Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/OTmvbWWNHr71JJT-9jXRna5NpoM.roa
File: OTmvbWWNHr71JJT-9jXRna5NpoM.roa (raw, json)
Hash identifier: eK51tdmr7e7ZQHJyuz6jxpjWRGoD1bXPFy2eIpRNx3s=
Subject key identifier: 39:39:AF:6D:65:8D:1E:BE:F5:24:94:FE:F6:35:D1:9D:AE:4D:A6:83
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018571E7A52CCB645C9160E058AD27EE2853
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/OTmvbWWNHr71JJT-9jXRna5NpoM.roa
Signing time: Mon 02 Jan 2023 09:54:44 +0000
ROA not before: Mon 02 Jan 2023 09:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57747
IP address blocks: 5.180.120.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:e7:a5:2c:cb:64:5c:91:60:e0:58:ad:27:ee:28:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jan 2 09:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3939af6d658d1ebef52494fef635d19dae4da683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:0d:96:e5:87:3d:73:b5:7e:7e:ca:00:94:9c:
b5:fc:86:8c:78:64:bb:3e:c0:6e:59:90:77:7d:35:
08:50:55:41:34:69:35:c8:83:43:78:00:f9:6d:c3:
87:13:6a:1f:4a:ff:4d:e0:1e:9a:e3:30:8d:e1:be:
30:d8:4e:6f:97:58:e9:30:eb:4d:8a:9c:bf:1e:ee:
cd:39:75:62:d8:19:c9:df:f8:64:f0:c3:3b:30:41:
60:0f:03:45:b2:39:95:55:0f:1c:cd:77:f8:21:aa:
e8:bf:9d:0d:55:c4:62:64:3f:ba:6d:07:60:36:8d:
0e:4b:c0:cf:3e:7b:0e:fb:9b:98:e2:ab:b6:ed:7a:
f8:3b:a3:50:65:85:d9:28:73:a6:9b:03:dd:1f:39:
1e:19:e4:68:1f:08:a5:6b:15:32:aa:73:89:56:8a:
dd:b6:56:ee:2c:4f:44:31:d8:4c:53:af:32:9c:60:
7d:fd:b7:9f:36:b5:72:ee:1a:0f:c7:92:7d:f6:c8:
d0:9f:bf:ed:ab:3e:1d:1e:31:09:11:0c:5d:0b:29:
62:68:6a:d8:30:89:34:6c:90:aa:13:62:b8:33:8a:
d7:03:15:9e:50:e5:81:5e:01:0b:00:a0:eb:66:66:
64:4c:c3:23:66:24:5b:6a:b2:70:63:d0:ef:f4:09:
96:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:39:AF:6D:65:8D:1E:BE:F5:24:94:FE:F6:35:D1:9D:AE:4D:A6:83
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/OTmvbWWNHr71JJT-9jXRna5NpoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.120.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:77:81:f8:d9:e3:f9:1f:8d:73:8c:a0:9a:86:69:d2:da:77:
ce:93:32:7b:2f:69:6c:9e:7e:a2:43:81:e5:4d:4e:85:d0:ee:
d8:62:be:47:da:f4:46:1b:d1:a6:e3:78:90:e0:1e:4f:58:1c:
de:f8:6f:fc:e2:ef:d5:82:ac:c2:09:ae:5a:05:63:e6:c8:2b:
35:f5:fd:d3:29:b6:8e:21:33:5e:5a:ec:91:c7:84:65:b2:60:
47:ff:2e:ef:96:23:f2:75:66:21:24:07:22:e1:8d:b4:a9:e1:
38:70:2d:f6:b4:93:8a:ad:fc:15:1a:20:61:70:23:37:21:40:
32:0e:b0:fb:d7:b5:d4:0e:7f:5e:db:64:35:52:27:45:90:de:
5f:d5:c7:d7:78:17:ad:a0:bb:6d:d7:08:12:cb:2c:a8:a4:0f:
79:64:f8:ec:48:df:7d:de:91:e3:bc:7d:6c:13:80:49:d6:f2:
23:c6:11:1a:76:df:64:a6:2e:b4:7f:e5:2b:82:2a:36:3f:fd:
14:8c:d8:61:41:af:5d:22:34:3e:e4:a0:7f:4f:87:a1:63:26:
a0:3f:4c:db:a3:61:bf:11:4e:8e:c9:1d:2b:aa:c1:41:db:47:
87:ce:70:ba:f6:2b:96:5f:d7:b1:a8:13:cb:a1:e7:07:c8:2a:
03:fb:64:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:10:20 2024 by rpki-client on console-fra.rpki-client.org