Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/Vbo7tPnWtZFxfGb7DK0qiPjMyLU.roa
File: Vbo7tPnWtZFxfGb7DK0qiPjMyLU.roa (raw, json)
Hash identifier: CQgM84IHAeGylEb61s+kN1m6gQFOr0SjKSyIFdgw30U=
Subject key identifier: 55:BA:3B:B4:F9:D6:B5:91:71:7C:66:FB:0C:AD:2A:88:F8:CC:C8:B5
Certificate issuer: /CN=d513872512f1f2d037b401c2603ca8994e721e55
Certificate serial: 01880B39FBEB21BEFEE81A0EB6DE32D6CD75
Authority key identifier: D5:13:87:25:12:F1:F2:D0:37:B4:01:C2:60:3C:A8:99:4E:72:1E:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ROHJRLx8tA3tAHCYDyomU5yHlU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/Vbo7tPnWtZFxfGb7DK0qiPjMyLU.roa
Signing time: Thu 11 May 2023 14:32:09 +0000
ROA not before: Thu 11 May 2023 14:32:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31034
IP address blocks: 185.8.196.0/22 maxlen: 24
94.198.101.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 May 2023 16:42:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0b:39:fb:eb:21:be:fe:e8:1a:0e:b6:de:32:d6:cd:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d513872512f1f2d037b401c2603ca8994e721e55
Validity
Not Before: May 11 14:32:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55ba3bb4f9d6b591717c66fb0cad2a88f8ccc8b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6a:88:8d:c1:67:7b:9a:b1:98:85:40:49:de:
b1:04:d2:c1:b5:f4:ea:56:6d:8e:61:30:b4:f7:ac:
cc:12:67:75:81:33:73:c1:a9:7d:39:2f:3a:94:44:
df:9a:6e:a7:25:8c:7d:e3:cc:72:de:96:35:93:06:
72:5f:a4:1f:15:10:fb:ce:c2:73:fa:47:69:32:ba:
99:a5:02:41:7b:a9:53:eb:9d:0d:2f:c7:da:4f:d0:
f2:38:3e:89:df:52:89:63:fe:77:1d:c0:6d:9b:c4:
de:02:ba:92:c2:3b:35:75:3c:35:b0:ad:2e:4f:f6:
8c:e3:26:2d:0c:56:3a:44:38:08:75:da:0d:f1:34:
4c:80:52:80:e7:cd:0f:47:a2:32:c0:e8:2a:94:2b:
79:56:fc:19:d3:dd:44:5d:4a:a9:44:76:10:7c:43:
f0:9d:da:ad:e0:f1:bb:3b:28:5a:ef:80:27:95:d9:
52:b1:86:4a:f1:f6:09:bc:35:e8:2f:76:de:40:7d:
a7:00:b7:71:e8:29:2e:67:69:4d:04:f9:62:3e:77:
97:6f:c1:22:43:c3:e0:fc:f3:2a:b7:f6:e8:d6:46:
94:63:75:24:cc:f2:ec:d0:ef:1a:e2:c8:24:fd:ec:
28:e9:3c:d8:16:ad:23:27:96:3e:05:e2:d4:99:d2:
d0:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:BA:3B:B4:F9:D6:B5:91:71:7C:66:FB:0C:AD:2A:88:F8:CC:C8:B5
X509v3 Authority Key Identifier:
keyid:D5:13:87:25:12:F1:F2:D0:37:B4:01:C2:60:3C:A8:99:4E:72:1E:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ROHJRLx8tA3tAHCYDyomU5yHlU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/Vbo7tPnWtZFxfGb7DK0qiPjMyLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/1ROHJRLx8tA3tAHCYDyomU5yHlU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.198.101.0/24
185.8.196.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:60:43:48:c6:e3:46:d0:62:f1:77:53:da:c9:4c:fe:d8:02:
f6:50:28:67:85:43:02:e6:76:ed:d1:33:5c:6e:05:d3:55:df:
7c:20:0f:fc:37:ae:af:b5:0c:6d:a7:6f:d5:36:7a:d5:b3:69:
6b:fe:e9:c9:f7:e2:f1:de:1c:42:97:76:bd:e6:05:de:c8:51:
42:d7:c5:52:33:e8:7e:a1:3e:a0:66:51:d6:88:b2:1a:99:e9:
a2:ef:32:5e:9a:63:1a:ce:42:1a:a5:75:05:2a:34:ac:bc:d8:
b3:3d:d5:59:77:62:57:33:3a:85:0e:b0:41:93:f9:34:db:58:
6c:2c:1c:9a:a6:64:b6:e4:9e:66:8c:4d:76:79:9b:60:f5:4a:
ab:e4:45:88:77:ee:e2:5b:76:e8:6f:9c:2a:a0:59:f5:20:4c:
60:51:a6:0d:c0:51:81:8a:8a:96:6e:a7:bd:4a:27:89:b5:56:
17:5e:b2:df:c3:5d:c2:dc:87:a5:0a:7e:2f:7d:49:d4:ed:09:
4f:63:42:90:dc:2c:67:91:14:1f:df:cf:a1:ca:35:f4:71:75:
b6:d0:c4:8e:ce:00:e3:bd:c0:3e:f7:be:7a:10:a2:16:a9:75:
b8:14:00:2d:f6:c5:7e:63:85:f3:34:94:0f:e2:22:4e:e6:0d:
a1:98:42:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:56 2024 by rpki-client on console-fra.rpki-client.org