Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/vPhldeYK15Q0AfCwqN129gMbnM0.roa
File: vPhldeYK15Q0AfCwqN129gMbnM0.roa (raw, json)
Hash identifier: 3lEB62F5YBOFkLruQs+hkdB2i/I66wV5gsHJBKOOsMo=
Subject key identifier: BC:F8:65:75:E6:0A:D7:94:34:01:F0:B0:A8:DD:76:F6:03:1B:9C:CD
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 018570FBCF5F91A190A9EB6C14B765D2CF9C
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/vPhldeYK15Q0AfCwqN129gMbnM0.roa
Signing time: Mon 02 Jan 2023 05:37:08 +0000
ROA not before: Mon 02 Jan 2023 05:37:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211281
IP address blocks: 5.1.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Mar 2023 12:12:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:cf:5f:91:a1:90:a9:eb:6c:14:b7:65:d2:cf:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 2 05:37:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bcf86575e60ad7943401f0b0a8dd76f6031b9ccd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:26:4a:7b:14:02:24:0d:fb:eb:25:cf:1e:0b:
f3:67:4e:0b:5e:25:d1:f6:3f:c5:c3:ca:4b:b7:02:
48:b2:49:0e:70:f7:13:1e:d8:b8:6d:59:18:7d:dd:
30:72:88:bd:08:c8:42:85:4b:b2:39:5c:3a:25:ca:
ef:e0:db:62:8d:d8:92:61:8a:83:08:47:04:4f:4b:
ab:0e:5f:78:5f:20:16:c4:34:b6:fd:4b:53:99:d3:
10:6e:28:11:1a:86:c1:6c:f4:f8:62:50:a7:41:46:
bd:d5:b2:a6:a3:76:1a:b3:c0:d3:a5:71:1f:59:92:
2a:56:32:2d:aa:1c:b9:27:4a:ed:ae:d3:56:5f:68:
d2:af:10:5e:40:04:1b:27:a7:85:46:d0:a7:63:0b:
4e:27:78:af:d3:dd:5a:c7:1b:c1:dc:a3:c1:8c:c4:
e0:75:14:4e:00:16:18:0b:5d:36:79:da:16:c8:f3:
eb:f0:d6:74:49:09:66:0a:66:17:18:1c:c2:95:79:
30:cf:d1:02:16:26:b2:2c:4a:96:ce:fc:38:96:87:
03:a6:4b:b6:08:27:5f:26:bd:4c:ee:0d:b0:21:a7:
e4:71:50:b9:61:3e:4e:cf:99:04:3e:f0:ca:70:9d:
8c:65:65:65:c1:a9:85:4e:ab:91:2e:4a:9e:c4:e7:
10:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:F8:65:75:E6:0A:D7:94:34:01:F0:B0:A8:DD:76:F6:03:1B:9C:CD
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/vPhldeYK15Q0AfCwqN129gMbnM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.94.0/24
Signature Algorithm: sha256WithRSAEncryption
17:63:de:77:db:b5:8a:6b:ba:b1:50:71:5c:84:83:a5:68:81:
9c:98:22:1a:82:bf:55:b4:b4:7c:b1:a1:67:17:b5:6c:fc:d2:
98:46:45:b3:f7:9f:fd:91:b8:b3:68:44:58:0e:bf:95:d3:f9:
72:c8:92:90:48:b2:6c:73:de:b8:33:3b:d5:c5:13:54:3e:bb:
23:d6:78:a9:4d:dd:30:5f:2a:be:a7:f2:02:7e:30:08:7b:eb:
0d:a3:c7:85:1e:30:0a:62:eb:4e:10:36:37:c2:35:23:29:ef:
3c:4e:31:b1:4e:6f:a4:e0:db:e8:74:1f:73:53:99:b0:97:4f:
bf:83:54:9c:19:95:63:04:4d:50:29:1f:2c:19:f5:9b:25:65:
ba:15:16:3a:d4:23:57:3c:1d:f2:98:ab:58:9f:55:7a:01:c5:
a8:65:01:9f:39:0c:12:fd:fa:62:54:0b:b6:c6:be:1d:1b:57:
98:84:45:db:ec:7d:15:56:1b:0b:a1:e6:27:82:2d:05:9f:d0:
cb:14:45:90:7b:d4:4a:55:9b:df:33:fc:39:80:d9:b4:35:28:
54:b2:df:56:32:04:95:6e:0a:17:14:d2:74:c7:74:8a:bd:aa:
1f:52:f1:d0:f4:8a:09:5f:74:e5:42:a6:82:1e:f7:ff:c1:0b:
ac:d6:01:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org