Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/vcM5eLwYidSkLYVW3Rd6rHJbDXY.roa
File: vcM5eLwYidSkLYVW3Rd6rHJbDXY.roa (raw, json)
Hash identifier: 9qkKu+to0fFcqgEPQXYc6oDUyrhJyLgyrH+xRdVkRgk=
Subject key identifier: BD:C3:39:78:BC:18:89:D4:A4:2D:85:56:DD:17:7A:AC:72:5B:0D:76
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01869C814FBBBFDC2C889695771C91019197
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/vcM5eLwYidSkLYVW3Rd6rHJbDXY.roa
Signing time: Wed 01 Mar 2023 09:29:25 +0000
ROA not before: Wed 01 Mar 2023 09:29:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 5.180.232.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9c:81:4f:bb:bf:dc:2c:88:96:95:77:1c:91:01:91:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Mar 1 09:29:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdc33978bc1889d4a42d8556dd177aac725b0d76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:79:8a:a0:59:20:81:93:49:2b:0e:4d:42:4c:
d0:4d:5c:5a:03:02:62:16:fa:28:b8:bc:09:24:cd:
ef:d3:2f:bf:87:b9:90:58:d3:94:a8:42:71:f4:53:
12:d4:d3:91:45:40:3e:19:11:c6:7e:74:79:cd:53:
8d:54:94:09:bb:3f:97:a9:4e:db:d6:01:99:74:a8:
c4:dd:d1:08:ab:8a:32:6a:90:30:88:23:03:fb:4c:
7a:bb:0a:70:e5:cb:00:50:c1:50:43:51:7e:46:c7:
5d:4c:51:43:e8:05:5b:96:6b:a3:35:e6:19:5d:7d:
09:6f:71:c5:cb:f3:00:2a:06:bf:b2:15:b8:93:1c:
3d:d6:03:e4:b9:8a:34:f7:fa:c8:2f:02:b0:60:f1:
dc:20:d4:d6:71:18:93:a1:4a:08:2d:d1:20:25:8a:
3b:86:80:b8:ff:6c:70:02:48:5e:3a:74:88:dd:65:
74:00:d5:52:f6:9d:6d:8f:4f:d4:c3:91:be:da:86:
33:3c:ec:ac:71:30:74:00:24:ec:11:2a:db:af:2d:
99:4f:fc:10:43:42:93:84:61:24:06:32:97:06:97:
f7:ed:b7:8d:e2:75:9f:d2:8a:7a:f4:b1:29:6e:71:
7c:ed:38:ff:b1:42:2a:7f:c9:53:85:00:6e:a0:95:
37:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:C3:39:78:BC:18:89:D4:A4:2D:85:56:DD:17:7A:AC:72:5B:0D:76
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/vcM5eLwYidSkLYVW3Rd6rHJbDXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.232.0/24
Signature Algorithm: sha256WithRSAEncryption
35:28:ad:5a:92:37:f7:81:ff:2c:67:ee:53:3a:f0:7d:43:ef:
0c:3d:80:12:5c:6e:78:f7:55:78:c3:88:cb:f6:63:84:de:2c:
4e:b0:ea:4d:d3:19:8a:b4:b0:98:e5:3e:a7:f7:82:80:99:5a:
35:81:a2:34:1d:e7:5b:43:e3:69:e5:fb:95:1a:a1:6c:f2:23:
3b:00:8f:32:19:2e:e1:5a:b6:3b:68:b2:0d:15:68:84:53:25:
c3:9f:a2:58:23:01:34:2b:d1:58:9a:c6:3d:02:0b:fe:63:c9:
cc:79:fb:1a:50:9c:66:c4:f0:b6:5b:fc:e9:3c:d7:6f:a7:01:
a4:b1:ae:16:07:7c:63:7b:2d:f8:08:ac:af:c7:2c:d7:79:50:
4e:3e:69:18:d7:e0:ed:f1:e9:bc:8b:2d:bf:5f:b9:27:08:6e:
ee:cf:86:52:d0:aa:7e:3e:22:e8:c7:fc:8d:86:b0:b7:4c:62:
93:5b:75:7b:3c:7c:e6:03:62:43:11:15:c8:56:ff:de:bd:cd:
97:0b:04:c5:6b:0a:63:d5:20:b6:76:40:e0:78:f0:3e:c2:d7:
fd:2a:86:14:f1:01:3f:20:30:01:bb:43:b9:7f:05:8b:79:7c:
fa:f1:fa:92:4a:d7:5d:8d:f2:2d:e7:52:f1:c2:6d:8f:38:86:
04:77:b5:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:29 2023 by rpki-client on console-fra.rpki-client.org