Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/vurE4M-p8vnptDUMvkahkxEuquY.roa
File: vurE4M-p8vnptDUMvkahkxEuquY.roa (raw, json)
Hash identifier: xNPJYDw6avyAgptA866PKz+hmhX2Gu/hsw6XpWPtGFY=
Subject key identifier: BE:EA:C4:E0:CF:A9:F2:F9:E9:B4:35:0C:BE:46:A1:93:11:2E:AA:E6
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 018D31F9D043BC3A38AAC9BDED3D8F9A69BC
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/vurE4M-p8vnptDUMvkahkxEuquY.roa
Signing time: Mon 22 Jan 2024 16:21:11 +0000
ROA not before: Mon 22 Jan 2024 16:21:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 89.249.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jan 2024 12:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:31:f9:d0:43:bc:3a:38:aa:c9:bd:ed:3d:8f:9a:69:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Jan 22 16:21:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=beeac4e0cfa9f2f9e9b4350cbe46a193112eaae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:96:f2:b2:95:da:be:bf:7d:0b:d2:9c:ef:ce:
c1:bb:7e:28:01:2e:1d:f3:44:9f:67:05:55:91:85:
5b:5c:a3:59:f2:b5:13:46:db:02:0b:a1:dc:79:81:
74:ab:6f:00:e5:c4:c7:b1:47:0b:df:5d:46:39:06:
1b:be:5e:c7:8f:a2:7a:31:93:54:9d:c6:37:09:d7:
9b:79:c1:30:56:34:07:81:54:91:c6:e6:86:f2:4d:
8b:64:ea:3f:f9:1d:1a:c3:9f:5d:64:9b:23:7e:d9:
31:0a:ac:e0:fa:2d:6d:46:a3:af:4d:43:25:9c:ea:
b3:bb:a7:17:57:5f:d0:70:ef:a3:f4:72:6b:48:49:
aa:9b:dc:89:cf:ff:10:9f:74:38:ea:1d:07:ef:9d:
92:b1:05:6c:25:2b:79:df:f2:58:b7:8f:4f:0e:6a:
2a:c1:cd:97:a3:a6:3c:c7:48:99:ec:38:55:2e:62:
ca:96:0b:0b:a5:6a:11:f7:e8:24:7e:12:31:d5:95:
8f:21:45:63:bf:69:cd:5c:bc:56:32:7f:bd:da:c6:
a5:19:bd:b5:b1:45:b7:b3:f5:63:82:34:7a:9b:f7:
4d:d2:b9:89:06:22:ea:d9:68:86:f4:23:df:42:6d:
0d:6a:f0:bd:f4:ea:d0:bb:fb:6a:7c:88:fe:33:25:
b8:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:EA:C4:E0:CF:A9:F2:F9:E9:B4:35:0C:BE:46:A1:93:11:2E:AA:E6
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/vurE4M-p8vnptDUMvkahkxEuquY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.249.201.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:d9:24:04:96:cb:4c:ab:9a:48:5b:71:ee:c9:81:95:2d:3d:
56:36:5a:49:48:9a:78:09:0c:39:3e:7a:63:ca:9a:ea:20:99:
2a:87:c6:60:79:7f:76:ba:6e:4f:59:53:5a:d4:48:1b:56:df:
f7:6b:78:1b:19:dc:0a:ed:8d:70:08:9a:30:1d:d1:71:97:34:
be:23:46:71:3c:43:87:78:c2:e0:bb:e8:58:c6:f1:00:2f:c1:
d1:2b:68:da:6f:e0:5a:9b:fb:b6:13:67:6b:24:fd:6a:ce:f6:
2c:ab:31:ad:cc:f0:e9:6c:82:87:bb:a2:ff:91:8b:d2:76:7c:
18:c3:b9:b1:98:0e:06:ee:3e:52:b5:7f:79:ff:9d:bb:db:7a:
4a:4d:d3:b8:3e:5c:cb:22:99:00:d6:94:99:62:24:84:e2:d1:
bf:64:04:19:e2:90:9f:2f:b0:2e:e9:09:96:12:ea:cb:5a:fe:
c8:4b:78:a1:9b:58:bf:bc:b9:ba:98:6b:2f:92:b9:11:0b:fc:
1c:6c:33:54:ba:28:c6:a0:e9:39:b2:44:01:4b:54:5e:66:7f:
bd:09:7c:38:49:39:46:06:66:72:c8:00:30:61:cf:59:16:b5:
db:47:62:03:34:1e:a2:52:2c:be:20:73:6d:01:c9:d8:07:4e:
6a:62:50:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:24 2025 by rpki-client