Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/DFUk_0iLVww3IkNzpt5pAkknC0c.roa
File: DFUk_0iLVww3IkNzpt5pAkknC0c.roa (raw, json)
Hash identifier: nrQtEiLLCUEC5mK3LQPvVYFh7A6qnmn9I4IfC3ji140=
Subject key identifier: 0C:55:24:FF:48:8B:57:0C:37:22:43:73:A6:DE:69:02:49:27:0B:47
Certificate issuer: /CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d
Certificate serial: 018A65BE0A61850635BA36628E1E8E3AA6CA
Authority key identifier: 79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/DFUk_0iLVww3IkNzpt5pAkknC0c.roa
Signing time: Tue 05 Sep 2023 14:27:47 +0000
ROA not before: Tue 05 Sep 2023 14:27:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216394
IP address blocks: 5.180.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Oct 2023 16:42:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:65:be:0a:61:85:06:35:ba:36:62:8e:1e:8e:3a:a6:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d
Validity
Not Before: Sep 5 14:27:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c5524ff488b570c37224373a6de690249270b47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:19:77:cd:85:0e:2d:df:ec:3f:25:f3:80:4a:
b6:69:4b:c1:60:67:ba:66:80:71:1f:62:e9:eb:9f:
fe:fe:6e:75:44:fa:12:9f:30:4b:70:79:2c:ec:1b:
c3:5a:77:78:60:0a:6e:a7:8b:30:38:9b:7c:34:fb:
50:e1:ee:b8:76:8b:d7:4e:04:10:32:b9:f0:6e:8a:
21:d8:73:65:bc:f4:7d:a7:96:ea:a8:07:c5:ab:23:
6f:fb:eb:43:7c:24:1e:c4:93:c0:0a:d1:3f:60:43:
c5:7d:03:15:f8:26:b6:4c:8b:02:0d:a8:2d:8f:1a:
40:ec:5f:29:25:63:a1:89:b8:31:72:6e:56:10:65:
76:07:23:f1:ae:20:70:21:49:05:f6:cf:3f:6a:1b:
85:28:53:14:98:dd:a2:49:dd:d5:a7:a3:0c:38:1d:
cf:60:f2:9f:49:aa:e6:05:01:8e:3d:4a:bc:cf:25:
95:a3:2c:a4:30:bc:f5:67:39:1d:17:37:69:8c:47:
93:f9:67:06:90:73:06:c4:82:06:e5:82:c9:9a:88:
34:a4:34:c0:57:ed:f7:be:68:12:90:32:b3:0b:5e:
9b:eb:41:9d:d0:e1:46:c6:cd:03:a3:32:ab:ef:35:
1d:f4:7a:0a:84:e7:df:c9:46:4f:e9:47:4a:be:e4:
c2:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:55:24:FF:48:8B:57:0C:37:22:43:73:A6:DE:69:02:49:27:0B:47
X509v3 Authority Key Identifier:
keyid:79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/DFUk_0iLVww3IkNzpt5pAkknC0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/eahD06Z78gLQriPfleFOqHHY8V0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.153.0/24
Signature Algorithm: sha256WithRSAEncryption
46:54:bb:61:2e:48:36:b4:b5:f6:a4:92:32:95:4c:73:bd:31:
d6:0c:3c:03:47:9d:ca:f5:7c:4a:bc:82:a8:01:7e:e2:ca:53:
00:f2:f5:dd:60:bd:30:29:b2:55:0b:11:d7:85:b1:68:e3:38:
6d:a5:2e:c8:bd:9d:0f:11:5d:36:b0:d3:b8:b4:0f:93:07:a0:
25:1a:3a:a5:46:47:b4:55:4b:71:93:c0:31:8c:73:ac:0b:cc:
47:a7:af:70:b6:70:b6:23:3d:01:5c:2a:88:95:28:3c:11:c3:
91:4b:18:bd:12:6b:e9:ce:50:13:dc:3b:09:2f:24:e9:32:d3:
be:f9:4d:aa:af:3c:ed:4d:0c:7b:6d:66:98:96:55:67:dc:b7:
81:88:36:53:e6:73:b3:90:6d:1e:88:32:14:db:3a:54:f6:4f:
a5:79:ba:4d:92:9e:16:a5:8a:5f:76:dc:31:20:0d:46:15:f5:
91:63:4f:d2:91:f4:f9:7f:6a:f2:e7:4b:13:92:72:07:dd:19:
73:fd:a3:12:55:9b:8b:b6:03:df:ad:83:5d:d8:25:6e:56:b7:
49:10:08:22:c1:e5:c0:b3:64:2c:65:1c:88:8e:01:ae:0b:f6:
91:57:46:7a:34:2f:21:8e:74:e5:01:02:f1:ab:eb:ad:f0:ab:
a0:93:c0:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:15 2024 by rpki-client on console-fra.rpki-client.org