Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/dcb6fb-0e86-4d34-adc3-d93fd49ae8ef/1/Vob4by_ZW5gFtrSoQ6pvbqvb8cU.roa
File: Vob4by_ZW5gFtrSoQ6pvbqvb8cU.roa (raw, json)
Hash identifier: 5yRnkCt8seewVftTVT8owY4okqz8oK7zqHMGAqep73M=
Subject key identifier: 56:86:F8:6F:2F:D9:5B:98:05:B6:B4:A8:43:AA:6F:6E:AB:DB:F1:C5
Certificate issuer: /CN=51f866f32b47c69d478ad95354e257e51a236a57
Certificate serial: 018570674D0AC1CFFDDA824E4CCDACFBD66C
Authority key identifier: 51:F8:66:F3:2B:47:C6:9D:47:8A:D9:53:54:E2:57:E5:1A:23:6A:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ufhm8ytHxp1HitlTVOJX5Rojalc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/dcb6fb-0e86-4d34-adc3-d93fd49ae8ef/1/Vob4by_ZW5gFtrSoQ6pvbqvb8cU.roa
Signing time: Mon 02 Jan 2023 02:54:56 +0000
ROA not before: Mon 02 Jan 2023 02:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29314
IP address blocks: 158.255.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:4d:0a:c1:cf:fd:da:82:4e:4c:cd:ac:fb:d6:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51f866f32b47c69d478ad95354e257e51a236a57
Validity
Not Before: Jan 2 02:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5686f86f2fd95b9805b6b4a843aa6f6eabdbf1c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:2a:e7:c5:2e:c4:a5:a8:01:13:dd:6b:a4:41:
de:33:dd:27:a0:97:76:f2:83:6a:6e:d0:1d:f7:89:
03:b9:9a:a9:89:d3:1a:00:d3:7c:7f:89:93:8b:85:
e7:28:15:76:45:c2:c5:a0:a4:21:0b:50:92:c5:06:
4d:d7:a7:f2:a8:c3:f3:65:53:d3:2d:39:c8:0c:88:
6c:34:6d:c8:9e:36:9f:fe:69:8d:2d:64:06:ad:1f:
42:20:76:27:e8:c6:bc:d9:ea:9f:6b:c9:b7:6f:5a:
87:31:f9:bb:11:bc:1b:1a:4a:6c:a9:10:1b:ee:93:
79:94:51:87:a2:40:d4:98:de:2e:68:f6:29:f3:97:
96:40:29:06:2d:b8:1f:b6:02:76:83:28:f1:cf:38:
11:b8:21:44:db:0e:e7:71:ab:60:99:d5:8b:5c:a8:
38:be:a9:af:18:b3:f9:bf:42:77:85:31:da:1b:7b:
69:27:9d:e2:10:e8:08:91:50:18:22:cf:e7:ab:85:
61:f6:e6:e5:61:54:82:8e:01:3e:a2:44:e6:a0:49:
17:aa:3c:dc:48:17:cc:77:d3:30:82:fe:d1:36:db:
c6:41:ab:e7:07:f8:21:4d:0a:a9:94:36:17:eb:36:
9e:20:cf:e7:7c:b6:04:24:f3:1f:51:83:5b:80:c0:
cb:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:86:F8:6F:2F:D9:5B:98:05:B6:B4:A8:43:AA:6F:6E:AB:DB:F1:C5
X509v3 Authority Key Identifier:
keyid:51:F8:66:F3:2B:47:C6:9D:47:8A:D9:53:54:E2:57:E5:1A:23:6A:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ufhm8ytHxp1HitlTVOJX5Rojalc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/dcb6fb-0e86-4d34-adc3-d93fd49ae8ef/1/Vob4by_ZW5gFtrSoQ6pvbqvb8cU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/dcb6fb-0e86-4d34-adc3-d93fd49ae8ef/1/Ufhm8ytHxp1HitlTVOJX5Rojalc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.255.95.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:7b:70:48:61:72:76:7c:15:b6:81:ac:c6:77:43:ca:78:79:
71:9c:0d:49:6a:71:c9:bb:f7:bf:9f:a1:54:c6:40:a3:58:55:
36:f2:a3:17:f9:24:88:50:f3:a3:30:da:8e:b9:33:bb:ad:68:
73:58:11:ed:b9:39:f4:0a:f6:fe:9c:77:91:fb:57:ee:2a:3d:
92:f6:9b:28:c9:3d:fe:08:5f:52:e7:47:40:3e:6b:20:72:0c:
b6:be:ec:ab:39:03:09:5f:2e:31:c5:a4:9f:6b:54:0a:2e:ca:
63:29:6a:5e:74:da:7c:ac:7d:3a:ca:d4:ae:72:92:3b:e0:4f:
2f:55:94:3d:73:b3:0d:23:10:45:e6:fc:96:5a:07:ae:34:d5:
4f:08:c0:83:16:6e:8c:5d:ea:1a:2b:91:4f:78:f9:6a:61:48:
22:e8:03:24:92:ab:ea:61:6a:de:ee:ee:cf:a0:bf:c9:86:4b:
6a:5e:64:a8:2e:77:9d:64:37:99:f9:84:4a:9e:20:97:fc:2e:
16:d3:11:fa:34:75:4b:8e:08:07:bc:28:26:55:10:6e:d5:5b:
5c:ac:1e:9d:f5:a9:c3:34:e7:df:48:b1:b4:3d:d1:4b:5a:ed:
47:3e:df:f4:00:16:4a:5e:f5:f9:26:16:1c:82:14:50:80:32:
d2:2d:58:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:26 2024 by rpki-client on console-fra.rpki-client.org