Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/v8zl5RGqS4plnSoMtoY7ofsOB2g.roa
File: v8zl5RGqS4plnSoMtoY7ofsOB2g.roa (raw, json)
Hash identifier: c3H5rvAsb4WcmXNF5NoOMwkYpDtUrVzWLpa1tONlpas=
Subject key identifier: BF:CC:E5:E5:11:AA:4B:8A:65:9D:2A:0C:B6:86:3B:A1:FB:0E:07:68
Certificate issuer: /CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d
Certificate serial: 018A0835E66857A0B0D1D783F21CF76074F7
Authority key identifier: 79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/v8zl5RGqS4plnSoMtoY7ofsOB2g.roa
Signing time: Fri 18 Aug 2023 10:34:24 +0000
ROA not before: Fri 18 Aug 2023 10:34:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21082
IP address blocks: 5.180.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Sep 2023 10:06:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:08:35:e6:68:57:a0:b0:d1:d7:83:f2:1c:f7:60:74:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d
Validity
Not Before: Aug 18 10:34:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bfcce5e511aa4b8a659d2a0cb6863ba1fb0e0768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ba:dd:90:e1:e7:67:82:c5:16:54:6e:6b:00:
09:41:b6:e3:27:bf:df:5c:51:e0:12:be:f6:a9:79:
de:13:28:1b:a1:69:9e:06:b7:2e:0c:bb:28:5f:4b:
39:07:e9:5c:2a:3c:bb:d6:59:ca:6e:14:cf:91:d1:
c6:1f:e4:81:57:8f:70:78:ea:9b:ac:6d:3c:e8:51:
92:a8:05:18:fd:9d:b9:25:c5:61:d9:85:a1:4e:96:
01:1c:92:7c:ae:2d:f4:6e:69:62:b9:21:1e:ae:8e:
d5:9b:58:d7:ed:72:43:7d:3e:a7:c0:a3:c8:27:08:
23:93:a0:21:2e:cf:25:6b:1d:9e:99:49:bd:c9:bf:
2b:52:43:a4:71:14:b0:5b:c9:33:49:82:e5:60:ef:
72:ff:97:f0:af:c2:55:72:5a:a4:c5:7b:bf:09:f9:
bb:6c:00:f0:2f:4d:7c:bd:bb:36:89:87:f6:fb:85:
9f:c7:13:94:60:f9:59:3f:69:41:36:63:da:12:5a:
f4:b5:7f:55:07:6b:c6:60:59:62:e2:ac:24:2d:79:
2b:a7:52:4d:aa:26:97:83:53:51:06:f9:5a:d0:3c:
ff:6f:f7:17:06:a4:f4:b4:97:eb:1a:e8:59:63:f6:
53:86:19:60:4d:13:2a:79:7c:8b:41:6d:b3:db:91:
fe:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:CC:E5:E5:11:AA:4B:8A:65:9D:2A:0C:B6:86:3B:A1:FB:0E:07:68
X509v3 Authority Key Identifier:
keyid:79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/v8zl5RGqS4plnSoMtoY7ofsOB2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/eahD06Z78gLQriPfleFOqHHY8V0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.155.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:45:0f:b5:c6:16:98:a5:3c:d3:bf:be:b3:64:5a:d5:1d:d6:
af:98:eb:29:4f:e3:81:85:ae:7f:32:1f:89:38:96:61:a0:20:
30:9c:09:0b:30:44:9a:04:ed:26:f8:05:dc:fb:01:52:05:19:
20:7a:50:c1:dd:a0:70:4d:bc:dd:f0:0a:a3:e2:6a:72:c0:a0:
86:c4:82:29:24:79:d4:4e:0b:1c:c1:89:76:92:ea:9f:10:cb:
06:41:91:17:37:e6:6b:df:11:b0:1a:3a:d6:1d:ef:54:c8:91:
1e:e4:03:cc:ca:91:7a:13:7d:5e:a1:80:02:a7:6c:77:7f:7f:
ce:79:e3:f7:4b:ad:e7:3f:c0:1a:fc:1f:9b:a6:65:dd:69:3b:
5b:60:c1:79:bd:62:82:8f:c0:2c:f9:20:bb:53:f7:5b:ea:1b:
58:3c:3e:34:7f:62:58:2b:e5:f7:da:98:8c:a3:3e:84:48:2e:
7c:aa:84:ff:43:c1:6a:84:ce:cb:7a:79:ca:50:65:50:86:20:
d0:0a:08:fa:6a:36:be:ab:d0:93:35:27:ee:e2:99:b3:19:cd:
45:ff:88:f6:58:22:6e:59:1b:9e:03:01:fc:50:a5:f4:80:52:
68:82:f2:43:52:8b:0c:71:58:27:44:16:9b:7b:12:9c:07:a9:
b9:a7:0a:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:15 2024 by rpki-client on console-fra.rpki-client.org