Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/5qGWQ2JuaBs15VMDPe_efk22afg.roa
File: 5qGWQ2JuaBs15VMDPe_efk22afg.roa (raw, json)
Hash identifier: fgjgUT8YIpzyjyyabYJL/Q6B55Ol54EjS7OAKxwcHrI=
Subject key identifier: E6:A1:96:43:62:6E:68:1B:35:E5:53:03:3D:EF:DE:7E:4D:B6:69:F8
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 018CC9EE2C0BCECEC590520CCDE9FD700851
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/5qGWQ2JuaBs15VMDPe_efk22afg.roa
Signing time: Tue 02 Jan 2024 11:27:58 +0000
ROA not before: Tue 02 Jan 2024 11:27:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 398465
IP address blocks: 5.180.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Jan 2024 16:17:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:ee:2c:0b:ce:ce:c5:90:52:0c:cd:e9:fd:70:08:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 2 11:27:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6a19643626e681b35e553033defde7e4db669f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c0:94:50:1a:62:5b:0a:9f:87:11:c0:03:a2:
b8:4b:c7:c8:72:b0:ca:b6:58:a5:ec:6c:da:2a:c8:
10:b8:38:41:6c:12:97:8e:42:13:a3:71:fd:ef:a2:
9b:f1:79:5c:3f:a3:9e:67:b0:73:39:0d:b8:34:e2:
c6:2b:f8:db:00:01:21:8f:61:91:eb:08:45:68:14:
b3:38:07:78:35:fb:95:eb:c8:62:89:ec:17:07:8b:
43:c5:ad:f4:78:f2:fb:3b:cf:36:a7:71:d3:ff:19:
dc:0f:37:60:6e:90:8d:8d:91:c9:f2:75:3d:1b:b9:
52:3c:12:73:d1:21:b0:d9:ec:f0:ca:87:04:51:a7:
1a:49:7b:02:df:ec:07:52:98:a0:6e:18:4e:50:69:
dd:f6:27:63:9d:12:6b:a1:6c:69:d3:2c:4b:71:bd:
ee:8e:57:ce:b5:f9:0d:6b:32:5b:27:34:02:d0:12:
88:10:2f:7b:98:b5:17:c4:84:c7:af:25:75:fa:af:
86:e2:3c:ad:b1:9d:08:ec:a6:04:d7:25:7d:6c:26:
af:d8:af:7f:23:84:e0:75:e7:3f:52:f7:34:b9:f4:
87:b2:67:2b:81:e2:2b:12:ab:d2:16:c7:2c:5c:c7:
a7:24:e9:0a:43:19:9a:34:b7:6d:48:46:52:23:fe:
f3:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A1:96:43:62:6E:68:1B:35:E5:53:03:3D:EF:DE:7E:4D:B6:69:F8
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/5qGWQ2JuaBs15VMDPe_efk22afg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.195.0/24
Signature Algorithm: sha256WithRSAEncryption
45:46:0a:ec:91:68:88:95:d9:c3:1d:1f:d5:c0:94:24:35:b4:
3a:6b:6b:fc:46:f8:2b:c0:dc:1e:fd:a2:98:e8:1f:63:ba:7f:
39:b8:99:08:e4:3d:11:49:9a:0c:28:58:8c:1e:9a:b9:3a:81:
f6:db:40:a4:b2:0e:0f:3f:f5:69:5c:26:f7:c7:d9:49:59:1e:
c5:b6:5c:a9:39:23:19:f4:88:67:db:1f:54:8b:a7:61:f7:24:
37:a2:86:4c:75:81:f1:6c:4c:f2:0c:48:5b:32:67:9a:23:35:
07:b2:5d:bf:f8:7f:8f:be:1a:f7:35:6e:77:d8:51:4f:c2:dc:
5d:2f:37:50:96:0a:69:b3:f4:8c:dc:97:1e:b3:6d:82:38:2d:
fd:c2:3a:09:6f:9a:7b:7a:a2:c7:bd:92:85:aa:3b:69:fa:a3:
e7:35:a7:05:41:a4:b0:e7:ca:bc:e7:d8:66:e5:20:ad:00:a2:
89:67:48:83:f7:f6:53:2b:e3:d6:3d:56:b4:51:70:24:e6:5d:
68:d9:8a:bb:ee:dd:48:01:98:05:42:1b:6f:fc:2b:42:1f:d8:
0f:d8:02:b4:41:4a:56:f4:da:68:45:e9:e1:cc:6e:d1:08:ea:
61:05:f2:24:84:9c:59:89:58:13:a8:7a:ca:c5:eb:3e:2f:ec:
b4:ea:be:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 20:07:28 2024 by rpki-client on console-fra.rpki-client.org