Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/ctENZhdumGt-LQMqtmnEgIwsM5Q.roa
File: ctENZhdumGt-LQMqtmnEgIwsM5Q.roa (raw, json)
Hash identifier: Cq8yOagb41gLLL+HCa48VfR8ihBLfCS1vKZeWJ0M/P8=
Subject key identifier: 72:D1:0D:66:17:6E:98:6B:7E:2D:03:2A:B6:69:C4:80:8C:2C:33:94
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 018BF77F11B3C639601BF2686A6FF8B6CC20
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/ctENZhdumGt-LQMqtmnEgIwsM5Q.roa
Signing time: Wed 22 Nov 2023 14:46:21 +0000
ROA not before: Wed 22 Nov 2023 14:46:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29802
IP address blocks: 5.180.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Dec 2023 22:11:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f7:7f:11:b3:c6:39:60:1b:f2:68:6a:6f:f8:b6:cc:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Nov 22 14:46:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72d10d66176e986b7e2d032ab669c4808c2c3394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:51:a6:92:d9:90:a8:df:5a:0b:83:9b:5a:ab:
5e:db:3e:db:ef:93:d2:22:d8:ba:66:7e:da:91:bd:
a8:db:6f:02:dd:cf:84:97:a0:89:83:01:44:a1:3e:
12:61:86:8a:74:67:7b:0d:26:79:6a:2c:5b:7a:dc:
7b:69:b4:15:61:0a:c6:76:5a:cc:e1:f5:fa:9d:b3:
b2:ac:63:01:84:9d:fb:82:58:e5:fe:54:9d:ca:f9:
f3:9c:c4:68:b2:33:61:97:81:80:e6:50:44:29:b1:
a4:39:6d:c1:72:be:2d:11:72:31:32:fa:4b:8f:44:
45:2d:c6:ce:94:c1:ed:4c:7f:4f:52:38:8c:ab:8d:
87:81:f0:f8:af:3e:90:01:b4:e7:e2:db:79:a9:b4:
19:d6:6e:17:23:3c:ce:bb:13:b3:10:23:fb:d2:9c:
ea:43:46:36:46:bd:47:3a:62:54:8b:a5:77:98:99:
64:5d:e1:9b:e8:12:78:80:e6:a9:36:2d:28:f9:1c:
0f:5a:12:95:99:ab:f4:9b:a2:45:f1:48:78:ce:04:
b4:cd:8b:49:e3:b8:08:1a:a5:fb:7f:0e:74:6f:2f:
04:01:42:ab:f0:c0:3d:83:3c:ac:cd:76:47:cc:88:
7c:bf:16:84:40:19:ad:ac:1d:16:c1:3d:42:7e:75:
5b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:D1:0D:66:17:6E:98:6B:7E:2D:03:2A:B6:69:C4:80:8C:2C:33:94
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/ctENZhdumGt-LQMqtmnEgIwsM5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.195.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:8d:b5:d9:8b:13:db:3a:e4:dc:f3:ac:af:33:3e:f1:dd:f5:
5b:4c:61:76:f5:86:f0:e8:90:f6:61:cc:6e:57:75:7d:bf:c8:
b5:b3:bd:ce:c4:37:70:13:eb:56:e5:b0:1e:67:fd:c1:bf:5a:
c5:39:a0:bb:0c:fe:e7:15:97:13:c9:17:d5:5b:49:83:72:63:
f0:fc:bc:eb:db:f9:a7:03:4e:43:21:74:38:72:dd:d0:e7:06:
50:d7:7f:6e:21:ce:40:7d:53:69:3e:82:fc:06:28:38:a4:99:
80:e1:7e:31:b4:29:c6:88:84:a3:c3:84:0b:88:b2:d3:0f:90:
ca:6b:e6:b9:f1:7f:98:6a:04:46:8d:64:fa:4b:49:6c:c0:32:
65:0e:69:26:83:84:60:33:fc:87:e0:c1:cc:4b:af:8d:3f:1a:
4f:40:e2:9d:75:92:02:52:8f:56:05:1f:07:2a:b4:98:48:28:
c1:70:b4:ba:c6:29:f9:37:8a:03:26:0c:e1:5c:23:ff:60:c2:
e7:5e:c7:7a:9a:71:e3:e3:b2:f5:bf:7b:8e:b6:a8:5d:62:44:
cb:9c:9e:c2:f8:6e:3e:5e:64:31:0e:af:1e:ef:3b:0c:6a:27:
2e:7e:9b:93:0a:1c:d5:18:56:a8:2d:1f:f6:30:bd:18:a8:cc:
4f:c1:0d:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org