10:59:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 23470
IP address blocks: 5.180.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Oct 2023 09:08:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a2:cb:f6:19:a1:ab:6a:21:2f:e3:2e:db:3a:a4:29:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Sep 17 10:59:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a590299a2492cfbf741468d197b0c2d8e0a2a164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1a:8b:31:e8:34:ad:63:77:5b:f1:65:b8:ff:
e2:60:d9:62:c5:f1:db:6a:ca:fa:98:f8:e3:8f:ec:
4a:f1:0d:fd:13:30:d3:62:32:4d:26:78:92:9a:06:
cf:ec:73:04:bd:e2:02:31:a3:2a:32:84:3d:24:a0:
67:6b:3f:59:c3:cc:87:74:3b:56:1e:2b:cd:e3:4c:
d2:68:6a:6a:b1:5a:b9:05:db:93:df:9d:f8:3a:f3:
bb:31:15:8e:12:92:f0:37:e2:26:bf:80:40:f9:0e:
f7:08:6e:12:9c:b4:2a:4c:cc:bd:d1:46:e3:47:5d:
92:71:68:0e:97:f9:50:53:0a:4f:3f:ec:dd:7f:43:
01:35:ce:31:5d:88:72:d1:78:09:aa:bf:ce:cf:25:
53:d3:46:1b:03:42:fc:11:7d:ce:31:26:4c:63:4c:
c9:40:57:dc:e0:e8:27:b8:e6:0c:c9:3e:0a:a2:a9:
68:25:80:94:99:78:9d:e2:73:42:31:76:65:f1:5a:
ee:c1:0b:c6:fe:64:4a:bd:19:7f:08:34:2f:08:d3:
75:65:9a:4d:81:f1:47:1e:6c:46:2d:e1:0e:c3:ea:
73:e6:52:1b:00:90:c5:9d:d4:a9:87:4b:e5:17:6e:
20:62:9e:b5:0a:cc:a6:c3:e6:66:d6:2a:e4:55:26:
58:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:90:29:9A:24:92:CF:BF:74:14:68:D1:97:B0:C2:D8:E0:A2:A1:64
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/pZApmiSSz790FGjRl7DC2OCioWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.83.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:a3:75:02:6c:d1:2d:57:17:94:8e:f1:80:85:b0:12:00:88:
5b:5e:59:73:78:51:12:9b:03:66:e7:51:a4:0d:e0:e7:53:c8:
98:d9:6a:76:86:32:b5:73:27:fd:e8:79:82:d6:03:74:6d:ee:
53:c8:9d:af:0f:50:d2:43:5f:6f:b9:d3:0c:e1:1a:c3:ec:8a:
b0:82:5e:ad:27:b9:f2:36:6f:4a:7c:74:f2:8e:ec:59:5d:86:
2e:49:f6:8f:cd:aa:da:de:92:9c:b8:cc:f0:ce:23:03:2d:c6:
25:d8:ed:06:63:a6:7c:c6:73:6e:8c:65:99:94:ef:85:6f:04:
4d:aa:a4:de:59:f5:b0:e9:b3:19:29:f1:d6:3d:e0:66:92:6d:
57:f5:9a:64:f6:4d:a4:6f:eb:2f:55:f5:3b:fe:17:15:2f:a8:
26:7f:ff:a3:84:39:7b:cd:dd:a8:c6:63:92:ae:98:69:e5:8a:
b1:55:c0:b1:f9:9f:30:f9:57:61:c9:f1:6a:30:0b:f4:dd:ee:
e2:9d:29:ef:ca:17:69:34:63:59:44:28:9c:c1:12:e4:0e:a6:
74:38:39:f3:38:64:22:9f:a7:2f:4d:c6:87:fc:14:c1:fa:00:
17:55:72:49:ef:60:a8:9e:15:06:a2:4d:2d:58:4e:62:3f:9e:
89:5a:e5:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:25 2024 by rpki-client on console-fra.rpki-client.org