Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/Ziej5zufp-TZW64SyG_J0bGnSvs.roa
File: Ziej5zufp-TZW64SyG_J0bGnSvs.roa (raw, json)
Hash identifier: DK7fdxe4Q/nk+wYHeHuu++DnFFs1eJPUTz2V018qbSg=
Subject key identifier: 66:27:A3:E7:3B:9F:A7:E4:D9:5B:AE:12:C8:6F:C9:D1:B1:A7:4A:FB
Certificate issuer: /CN=aa54c4763ea018c3dc70203d04efe71fd4b1b066
Certificate serial: 018BDC79587FF992B23F477165D4A49C9BD9
Authority key identifier: AA:54:C4:76:3E:A0:18:C3:DC:70:20:3D:04:EF:E7:1F:D4:B1:B0:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/Ziej5zufp-TZW64SyG_J0bGnSvs.roa
Signing time: Fri 17 Nov 2023 08:50:21 +0000
ROA not before: Fri 17 Nov 2023 08:50:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42010
IP address blocks: 5.175.56.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:dc:79:58:7f:f9:92:b2:3f:47:71:65:d4:a4:9c:9b:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa54c4763ea018c3dc70203d04efe71fd4b1b066
Validity
Not Before: Nov 17 08:50:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6627a3e73b9fa7e4d95bae12c86fc9d1b1a74afb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ef:95:14:65:50:8b:6c:0b:15:3b:30:f9:31:
b1:c0:cd:9b:1c:27:d5:ed:d1:9b:56:7b:c0:5c:9c:
4f:29:8b:e9:eb:d6:28:9d:23:e8:65:eb:7e:e1:72:
59:82:15:68:15:9f:a1:97:ae:d3:87:cf:e4:89:25:
3c:8f:74:40:fa:7a:08:ea:be:04:25:d0:62:1d:21:
1d:c2:ab:95:de:79:59:c1:ba:44:af:46:81:a9:94:
d1:44:f7:f2:24:a7:ec:d5:5f:6d:8e:cb:3d:06:b0:
37:32:57:df:8d:a5:2f:c8:f0:04:0b:dc:89:2b:b4:
77:82:96:cf:96:33:a1:ac:8d:f0:b6:36:77:9f:ea:
95:12:79:c1:e2:25:83:dd:e8:02:70:09:b0:dc:b2:
4e:d1:c7:16:15:c4:79:05:07:7a:b9:f8:c0:be:56:
44:ea:1d:69:dc:19:21:0f:4b:27:87:cd:83:9f:01:
0d:78:ee:bd:93:52:4b:a2:fb:48:40:77:6b:0b:9e:
6a:6e:76:44:5d:5f:5d:55:67:80:2f:ab:43:14:7f:
24:c9:f9:ab:67:fa:e3:91:fc:94:ad:8d:bb:e1:26:
ba:f5:2b:46:eb:0c:6b:68:5d:c3:64:5a:ce:94:0f:
0a:c3:d8:19:08:c3:69:2c:b6:8d:da:bd:21:31:db:
88:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:27:A3:E7:3B:9F:A7:E4:D9:5B:AE:12:C8:6F:C9:D1:B1:A7:4A:FB
X509v3 Authority Key Identifier:
keyid:AA:54:C4:76:3E:A0:18:C3:DC:70:20:3D:04:EF:E7:1F:D4:B1:B0:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/Ziej5zufp-TZW64SyG_J0bGnSvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.56.0/21
Signature Algorithm: sha256WithRSAEncryption
c8:b6:be:60:fd:96:8d:f9:e8:6a:64:28:eb:0b:ce:a7:96:95:
f2:38:a5:bd:aa:28:a3:62:b9:80:0e:71:58:63:bf:eb:26:f8:
94:2e:5e:32:94:4e:36:60:8d:f4:b9:e8:68:88:8d:99:9d:67:
7d:2d:5d:35:fb:b7:c1:20:65:2f:56:15:d1:2a:4b:72:b4:17:
a8:16:fc:ac:82:5f:5d:8b:9c:89:5e:84:2a:3c:8d:2c:98:e8:
fd:70:36:03:79:aa:ad:ae:7c:6c:f1:5c:ba:97:52:f9:95:2b:
de:b4:f9:77:ec:c5:52:ad:e9:3c:7b:59:b3:f5:ea:ec:d7:47:
33:e4:64:18:b2:db:8b:19:96:40:66:15:d6:fc:a0:07:24:67:
e7:dc:c5:a0:a0:b7:cd:c0:9d:65:e4:99:23:22:58:8e:4b:27:
e0:29:ca:76:29:13:c4:14:c6:b2:02:37:27:f7:36:58:0f:38:
15:aa:e5:e0:b6:e5:74:bc:f9:5c:28:87:5c:a9:cf:65:67:9a:
98:b8:2e:b6:18:74:85:14:14:b6:1a:74:79:23:71:01:13:24:
06:18:7d:e4:28:18:78:58:5d:f0:64:70:e9:fc:41:51:b0:37:
cb:eb:d1:21:4a:89:30:c0:ce:1a:1d:92:c0:bf:30:73:bf:26:
59:e4:bd:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:16 2024 by rpki-client on console-ams.rpki-client.org