Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/VKKlODh36hBCvBl6SHVQ31yDhas.roa
File: VKKlODh36hBCvBl6SHVQ31yDhas.roa (raw, json)
Hash identifier: A16Z6Nmqv0LAmuVaw7HPMuMiJPTTghlsBZq40IHLxRA=
Subject key identifier: 54:A2:A5:38:38:77:EA:10:42:BC:19:7A:48:75:50:DF:5C:83:85:AB
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 018DB29ABE0E420C9D3211DC29757DD68819
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/VKKlODh36hBCvBl6SHVQ31yDhas.roa
Signing time: Fri 16 Feb 2024 15:48:22 +0000
ROA not before: Fri 16 Feb 2024 15:48:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8100
IP address blocks: 89.249.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 15:17:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b2:9a:be:0e:42:0c:9d:32:11:dc:29:75:7d:d6:88:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Feb 16 15:48:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=54a2a5383877ea1042bc197a487550df5c8385ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:33:09:79:86:9d:c8:f2:be:0a:e5:9f:db:eb:
84:63:37:b2:16:e4:a6:c5:55:65:95:c3:14:78:fc:
b1:b7:2c:9f:41:2c:65:99:04:6b:3f:4e:2a:7f:01:
93:5c:a1:aa:bc:11:0e:51:10:39:9d:02:c8:57:36:
92:61:07:25:00:73:d9:d6:13:91:4e:2d:53:30:81:
5f:61:a9:fd:c7:a4:69:cb:a9:dd:d3:f3:50:c9:2e:
f7:4e:17:c4:54:e3:93:42:d0:ef:ca:76:ca:04:bd:
08:b6:0e:f8:d3:6c:b0:c5:79:60:81:c0:de:69:a1:
45:88:7b:20:a2:ac:4c:43:5a:ca:7f:f1:3c:c7:5e:
28:26:4d:28:47:a7:23:e0:81:3b:14:29:b6:b4:65:
f4:50:bd:eb:c8:b1:9a:49:7f:46:2c:41:2d:29:11:
59:f2:67:0d:09:9c:c3:9c:45:78:55:88:11:4a:e8:
bc:60:80:70:20:46:ba:ba:22:10:50:5e:60:80:db:
ff:fa:10:08:57:92:f9:3b:ae:38:10:f0:bd:f3:05:
17:b9:99:8f:72:eb:ea:ea:e6:95:11:9a:d8:cb:1d:
8a:b0:3c:97:54:36:21:6e:a9:fd:5b:c7:c4:c2:de:
b6:47:6c:d6:b8:91:c7:d6:e8:11:fd:68:45:85:95:
d7:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:A2:A5:38:38:77:EA:10:42:BC:19:7A:48:75:50:DF:5C:83:85:AB
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/VKKlODh36hBCvBl6SHVQ31yDhas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.249.205.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:da:90:b1:32:91:b8:b9:ad:ca:f6:42:b3:64:73:e2:09:f6:
bd:3f:a0:d3:fa:fd:0f:6f:e6:c1:54:6b:f0:bb:b5:1a:2c:40:
d1:75:34:5f:07:f8:b9:6d:fe:dd:b6:3c:a4:91:2e:2b:45:42:
73:af:f6:64:9c:ce:91:56:46:14:9a:01:1c:ac:0d:f0:58:d4:
0b:63:36:b0:4a:07:0b:26:8d:57:d3:b1:f9:29:35:74:d0:7f:
0d:4d:8c:9b:f3:dc:b7:fd:30:14:d2:84:1a:1e:1c:a6:fc:01:
b2:0b:ab:44:9d:ff:2e:f7:a7:72:43:ed:62:a8:8d:3c:0b:a8:
b1:8a:6f:07:a3:8e:d4:fa:9c:75:e1:85:1f:7a:ac:f7:4d:55:
df:e1:5f:fc:c0:25:cd:1b:05:da:55:9b:8f:14:8b:f6:3c:3f:
01:70:d1:1a:b0:0f:22:a5:a8:54:00:3b:8a:aa:33:b5:42:c6:
4b:65:7c:36:f2:c9:58:7f:ae:72:d7:74:cf:c3:1d:33:ac:d1:
a3:9a:51:2d:19:88:0a:54:1b:98:8f:d2:cb:eb:82:f3:fd:f1:
26:7f:5d:c3:d2:a9:f8:74:87:5a:97:1c:a9:ff:b1:f0:7e:3f:
8c:a5:75:0f:3f:2c:78:7f:57:ff:e7:eb:49:b8:9c:02:03:95:
6d:41:84:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:50 2025 by rpki-client