Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/NwDURdLhsKCXUH545Q5cxpeDfm0.roa
File: NwDURdLhsKCXUH545Q5cxpeDfm0.roa (raw, json)
Hash identifier: XWx55Bthv15gF6rvKPUUppMZgwe2l4PUbemQytRRIME=
Subject key identifier: 37:00:D4:45:D2:E1:B0:A0:97:50:7E:78:E5:0E:5C:C6:97:83:7E:6D
Certificate issuer: /CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d
Certificate serial: 018B05DEB8AD666223032D04359D1DAA9806
Authority key identifier: 79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/NwDURdLhsKCXUH545Q5cxpeDfm0.roa
Signing time: Fri 06 Oct 2023 16:42:44 +0000
ROA not before: Fri 06 Oct 2023 16:42:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211557
IP address blocks: 5.180.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:05:de:b8:ad:66:62:23:03:2d:04:35:9d:1d:aa:98:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d
Validity
Not Before: Oct 6 16:42:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3700d445d2e1b0a097507e78e50e5cc697837e6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:69:7c:bb:ed:4a:0e:27:9e:b2:34:2f:91:47:
19:2c:ff:97:96:ba:35:0d:15:77:02:be:a5:7f:0c:
66:0c:37:d9:a6:52:94:11:a9:e3:a9:19:7b:7c:cc:
44:54:5f:4d:08:51:3f:7f:78:fd:6f:c5:21:5d:3b:
b4:81:97:73:7d:d0:72:44:55:f0:62:13:b4:1b:73:
21:2c:53:0a:5f:7d:a4:1e:f4:0c:7d:a4:24:19:2d:
b4:8f:27:22:e1:11:85:96:4b:b0:05:23:e0:07:69:
c6:ff:0c:6b:50:73:0d:91:ce:2d:02:af:af:f2:32:
7c:2b:0b:ff:e8:73:93:79:6a:67:1b:0d:4b:a6:b9:
7a:74:31:bb:53:98:af:d5:e5:4c:0a:34:80:61:92:
92:2b:7d:23:34:bb:76:66:11:a1:5c:25:3d:ce:8f:
98:1c:5b:83:d4:fe:10:9e:03:49:5d:77:ad:0e:71:
d7:12:13:6a:07:31:a8:e1:cb:dd:c9:36:51:a4:0b:
b6:a8:75:f6:b0:fe:98:d4:4f:19:08:fd:c1:5a:5e:
ec:52:51:21:5d:f4:5c:2f:57:d6:98:31:88:a5:cc:
f4:25:f1:08:b2:90:72:97:37:ee:ba:c6:e7:13:98:
92:ab:10:ce:c5:30:8d:95:a4:fc:29:08:83:8a:31:
ee:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:00:D4:45:D2:E1:B0:A0:97:50:7E:78:E5:0E:5C:C6:97:83:7E:6D
X509v3 Authority Key Identifier:
keyid:79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/NwDURdLhsKCXUH545Q5cxpeDfm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/eahD06Z78gLQriPfleFOqHHY8V0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.155.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:a5:cd:66:43:9f:c7:d5:29:a7:c6:b7:11:88:4d:88:6c:49:
74:7f:40:7c:05:e2:63:91:90:57:05:1d:22:02:f7:df:3a:bd:
5b:b5:9d:48:b6:77:62:dd:b7:11:0e:06:9e:4a:11:7b:14:4c:
c9:c3:2f:a5:52:d6:b9:13:30:f6:4c:e6:b4:97:bb:db:c1:c0:
81:7e:94:01:b0:20:97:2d:21:a6:07:73:e0:72:8b:7a:a1:a3:
10:90:40:2c:2f:b6:17:f2:1d:04:b2:af:18:67:f4:ce:87:63:
9b:7d:b0:ea:e4:d7:4e:dc:ac:fa:b3:6e:10:da:ed:ea:b7:73:
af:ea:67:96:ae:e1:24:ee:66:b0:d4:f5:d8:32:12:ce:1b:01:
39:f0:94:b7:8b:10:91:0e:b3:40:bb:9c:77:ae:b6:6b:e7:3b:
b1:71:f3:05:e4:49:51:0e:83:58:7e:9a:f8:18:7b:bd:60:d3:
eb:ca:8e:0d:50:48:fb:78:8d:55:0e:24:49:af:45:86:81:45:
66:28:df:05:28:80:20:8b:40:d6:e7:cb:45:3f:85:8e:b1:55:
a5:61:7c:ed:26:26:72:18:81:7c:2a:2c:04:eb:89:ee:a4:f4:
ec:78:5c:5d:a3:b3:54:36:52:cf:f6:c6:1f:47:59:ad:04:54:
49:07:ad:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:40 2024 by rpki-client on console-ams.rpki-client.org