Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/98RmDtzpv0iLukYA0JXUp5dddzc.roa
File: 98RmDtzpv0iLukYA0JXUp5dddzc.roa (raw, json)
Hash identifier: nN0QF4pJOicJeZ1MD/1Zy7bqiA0rVY6h1RUFOeZaTQA=
Subject key identifier: F7:C4:66:0E:DC:E9:BF:48:8B:BA:46:00:D0:95:D4:A7:97:5D:77:37
Certificate issuer: /CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d
Certificate serial: 0187B9B2471C9C6CA9A1869C322F1120DBA6
Authority key identifier: 79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/98RmDtzpv0iLukYA0JXUp5dddzc.roa
Signing time: Tue 25 Apr 2023 18:34:41 +0000
ROA not before: Tue 25 Apr 2023 18:34:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 5.180.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Jun 2023 13:47:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b9:b2:47:1c:9c:6c:a9:a1:86:9c:32:2f:11:20:db:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d
Validity
Not Before: Apr 25 18:34:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7c4660edce9bf488bba4600d095d4a7975d7737
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a4:ff:8c:27:6b:dd:f8:af:53:65:94:c3:18:
9f:8a:6c:2b:b5:64:b3:61:7a:0c:a0:35:8d:a7:b1:
e2:37:37:b5:0a:cd:f3:7d:73:82:8f:b5:8a:6a:a0:
12:51:29:3c:b8:02:e2:88:e9:98:be:58:0c:29:4d:
bf:77:55:21:5d:82:03:64:1e:2d:81:23:fb:0b:2c:
34:49:bc:51:e0:d7:a3:21:60:90:42:0b:85:1c:66:
d7:44:08:42:9d:e0:21:0b:92:7d:98:c5:15:64:52:
9f:6a:af:0e:96:d1:04:cd:07:b1:a3:27:c5:3d:fe:
1e:5a:57:0e:90:57:8f:53:c0:0a:53:1a:14:9c:4e:
1a:c3:e7:03:53:b4:b9:1b:80:99:eb:74:b8:18:3d:
4d:73:d2:52:fa:66:f7:4e:51:06:80:f0:9c:66:06:
2f:f7:0f:d4:4b:fd:7e:76:dd:40:f4:29:7b:33:c5:
f3:e9:b1:3d:74:06:1c:68:90:16:fa:4e:60:d2:17:
1c:c4:ad:11:06:cd:39:05:7c:74:97:81:33:62:17:
ca:3e:bc:b8:91:77:98:96:0c:fa:84:73:af:02:bb:
46:ef:91:22:26:02:dc:82:a0:eb:4a:2b:b8:7b:da:
3e:ac:69:53:b3:02:72:97:ff:75:4a:df:e4:4a:05:
e5:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:C4:66:0E:DC:E9:BF:48:8B:BA:46:00:D0:95:D4:A7:97:5D:77:37
X509v3 Authority Key Identifier:
keyid:79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/98RmDtzpv0iLukYA0JXUp5dddzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/eahD06Z78gLQriPfleFOqHHY8V0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.155.0/24
Signature Algorithm: sha256WithRSAEncryption
24:92:49:52:7c:41:f3:ba:43:3d:62:37:f2:c1:17:28:19:18:
e8:0e:83:6f:b4:0d:d0:4b:97:cd:48:3c:03:68:8a:bb:01:53:
c4:62:bd:c4:1f:27:f9:09:dc:e5:22:a3:a1:de:73:1d:0d:38:
d0:70:8f:db:42:9e:d2:22:52:6d:4b:8c:dd:e7:aa:e6:7e:16:
f5:7a:76:c2:53:4b:39:42:44:87:ed:de:db:6b:c1:67:84:8c:
11:82:8a:2e:06:df:db:50:77:76:05:13:5e:41:30:f0:39:79:
b1:08:6f:5e:a6:64:c5:0e:07:7c:21:94:b8:a5:49:c2:d5:8e:
c8:84:c2:d0:a1:09:e5:14:35:39:30:dc:af:fc:87:b9:28:ee:
67:04:50:dd:c7:82:92:cb:62:ed:a0:ba:1c:5f:f0:73:a2:80:
50:0b:96:33:b6:9b:ef:e1:ba:15:4f:43:cf:ff:1d:bc:5f:9e:
cb:94:ae:47:c3:2e:5d:e1:20:f2:61:b8:87:52:0f:cf:c7:52:
05:cb:71:1b:ba:27:10:af:2f:b8:1d:fb:58:e6:6a:c8:65:d9:
38:9a:7d:50:00:be:92:b4:98:54:1a:fc:0f:8b:cd:f2:d7:90:
0f:a3:88:39:2e:7d:c0:d5:f7:56:2b:97:4f:14:85:28:b6:4e:
07:a0:37:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:15 2024 by rpki-client on console-fra.rpki-client.org