Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/AuY0rdDscjgyXs5A2tPZapcp9P8.roa
File: AuY0rdDscjgyXs5A2tPZapcp9P8.roa (raw, json)
Hash identifier: Epn/TPbh62pW4UsLWdXeti0yc9O3VJnvgW9ZQnqdYhk=
Subject key identifier: 02:E6:34:AD:D0:EC:72:38:32:5E:CE:40:DA:D3:D9:6A:97:29:F4:FF
Certificate issuer: /CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d
Certificate serial: 018A000D94EF41268B24D1FB139782738C7E
Authority key identifier: 79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/AuY0rdDscjgyXs5A2tPZapcp9P8.roa
Signing time: Wed 16 Aug 2023 20:33:24 +0000
ROA not before: Wed 16 Aug 2023 20:33:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 5.180.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Aug 2023 17:56:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:00:0d:94:ef:41:26:8b:24:d1:fb:13:97:82:73:8c:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d
Validity
Not Before: Aug 16 20:33:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02e634add0ec7238325ece40dad3d96a9729f4ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8e:4b:ad:0c:64:03:0e:02:8f:9d:71:c0:b4:
f5:82:e0:ea:db:42:48:b0:ce:e9:81:05:30:1f:34:
ca:9f:25:75:a9:ba:f8:18:24:28:18:ee:98:f2:c6:
19:67:40:e6:dd:ae:00:d0:6c:82:8a:02:c3:8b:8c:
04:92:59:4d:b6:db:28:cc:60:e0:53:42:96:ac:5d:
16:35:a2:02:b5:5e:8f:a6:d5:cf:56:35:92:aa:4d:
54:a3:dd:b3:71:fd:ab:c1:4b:3a:2e:56:a7:be:4b:
12:65:28:64:ea:0a:f6:c9:67:b4:ef:77:2f:33:e6:
0d:25:d6:53:45:70:53:a5:66:79:ea:26:82:9e:aa:
88:99:e8:91:4b:c4:aa:f3:11:c7:77:1e:f2:64:aa:
69:87:e0:a9:7a:7e:d0:20:c3:de:dd:51:e4:a8:59:
8e:17:00:6d:a8:6c:0c:3e:60:a7:9b:03:7f:da:92:
4c:8e:42:05:04:8f:2b:c6:6f:70:df:38:23:3b:61:
1e:fc:c5:be:c1:c9:ff:a9:bd:eb:d7:14:bb:de:2c:
2e:e5:55:4e:48:58:3d:35:59:73:c0:1b:b7:c4:46:
b7:65:27:7e:ee:40:0b:55:ac:ab:7f:c1:01:20:8e:
40:8b:a9:7d:de:f9:bf:12:b5:cb:7e:eb:8f:98:10:
c8:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:E6:34:AD:D0:EC:72:38:32:5E:CE:40:DA:D3:D9:6A:97:29:F4:FF
X509v3 Authority Key Identifier:
keyid:79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/AuY0rdDscjgyXs5A2tPZapcp9P8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/eahD06Z78gLQriPfleFOqHHY8V0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.153.0/24
Signature Algorithm: sha256WithRSAEncryption
58:09:33:be:93:59:d9:69:bd:0c:0f:22:0f:91:b7:73:6c:11:
3a:ab:57:65:f1:fe:0f:fd:86:78:82:2f:df:eb:10:cb:5f:64:
6e:36:fc:35:dc:5d:51:40:56:1d:1c:7c:00:62:bb:55:07:75:
7b:c2:7f:66:3b:60:92:5f:1a:82:61:01:a3:6b:49:eb:10:e7:
2c:8f:44:9b:20:f7:f5:49:4f:fe:47:77:a6:2d:97:22:82:80:
82:23:ac:f7:ea:93:a0:ec:5c:e9:96:66:d2:fb:bc:f1:56:06:
86:ed:a0:c9:de:46:0e:da:75:92:cd:df:b8:de:2f:d7:b4:1a:
99:6e:d4:b2:21:9a:46:a5:51:7f:7a:6b:ff:f3:c1:01:fa:22:
f8:ff:b4:7f:b8:3c:2a:e8:20:a4:59:3a:ae:78:6a:02:be:7f:
e8:62:02:4c:89:4c:6a:d1:57:46:79:3c:8e:a6:c9:cf:7e:44:
c2:82:0a:f7:71:af:bf:95:10:2a:f4:93:8d:58:fc:a6:7c:8a:
3f:21:81:6f:50:c4:6c:fe:a0:9c:df:b5:09:ae:34:58:20:33:
40:12:dd:3e:ee:31:00:b6:15:0e:e2:53:ac:88:c0:e1:be:1f:
b7:ca:c3:d0:b7:d0:6b:2f:6f:08:0d:af:25:06:f9:78:e7:0b:
1f:f0:7d:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:40 2024 by rpki-client on console-ams.rpki-client.org