Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/d-tiB01Cp980p1ISIrzJQRpHQ_Q.roa
File: d-tiB01Cp980p1ISIrzJQRpHQ_Q.roa (raw, json)
Hash identifier: ywBFL1LqI4fiVDDP5WQNyE3q6F2ClzAxZwIr7FjllXI=
Subject key identifier: 77:EB:62:07:4D:42:A7:DF:34:A7:52:12:22:BC:C9:41:1A:47:43:F4
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 0185706725DF2DEED0091327840DE67F17CE
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/d-tiB01Cp980p1ISIrzJQRpHQ_Q.roa
Signing time: Mon 02 Jan 2023 02:54:46 +0000
ROA not before: Mon 02 Jan 2023 02:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208593
IP address blocks: 5.202.187.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:25:df:2d:ee:d0:09:13:27:84:0d:e6:7f:17:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: Jan 2 02:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77eb62074d42a7df34a7521222bcc9411a4743f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:33:0a:74:97:07:36:11:20:59:fb:56:f6:80:
6b:b9:0e:8c:60:74:e8:2c:ca:98:99:d0:cb:49:14:
c4:89:22:25:35:4a:5e:0e:dd:48:d5:96:dd:fa:d9:
19:83:4c:aa:c8:ad:96:f3:1c:b8:2b:50:a0:79:5a:
44:44:b2:31:78:29:60:47:32:35:66:ae:0f:ec:37:
cb:d3:1d:05:97:03:92:88:bb:0b:28:5d:01:50:16:
02:54:95:75:e5:af:0b:d2:0b:13:23:36:79:d5:83:
ce:a2:83:5f:6e:57:10:af:42:cc:4f:03:47:b3:f0:
29:25:44:c3:ba:39:35:3c:03:cf:6e:d6:89:3f:a3:
db:d6:ec:b2:86:cd:ba:60:35:3c:f6:be:04:6f:25:
33:b2:94:e7:c2:8b:35:b5:d1:d1:8f:9d:e2:c1:13:
24:d4:ab:fe:b6:e9:ae:88:cb:c0:93:f2:8d:79:96:
80:11:95:45:ff:70:7b:ee:a5:a5:f3:d9:d9:f8:97:
b6:cc:b3:54:00:bb:c5:ae:96:16:49:b6:50:81:70:
c9:49:ce:ad:f3:eb:c1:6e:bd:8b:9a:19:ac:f2:e6:
e8:81:49:b8:0f:95:91:eb:18:39:bc:48:e4:5e:ff:
6a:96:85:0e:07:e3:83:97:ac:10:e4:64:f8:6e:ad:
d1:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:EB:62:07:4D:42:A7:DF:34:A7:52:12:22:BC:C9:41:1A:47:43:F4
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/d-tiB01Cp980p1ISIrzJQRpHQ_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.202.187.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:b2:61:59:c6:a0:a3:76:38:b6:a8:50:cf:de:8e:57:3d:c6:
3c:38:d4:c7:1e:ab:18:51:c5:17:a6:84:73:df:84:7a:32:bf:
9a:0e:96:55:1d:ab:13:32:fc:9e:fd:d6:b2:41:fa:d6:30:6b:
65:60:2f:28:be:85:1b:4c:97:6a:10:35:1a:35:26:5b:76:20:
aa:df:c8:08:56:5e:da:9e:9a:88:13:60:08:4a:b3:1a:9f:c3:
60:c8:42:62:be:4d:38:31:b8:ef:d1:d5:7b:51:81:dc:c3:22:
e6:3b:dd:59:4c:5c:c9:06:27:f2:64:3c:0e:f3:af:6f:1b:5a:
34:49:27:6d:35:32:3e:68:10:99:49:38:60:b7:98:5c:a3:6b:
e9:46:f3:f1:e4:82:b7:18:e5:17:0d:de:c8:6c:fd:46:90:bc:
ea:bb:6b:dc:8d:84:40:d4:d7:f6:89:25:6f:a0:d5:88:c8:c3:
ba:b2:cb:bf:f2:55:2f:a8:7d:69:39:45:c4:16:85:90:56:af:
d0:61:0a:80:89:18:cf:88:00:70:54:1e:cd:aa:d7:aa:cc:01:
12:b1:70:af:21:76:ab:c7:b7:d0:ed:87:24:c8:d2:ef:9b:ed:
25:06:2c:fc:54:2c:92:f8:b3:e5:89:54:d5:b2:b8:35:af:37:
2e:8d:4e:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:10 2024 by rpki-client on console-fra.rpki-client.org