Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/O5AO9eDtp1PVWvkUqjswlvcFRtc.roa
File: O5AO9eDtp1PVWvkUqjswlvcFRtc.roa (raw, json)
Hash identifier: WsGjYgID0dRYElrqWVWMoTo/4iVRbYLCh4ojkz62T4g=
Subject key identifier: 3B:90:0E:F5:E0:ED:A7:53:D5:5A:F9:14:AA:3B:30:96:F7:05:46:D7
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018611E6E4014A2AEA34AAF8EA0A72D2CF0A
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/O5AO9eDtp1PVWvkUqjswlvcFRtc.roa
Signing time: Thu 02 Feb 2023 11:33:09 +0000
ROA not before: Thu 02 Feb 2023 11:33:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61302
IP address blocks: 5.178.2.0/24 maxlen: 24
5.178.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:11:e6:e4:01:4a:2a:ea:34:aa:f8:ea:0a:72:d2:cf:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Feb 2 11:33:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b900ef5e0eda753d55af914aa3b3096f70546d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:a0:95:94:b3:01:b2:25:ee:4c:1e:29:be:34:
bd:dc:69:ea:c9:41:4f:f7:89:dc:95:e8:f8:69:82:
43:34:0d:7a:d8:da:b4:2e:5d:df:53:6d:6f:95:4e:
b2:af:1a:f2:6a:7f:d8:25:05:4c:73:0d:b9:ed:df:
87:0e:51:73:c9:a3:a6:ee:45:d0:e6:dc:12:bc:43:
89:22:9d:0c:d6:b8:35:c1:ac:ab:11:73:35:28:64:
bc:4f:f1:5e:02:1a:65:97:97:17:cd:fb:dc:97:81:
6e:c3:1c:e5:37:60:20:54:29:53:4f:8f:41:43:cd:
c7:8d:5e:3d:ba:4e:71:a4:6d:3d:2f:d7:8c:68:70:
8c:60:46:20:7c:e7:fc:c9:5e:6e:7a:49:4c:ac:0f:
a4:db:58:6f:61:eb:f9:58:f5:94:55:06:79:49:4b:
15:21:f1:06:15:bf:16:6b:ec:59:17:8e:1f:03:29:
85:ed:c0:7b:5b:8e:93:ae:ba:80:8a:46:43:92:b6:
46:4e:87:0b:ec:8b:1f:cb:2a:e4:50:d0:7e:fe:1f:
3f:26:f4:2e:34:99:ce:c3:1f:19:41:0d:83:df:49:
97:8b:aa:dd:b1:a2:85:e6:f7:9b:94:8d:b1:c9:d4:
c8:25:d4:4c:f6:74:1f:10:dd:54:43:a4:11:f9:aa:
14:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:90:0E:F5:E0:ED:A7:53:D5:5A:F9:14:AA:3B:30:96:F7:05:46:D7
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/O5AO9eDtp1PVWvkUqjswlvcFRtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.2.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:a9:48:c7:eb:82:db:b2:4a:60:e5:96:97:cf:84:88:23:f0:
1b:5c:37:eb:5d:c4:f3:de:85:94:0b:ee:75:05:8d:10:dc:ff:
f0:84:21:8b:03:bd:ba:b5:89:a8:c9:09:e0:64:2e:af:74:56:
b9:a7:b1:e8:8e:18:c8:cc:a4:25:77:dc:83:67:29:ff:4a:0e:
ce:a1:c0:05:91:99:0a:50:6f:37:02:a8:b0:28:0b:e1:1e:ab:
36:0a:1e:5c:37:8f:40:88:1b:57:c6:35:16:8a:70:18:06:98:
2e:fd:52:6e:fa:81:13:33:72:e2:e3:57:c4:9e:1b:34:97:71:
35:89:27:81:81:82:20:c7:9d:e1:6e:5c:5a:db:22:06:4e:56:
25:fb:16:1b:65:9b:83:93:f9:81:6d:93:9a:ff:7c:b6:77:96:
00:1a:72:3a:1d:b7:53:a9:5a:4a:de:53:d0:63:7d:ed:46:35:
c0:5e:de:31:53:b9:dc:8a:13:34:28:5a:f6:37:b1:a2:c2:f7:
02:51:8b:37:a0:74:0c:a0:16:6b:88:5d:14:c2:af:ec:15:95:
db:23:06:7a:f0:24:d2:95:b5:dc:59:8b:bf:23:80:04:de:45:
3f:0a:b5:2b:a6:1d:76:4d:8a:81:fe:87:1f:d9:48:b7:3f:09:
a8:b8:dd:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:00 2023 by rpki-client on console-fra.rpki-client.org