Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/94c70a-fe1d-4420-9985-20f333c253ac/1/Vm_DlZGhWDUXrDqeLGo7ZBRfwPg.roa
File: Vm_DlZGhWDUXrDqeLGo7ZBRfwPg.roa (raw, json)
Hash identifier: DL8adECkDVcF+z6os3mJz/46k7UDFPRd+I0EapdLVYQ=
Subject key identifier: 56:6F:C3:95:91:A1:58:35:17:AC:3A:9E:2C:6A:3B:64:14:5F:C0:F8
Certificate issuer: /CN=b14881fa3e75a3851cf70419135abdd529d2f682
Certificate serial: 01856DD40B9B82ECB5C1AA725D38632E86E6
Authority key identifier: B1:48:81:FA:3E:75:A3:85:1C:F7:04:19:13:5A:BD:D5:29:D2:F6:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUiB-j51o4Uc9wQZE1q91SnS9oI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/94c70a-fe1d-4420-9985-20f333c253ac/1/Vm_DlZGhWDUXrDqeLGo7ZBRfwPg.roa
Signing time: Sun 01 Jan 2023 14:54:51 +0000
ROA not before: Sun 01 Jan 2023 14:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50446
IP address blocks: 91.216.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:0b:9b:82:ec:b5:c1:aa:72:5d:38:63:2e:86:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14881fa3e75a3851cf70419135abdd529d2f682
Validity
Not Before: Jan 1 14:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=566fc39591a1583517ac3a9e2c6a3b64145fc0f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d3:f2:db:1c:a1:b9:a3:52:47:60:ae:f0:27:
ff:62:4c:91:da:16:62:17:39:cc:d1:bc:20:1e:79:
11:2e:a6:d6:f4:24:f5:69:48:89:8b:e6:69:18:5f:
5b:e2:5f:7b:8f:e3:52:d5:ad:33:eb:36:06:cd:ee:
dd:46:d6:33:fa:19:fd:3e:66:9b:a5:c7:ae:10:c5:
d0:60:09:ab:5d:20:12:cc:eb:9a:9a:c0:70:a8:8c:
58:03:9a:23:a5:0b:19:41:c0:06:88:21:19:af:bd:
6b:8e:27:ec:f4:e5:77:36:24:74:14:3a:13:b5:de:
10:9b:01:14:cd:d2:b7:ed:e8:ab:29:76:d1:ea:74:
ad:88:21:e5:31:a6:35:d9:4a:bd:9e:a4:70:59:c7:
2f:67:97:e4:d0:0b:55:3c:3b:fe:8d:13:93:27:ce:
3c:a9:6d:b4:15:d7:02:93:01:86:23:34:23:37:d7:
b8:f6:8a:d4:3f:fc:fc:69:98:f2:d0:2c:92:c1:43:
8f:d6:89:e5:89:54:2b:8a:a6:3d:93:7d:a9:8a:b3:
98:21:b6:08:c3:5c:cc:1e:81:1c:de:c1:9e:e1:69:
00:c2:25:b6:f8:f6:d4:31:f8:55:b2:e9:7a:d6:6e:
53:92:b9:52:76:77:9f:f5:27:39:6c:a8:6e:54:03:
a0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:6F:C3:95:91:A1:58:35:17:AC:3A:9E:2C:6A:3B:64:14:5F:C0:F8
X509v3 Authority Key Identifier:
keyid:B1:48:81:FA:3E:75:A3:85:1C:F7:04:19:13:5A:BD:D5:29:D2:F6:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUiB-j51o4Uc9wQZE1q91SnS9oI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/94c70a-fe1d-4420-9985-20f333c253ac/1/Vm_DlZGhWDUXrDqeLGo7ZBRfwPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/94c70a-fe1d-4420-9985-20f333c253ac/1/sUiB-j51o4Uc9wQZE1q91SnS9oI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.234.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:8a:c0:05:0a:f4:0c:6a:11:2b:50:a2:1a:df:6e:03:95:06:
5c:61:0b:9a:9b:cf:46:5b:94:9b:16:53:42:7e:65:33:98:19:
c8:af:60:3f:9e:43:36:ed:6a:a5:f3:35:3c:5a:be:73:a7:ed:
5d:60:f6:d7:43:65:c6:b2:1b:f2:50:66:ab:5f:ae:32:c9:24:
77:5f:99:d2:52:5b:c2:c0:d9:19:97:81:06:f0:2d:2b:e4:50:
c2:23:7e:5c:a7:cc:41:cc:50:ef:46:a4:c1:68:fc:3b:36:70:
65:77:c1:cf:b4:8d:cc:99:14:73:1d:00:c4:10:cc:f7:0a:ac:
53:46:46:b5:a6:f9:a9:26:c6:fd:63:39:b5:e1:1a:f3:e3:1d:
66:d7:56:5c:e2:39:5d:d0:09:58:0f:0b:99:1d:74:af:9d:ea:
fb:63:e4:ef:4b:40:1d:a6:62:28:a5:6d:b6:e6:d5:38:82:22:
50:01:4c:91:df:4c:87:1f:86:3b:10:46:b7:48:db:f8:45:31:
25:d9:39:9b:eb:b5:9e:0b:55:94:04:f7:00:df:d3:1e:53:92:
7c:b4:aa:7f:81:75:f1:a6:92:81:5f:20:df:9e:2d:72:c4:42:
68:fb:8e:00:56:74:6a:a9:3b:ca:e3:3d:d1:6c:a5:e6:4a:65:
9a:f7:2b:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:42 2024 by rpki-client on console-fra.rpki-client.org