Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/CmLqr5OZE00ad6M5J7fc3DhCjgE.roa
File: CmLqr5OZE00ad6M5J7fc3DhCjgE.roa (raw, json)
Hash identifier: YFfzRvh+MWxMdK4OYLhAGqKt8W2hwABa6+eiLdz8xrY=
Subject key identifier: 0A:62:EA:AF:93:99:13:4D:1A:77:A3:39:27:B7:DC:DC:38:42:8E:01
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 0187BD3E7C47968DE2ED545190E496F8E096
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/CmLqr5OZE00ad6M5J7fc3DhCjgE.roa
Signing time: Wed 26 Apr 2023 11:06:41 +0000
ROA not before: Wed 26 Apr 2023 11:06:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 5.180.194.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Apr 2023 12:09:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:bd:3e:7c:47:96:8d:e2:ed:54:51:90:e4:96:f8:e0:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Apr 26 11:06:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a62eaaf9399134d1a77a33927b7dcdc38428e01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ba:19:71:d3:81:75:f9:0e:67:e4:55:ce:cc:
6b:39:3c:91:c8:37:dd:fd:dd:90:53:06:20:28:ba:
c5:b8:fc:e3:ea:51:c0:a4:d4:d6:dd:64:80:f7:30:
80:ce:29:e9:14:b8:f6:5e:4b:27:a2:65:4a:e7:90:
04:24:fe:79:d9:22:c4:e5:88:29:7e:9c:f7:b2:ac:
d6:65:c2:b3:6d:ac:85:97:88:39:63:85:41:39:15:
2c:ac:16:a7:77:c6:b5:49:be:c6:b7:64:cf:e6:bc:
1d:86:d3:e2:e8:6f:3f:41:1d:d9:35:ab:b4:69:74:
ba:60:ef:bf:b1:9f:ae:a1:42:77:43:96:b0:b7:bc:
a8:4a:5f:4e:79:7f:6f:e4:4c:3f:32:5b:0f:dc:24:
0b:7b:8f:6b:c0:5b:f4:52:c1:a3:a0:cc:3b:61:52:
ec:c6:fa:d8:d5:14:75:70:d3:02:6e:1e:e3:73:2c:
a7:e3:1a:c3:30:31:b2:15:97:6b:02:f7:81:99:cc:
68:e7:c2:b5:25:d5:9b:5b:5f:48:18:90:98:b5:3b:
a3:66:4c:d3:71:61:82:86:e3:f6:a4:83:d0:8e:ec:
e3:c6:d0:26:97:3b:5a:07:08:67:70:d9:2b:c9:c7:
51:82:e9:1c:5b:f8:14:a8:31:f0:74:af:49:5c:6e:
ba:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:62:EA:AF:93:99:13:4D:1A:77:A3:39:27:B7:DC:DC:38:42:8E:01
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/CmLqr5OZE00ad6M5J7fc3DhCjgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.194.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:bc:88:94:62:77:0c:7c:44:3e:72:f6:26:65:1c:ab:46:df:
40:e7:9f:e7:7a:3c:fb:ff:06:7a:02:f8:2d:5e:1e:76:b0:8f:
a1:fb:18:3d:88:b1:8b:72:aa:f0:14:47:5f:17:15:8a:95:67:
b5:9a:fb:ff:1d:e4:e2:26:13:8b:81:7a:31:63:29:f3:82:c0:
45:2a:03:5c:b7:d3:af:51:f8:86:79:45:9f:7d:fb:c6:ce:a8:
45:3b:0a:ef:75:c9:59:8e:86:a3:25:bd:24:74:21:e3:17:07:
86:9f:aa:67:ed:f4:bb:80:91:90:9f:f7:5f:2d:6d:33:e8:32:
cb:50:69:68:7c:12:f6:97:0e:b7:24:aa:49:b4:3f:95:2a:ec:
29:63:c4:38:08:05:27:14:2a:e8:c6:cc:87:76:98:f4:18:45:
54:16:9b:40:ae:f0:7d:4f:d9:fa:b1:36:ac:75:90:c7:0a:e2:
b8:84:79:76:f1:14:b7:3b:f4:3d:4f:57:fe:fb:03:6b:2c:f6:
0a:54:91:21:fe:4c:d2:2a:ac:73:c5:78:3c:83:9f:3b:ff:1f:
4d:c5:20:89:04:75:df:6a:6c:a9:34:e7:69:09:db:b7:5a:37:
7e:00:97:0a:dd:e7:c0:e9:17:ee:b7:3d:06:f4:56:67:8b:de:
86:c2:c9:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org