Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/oghrvloF2YzZ205CzV8wugCxB-g.roa
File: oghrvloF2YzZ205CzV8wugCxB-g.roa (raw, json)
Hash identifier: 9TbkxPJ9sMSGvRpVq4Q+0uw2naZW4gFVSFEGy469Gq4=
Subject key identifier: A2:08:6B:BE:5A:05:D9:8C:D9:DB:4E:42:CD:5F:30:BA:00:B1:07:E8
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 0188F38C46C346FE33653BBE6D13ADFAB0ED
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/oghrvloF2YzZ205CzV8wugCxB-g.roa
Signing time: Sun 25 Jun 2023 17:13:56 +0000
ROA not before: Sun 25 Jun 2023 17:13:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 5.178.98.0/24 maxlen: 24
5.178.99.0/24 maxlen: 24
5.178.109.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f3:8c:46:c3:46:fe:33:65:3b:be:6d:13:ad:fa:b0:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jun 25 17:13:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2086bbe5a05d98cd9db4e42cd5f30ba00b107e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:9a:8c:b2:54:0c:7d:47:1a:50:aa:20:74:a0:
70:df:57:b5:b6:4e:32:6f:41:3b:84:ff:bf:fe:d6:
5d:a1:49:88:e4:a9:02:c6:a7:13:5e:4a:cc:4f:a6:
38:df:c3:80:f5:84:c8:1c:e2:97:27:4b:4f:9d:df:
bd:db:bb:58:63:3d:ba:56:67:e3:3f:93:70:3f:c6:
52:97:1e:05:56:65:5d:bf:ed:7e:d3:96:35:50:9f:
05:2e:9f:58:62:c4:89:be:66:2b:bb:e4:7d:5d:1a:
7b:11:a2:62:77:42:13:84:41:ac:62:f1:0a:90:3d:
11:a8:4d:95:b0:69:01:3b:69:ff:fd:82:ef:73:c7:
4f:ef:5e:6c:82:7d:7e:68:73:b2:e6:44:dd:8f:76:
cf:05:d2:41:a9:c0:6d:62:26:53:99:98:54:49:29:
ca:92:65:61:7f:34:64:8f:72:82:57:10:39:30:a0:
1e:59:4e:a7:fc:b7:85:5b:0d:c6:f0:ec:1f:2f:28:
20:5d:c2:7b:e3:c7:d3:7b:18:f9:7a:61:9f:f5:93:
be:70:41:09:04:7e:0e:4b:26:d8:e6:26:05:63:3e:
f0:ec:5f:a1:4b:1c:ea:3c:8c:fc:cc:05:93:58:02:
b2:16:9c:82:82:d6:cc:53:f6:27:f2:ee:92:c5:6a:
bb:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:08:6B:BE:5A:05:D9:8C:D9:DB:4E:42:CD:5F:30:BA:00:B1:07:E8
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/oghrvloF2YzZ205CzV8wugCxB-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.98.0/23
5.178.109.0/24
Signature Algorithm: sha256WithRSAEncryption
e1:91:81:22:bf:f9:1e:41:91:6b:6d:4a:ad:67:85:5e:80:95:
17:ad:a4:b1:9a:4a:a5:99:1d:92:66:d5:db:a4:6b:63:8c:c1:
9a:54:eb:00:23:4a:10:dd:32:82:36:79:46:f4:a1:75:5f:58:
02:81:7b:99:ae:87:06:75:97:d2:61:d2:5b:ba:7a:ea:f9:b7:
1e:04:83:6d:89:7a:8e:c3:73:2e:dc:6d:a8:9e:c9:38:48:5d:
f1:5c:c9:06:36:e7:c8:01:d6:23:b4:32:21:ab:21:e8:1f:24:
f8:4f:aa:b6:6e:1f:f6:8b:f9:73:de:b4:b2:cd:32:f9:47:a4:
a0:30:17:a7:a1:d5:76:4d:11:28:5f:31:c2:26:d6:af:80:99:
e0:7c:f8:96:4a:2e:48:0d:09:f9:6c:fd:b2:2a:1f:fe:c9:fe:
3b:fb:2a:da:af:fc:2b:36:21:02:fd:98:a1:55:b6:f0:ef:d0:
a1:bf:cb:88:f5:d7:50:ab:5b:c9:0f:09:25:57:3e:32:5d:ef:
bb:2e:a7:8b:bb:ff:19:3f:07:78:c8:4f:08:92:6c:8a:1b:2a:
dd:09:c9:4c:08:e4:0c:4c:96:4f:62:20:3f:6d:b2:5a:70:69:
05:e1:50:37:11:39:5a:06:18:4a:d5:19:25:a4:fa:3c:dd:b2:
73:ef:d4:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:27 2023 by rpki-client on console.sobornost.net