Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/VUZBEkIlDlggvh_5C7QqXWozQaQ.roa
File: VUZBEkIlDlggvh_5C7QqXWozQaQ.roa (raw, json)
Hash identifier: yRs0RMEgVnUSOz2hgaOXfYMihodUyzESCYZYFWe9LRw=
Subject key identifier: 55:46:41:12:42:25:0E:58:20:BE:1F:F9:0B:B4:2A:5D:6A:33:41:A4
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018D56A08FB978D25FC7F3B237BF792E813A
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/VUZBEkIlDlggvh_5C7QqXWozQaQ.roa
Signing time: Mon 29 Jan 2024 19:09:39 +0000
ROA not before: Mon 29 Jan 2024 19:09:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400536
IP address blocks: 5.178.103.0/24 maxlen: 24
185.5.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 14:55:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:56:a0:8f:b9:78:d2:5f:c7:f3:b2:37:bf:79:2e:81:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jan 29 19:09:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5546411242250e5820be1ff90bb42a5d6a3341a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:9a:35:4b:8e:dd:4d:ac:68:63:67:6a:f0:5b:
23:31:8b:12:cc:1e:ca:60:b0:d2:99:67:25:64:26:
44:fd:a5:bf:28:cf:64:ee:67:16:8b:79:d6:27:17:
d5:9c:db:c6:0e:e7:bd:46:75:8e:fa:a7:30:4b:26:
58:61:a9:d0:d0:cd:11:16:50:13:14:59:5f:11:bd:
0e:42:c6:60:bb:68:bc:40:e6:86:67:17:10:2f:20:
47:64:12:af:62:68:36:35:24:c8:14:71:49:23:a0:
ad:60:18:b2:cb:ee:da:35:5c:15:bd:90:b7:a5:51:
d0:1b:ce:44:ed:ee:c6:26:29:8a:43:06:87:4c:7d:
6a:27:21:d8:06:53:ef:8c:ff:e9:8f:c7:91:0a:55:
ca:79:91:b1:e0:18:9e:38:bf:7c:84:a3:4b:49:44:
df:29:00:1a:a1:ed:df:aa:c7:98:6a:42:03:a6:db:
5f:b9:ae:3b:2b:32:92:57:d8:9d:a3:5c:38:cb:0a:
cf:40:91:b0:82:03:07:fa:fa:d4:d6:cb:c9:3c:95:
24:ab:d2:16:e2:02:8c:ac:6a:aa:d0:3b:13:e9:ba:
dc:9d:0b:44:e7:a5:51:94:f4:89:f9:09:cf:cb:44:
10:a8:d1:ce:55:44:07:ea:25:df:cf:fd:4d:f0:bc:
8b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:46:41:12:42:25:0E:58:20:BE:1F:F9:0B:B4:2A:5D:6A:33:41:A4
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/VUZBEkIlDlggvh_5C7QqXWozQaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.103.0/24
185.5.37.0/24
Signature Algorithm: sha256WithRSAEncryption
e6:9c:0d:1f:3b:cb:a8:fa:0b:2e:40:e0:98:99:d6:76:81:b3:
51:03:a8:ac:52:79:73:5f:76:2a:e3:36:75:78:4b:f8:dc:b1:
9a:f1:2a:b7:69:b1:6b:4f:9a:32:d7:6c:bd:4c:62:23:ae:39:
29:8a:44:c7:1d:f4:8c:34:b3:8e:70:91:a9:30:40:c3:a0:65:
03:92:6c:66:98:5b:ba:34:cf:04:a9:e0:8f:61:66:f4:58:2a:
5e:a1:1d:a6:2f:98:b1:82:f3:35:e3:4b:53:2d:f1:54:ae:8b:
d8:2b:0e:29:64:70:71:6e:b9:6c:ca:ab:a6:80:02:d6:07:78:
42:69:72:1b:58:86:02:e4:a0:bc:14:0a:90:43:22:26:7e:04:
22:68:13:24:d1:28:c5:6b:b8:65:9f:66:58:89:f0:b8:69:ba:
96:60:f3:23:e1:71:87:2b:62:a0:12:57:a3:f2:59:88:78:6a:
f6:f3:1e:98:a8:dd:41:3d:7b:b1:71:eb:5c:90:bb:30:0e:1f:
23:cd:6a:a6:a8:1f:7e:36:43:06:cc:a0:3c:2e:7b:43:9c:c9:
2e:8c:b3:de:4b:69:be:48:8c:e6:c2:9a:71:f4:30:a6:b2:8b:
d8:54:ec:a9:45:0c:75:09:e0:f7:1b:93:15:10:a8:e1:fb:63:
ae:f7:b4:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 7 19:38:39 2024 by rpki-client on console-ams.rpki-client.org