Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/ODCwW9tcF-tBy5VwU4iukeYGO8w.roa
File: ODCwW9tcF-tBy5VwU4iukeYGO8w.roa (raw, json)
Hash identifier: Zzb6fZkoL1cfz12jAOrZX/StCuxUMX3AOFZz9AXadfY=
Subject key identifier: 38:30:B0:5B:DB:5C:17:EB:41:CB:95:70:53:88:AE:91:E6:06:3B:CC
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018571E7ABE85862C7306FC01BF15FB7C25C
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/ODCwW9tcF-tBy5VwU4iukeYGO8w.roa
Signing time: Mon 02 Jan 2023 09:54:46 +0000
ROA not before: Mon 02 Jan 2023 09:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203084
IP address blocks: 5.180.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:e7:ab:e8:58:62:c7:30:6f:c0:1b:f1:5f:b7:c2:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jan 2 09:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3830b05bdb5c17eb41cb95705388ae91e6063bcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:8f:65:32:6b:a0:1b:c2:a1:84:d8:90:36:e8:
3b:00:ce:14:09:c7:40:f4:0b:ad:8c:7f:30:57:5f:
d9:85:fc:f8:ec:c8:97:f1:22:72:02:26:bf:04:55:
d2:d2:f6:78:d7:ec:a4:c5:8d:c9:e9:44:b8:75:95:
66:30:48:d3:14:88:0d:e5:cd:a9:77:89:2e:1c:c9:
61:23:96:3a:7e:2f:6b:82:30:cc:23:25:c7:6d:35:
01:48:87:f2:7f:c7:46:ef:38:d9:bc:78:d6:c4:fd:
10:2d:b0:ed:67:07:09:bc:0c:8a:56:08:d4:b9:cb:
37:03:7c:bc:7f:d1:4e:87:cf:73:3f:ef:ae:14:d9:
14:f3:9a:cc:63:e6:f3:ad:2b:60:71:e1:fa:e2:2e:
5b:4c:56:63:26:41:30:b4:17:63:e5:a9:d5:32:16:
bf:12:37:e6:16:ba:7d:fd:ce:49:26:dd:62:7d:22:
a6:3d:f8:f1:7b:54:05:85:da:2c:77:2d:78:b3:1f:
cb:72:32:b6:d8:db:f1:24:06:ba:63:f6:4f:23:92:
dd:4b:7e:86:72:d9:9a:e4:fc:14:97:ab:e8:8a:ac:
91:8a:41:77:c4:e3:a3:6f:c6:d4:9d:27:9b:c9:e6:
0c:4c:da:9a:61:5f:9c:6f:6a:63:17:50:e7:8f:8b:
cb:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:30:B0:5B:DB:5C:17:EB:41:CB:95:70:53:88:AE:91:E6:06:3B:CC
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/ODCwW9tcF-tBy5VwU4iukeYGO8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.122.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:13:6e:07:7f:64:7e:0c:9b:cf:89:e2:ba:b5:ea:cd:87:ee:
58:1d:24:ad:6e:ef:42:2a:63:16:b0:f2:b0:eb:11:78:a5:4a:
bb:c9:d8:43:da:c2:04:a6:fe:23:5f:d5:45:67:f0:08:e1:5c:
7f:aa:5a:f1:01:d1:69:f2:70:ca:5f:46:5b:20:26:7f:42:88:
a5:2d:04:f0:ec:cc:0d:fd:66:71:38:93:9f:e5:b8:53:8c:92:
26:dc:a4:3d:6d:5d:21:bd:73:82:b9:46:3d:46:ae:32:a4:36:
9d:4d:69:2d:97:e1:ec:ec:76:b2:33:15:f7:d4:89:09:46:5f:
bd:d2:ac:ba:93:43:6c:82:ca:68:65:28:0c:10:ca:03:c4:32:
2f:a8:1d:63:d2:93:25:ad:92:2c:82:02:5e:11:e5:55:b7:00:
69:99:d4:d5:8b:c9:fe:27:0f:10:f4:13:ed:16:ac:e9:40:11:
dd:d9:98:ae:b5:55:24:a9:00:2d:63:9e:72:4f:22:ad:1b:3e:
67:dd:69:07:90:7a:b7:e9:c4:b3:c8:a3:ed:69:c3:5a:36:41:
e9:1d:47:9d:90:7e:70:23:34:28:07:6c:17:b2:9b:00:c5:31:
22:0e:03:85:10:97:47:86:b3:e0:46:74:cc:9a:97:23:61:77:
a6:a5:e1:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:27 2024 by rpki-client on console-fra.rpki-client.org