Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/2716ec-5657-4f56-8f43-e23103a88052/1/Vb8rsovkIdXHsK8LKrvdxlbKBy4.roa
File: Vb8rsovkIdXHsK8LKrvdxlbKBy4.roa (raw, json)
Hash identifier: t+0D1XH5RUt7Dxmce0Nvy87U4Gzimw9OmkCU6Z+tI7M=
Subject key identifier: 55:BF:2B:B2:8B:E4:21:D5:C7:B0:AF:0B:2A:BB:DD:C6:56:CA:07:2E
Certificate issuer: /CN=b872da0f9c6c5686a3db9ee124a99042b0a882d1
Certificate serial: 018570150D14E13174BEDE71263256F48294
Authority key identifier: B8:72:DA:0F:9C:6C:56:86:A3:DB:9E:E1:24:A9:90:42:B0:A8:82:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uHLaD5xsVoaj257hJKmQQrCogtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/2716ec-5657-4f56-8f43-e23103a88052/1/Vb8rsovkIdXHsK8LKrvdxlbKBy4.roa
Signing time: Mon 02 Jan 2023 01:25:05 +0000
ROA not before: Mon 02 Jan 2023 01:25:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41960
IP address blocks: 213.156.16.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:0d:14:e1:31:74:be:de:71:26:32:56:f4:82:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b872da0f9c6c5686a3db9ee124a99042b0a882d1
Validity
Not Before: Jan 2 01:25:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55bf2bb28be421d5c7b0af0b2abbddc656ca072e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:05:59:fa:63:c8:58:e6:45:ed:60:2d:11:40:
d7:8d:cc:df:4f:e2:35:c2:55:1b:4b:0b:76:20:77:
b5:5e:2f:6e:c4:d8:f5:6b:1f:42:e5:7a:e0:d5:35:
33:73:8e:49:42:30:2c:f1:76:fe:3c:90:46:06:2a:
11:52:d4:f9:bf:39:bd:8f:4a:17:07:94:9e:81:63:
a3:fc:da:93:73:9b:47:8b:88:29:e6:f1:d0:76:65:
72:a1:3d:42:9e:da:44:4d:8f:55:23:63:d5:b3:37:
c1:cb:99:92:8c:93:44:50:4f:76:d6:2d:73:1e:17:
8c:4f:f8:df:d6:53:75:69:ae:1a:ce:20:98:2c:8a:
aa:0e:56:92:db:c2:97:5a:86:ef:95:ba:0b:ad:ab:
fa:dc:ea:ab:37:84:86:89:a8:2c:62:54:15:a4:3e:
74:c8:cc:7f:fb:65:65:c9:b2:17:c7:22:64:59:0c:
14:71:b1:2a:7b:f0:7c:f2:33:d2:3d:48:24:a0:4e:
1c:fa:9b:b5:20:4a:c6:89:1d:f2:ce:19:6f:01:0a:
19:73:a5:06:e4:d5:a8:3e:aa:2d:02:72:61:73:69:
0d:89:d7:ab:1b:7b:bc:bd:a2:0b:82:8f:c0:6b:d5:
e1:d5:ac:87:20:76:86:d1:a4:f3:37:4e:e0:4a:89:
0c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:BF:2B:B2:8B:E4:21:D5:C7:B0:AF:0B:2A:BB:DD:C6:56:CA:07:2E
X509v3 Authority Key Identifier:
keyid:B8:72:DA:0F:9C:6C:56:86:A3:DB:9E:E1:24:A9:90:42:B0:A8:82:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uHLaD5xsVoaj257hJKmQQrCogtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2716ec-5657-4f56-8f43-e23103a88052/1/Vb8rsovkIdXHsK8LKrvdxlbKBy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2716ec-5657-4f56-8f43-e23103a88052/1/uHLaD5xsVoaj257hJKmQQrCogtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.156.16.0/20
Signature Algorithm: sha256WithRSAEncryption
26:86:b6:00:c4:5d:5c:6b:14:2b:21:48:49:bd:dd:c2:c2:65:
7a:e8:1a:57:ec:cb:f4:a0:41:11:31:c6:b8:bc:fa:7d:3a:56:
0b:11:57:f2:1f:9c:51:3f:9b:f6:29:39:1d:65:a7:52:65:d2:
30:a2:1f:e2:0b:3a:3a:97:8f:f9:a4:de:c0:68:47:2b:ca:64:
5f:09:be:a0:59:34:7b:d9:66:24:bd:89:a5:f0:e6:ef:85:57:
93:71:75:f4:0a:19:84:99:6a:32:db:5d:ed:07:0f:83:d6:b0:
6c:59:31:83:2e:86:37:0e:c4:59:93:5a:5f:1b:d8:a4:fd:34:
23:c7:de:33:2e:7f:95:97:ed:2f:df:b7:ea:a6:fd:30:eb:cb:
84:a8:53:b5:06:b7:59:01:06:07:3c:5b:8b:ec:51:f3:a1:29:
ee:72:77:76:47:ec:11:f1:5d:55:9a:36:41:e6:e3:a1:8b:6b:
98:0f:8d:ee:01:4a:93:cd:80:0d:c5:6d:8f:2c:46:18:e9:6a:
04:e2:38:6f:5e:d2:2d:0b:0b:c4:46:35:14:9e:f1:4e:db:05:
75:2a:ee:74:bb:80:e7:3a:8f:2e:84:ef:08:d8:21:7b:e2:9f:
aa:b5:09:2a:c7:a2:d8:6c:ef:99:97:02:0a:c3:ca:23:1a:ef:
a5:01:54:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:36 2024 by rpki-client on console-ams.rpki-client.org