Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/Vh27CMRdsBCI3FCBt9kbUJ22Djw.roa
File: Vh27CMRdsBCI3FCBt9kbUJ22Djw.roa (raw, json)
Hash identifier: jlV/yKWDldvaLUjpFFkihsAx42eTsB/muUWDSxV331E=
Subject key identifier: 56:1D:BB:08:C4:5D:B0:10:88:DC:50:81:B7:D9:1B:50:9D:B6:0E:3C
Certificate issuer: /CN=fc44297e9271c6edf064915f6180ae12690dda8b
Certificate serial: 018C2596625CDB67AC52717E2E18FC4DBF3C
Authority key identifier: FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/Vh27CMRdsBCI3FCBt9kbUJ22Djw.roa
Signing time: Fri 01 Dec 2023 13:34:21 +0000
ROA not before: Fri 01 Dec 2023 13:34:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5504
IP address blocks: 194.30.136.0/22 maxlen: 22
194.30.135.0/24 maxlen: 24
194.30.134.0/24 maxlen: 24
213.169.128.0/21 maxlen: 24
213.169.128.0/20 maxlen: 20
194.30.140.0/23 maxlen: 23
194.30.144.0/23 maxlen: 23
194.30.143.0/24 maxlen: 24
194.30.146.0/23 maxlen: 23
194.30.148.0/22 maxlen: 22
194.30.152.0/23 maxlen: 23
213.169.136.0/22 maxlen: 24
213.169.140.0/22 maxlen: 22
213.169.144.0/22 maxlen: 22
194.30.154.0/23 maxlen: 23
194.30.156.0/23 maxlen: 23
213.169.152.0/23 maxlen: 23
213.169.158.0/23 maxlen: 23
194.30.132.0/23 maxlen: 23
194.30.131.0/24 maxlen: 24
194.30.130.0/24 maxlen: 24
194.30.128.0/23 maxlen: 23
82.114.32.0/19 maxlen: 22
82.114.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:25:96:62:5c:db:67:ac:52:71:7e:2e:18:fc:4d:bf:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc44297e9271c6edf064915f6180ae12690dda8b
Validity
Not Before: Dec 1 13:34:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=561dbb08c45db01088dc5081b7d91b509db60e3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:4c:a3:db:4a:f7:60:b6:bb:de:22:b6:9e:be:
9a:95:a6:ea:24:c7:56:15:93:87:15:86:7a:77:ba:
02:2f:b6:bd:f4:73:fe:3e:9c:c3:e7:86:80:a9:47:
67:17:b4:b1:f1:c5:17:70:86:71:a8:8a:81:26:e3:
b3:f3:38:c1:4c:de:f9:63:27:30:c0:7c:ea:d1:c0:
73:19:ac:d9:91:0d:9d:9b:2c:cc:1a:4b:1e:77:77:
5b:e6:85:ff:5b:df:87:42:70:cb:50:eb:f4:3a:25:
aa:6d:f3:0e:a8:f3:b7:3e:c6:b3:70:ed:30:2e:e0:
5d:96:88:95:64:74:43:19:01:4c:8c:ce:3b:43:87:
07:c9:c5:67:6a:19:80:b6:46:c2:82:a5:08:75:4e:
ce:b4:a8:22:47:7b:36:7d:ff:04:5b:78:ec:0c:d6:
eb:0c:af:9f:c4:3f:99:7a:24:4c:93:95:80:ef:c0:
d1:99:33:f0:75:32:b5:df:df:01:04:cc:8e:53:b6:
07:cb:aa:b4:ca:33:7b:ba:5c:41:ec:75:30:41:8d:
2c:56:ae:2a:6e:35:96:92:12:4e:ad:f0:fe:60:13:
b8:38:e8:b4:9e:15:87:18:43:da:08:2f:db:1e:22:
d5:a1:28:8a:20:79:66:41:60:c7:5f:2a:bd:e1:de:
3c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:1D:BB:08:C4:5D:B0:10:88:DC:50:81:B7:D9:1B:50:9D:B6:0E:3C
X509v3 Authority Key Identifier:
keyid:FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/Vh27CMRdsBCI3FCBt9kbUJ22Djw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/_EQpfpJxxu3wZJFfYYCuEmkN2os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.114.32.0/19
194.30.128.0-194.30.141.255
194.30.143.0-194.30.157.255
213.169.128.0-213.169.147.255
213.169.152.0/23
213.169.158.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:d9:f6:68:d5:d3:05:c6:9f:f0:48:6b:91:f2:8a:5a:4d:b1:
11:df:3b:3b:7b:ba:c1:70:95:7c:ec:76:44:e3:93:f8:88:27:
e9:e0:b7:3a:8f:3b:85:46:cd:d0:d6:94:71:3a:79:5f:8e:b5:
3d:b1:d1:a2:32:4e:b4:c0:cb:c8:ae:25:ff:49:f9:15:61:39:
c6:8f:0d:a0:3d:5c:df:9f:43:e4:07:db:19:f2:8b:8b:cb:cc:
0a:76:3a:ca:c5:cd:b2:bf:94:cd:97:27:34:0e:77:32:7b:6f:
62:b4:7e:03:af:84:d0:f8:4b:3c:34:91:60:36:8e:5f:a8:8e:
59:6a:75:e4:66:88:75:dd:bb:2a:3c:14:bd:37:39:ab:e1:8f:
98:00:8a:c0:bf:d7:89:cf:0e:ca:94:59:77:79:bb:88:7e:9c:
4a:0b:dd:28:7f:78:58:a8:ff:e5:38:92:27:73:e6:8e:b2:7d:
e1:ef:d6:51:d9:8a:4d:0d:52:4e:bc:d8:a2:e1:67:06:01:15:
23:09:e6:00:aa:13:18:96:f7:9f:0f:5a:01:62:c3:70:3b:9c:
fe:ed:ab:5f:ff:23:14:ab:0e:6c:81:80:ee:90:b8:eb:de:93:
87:45:32:1c:86:b3:3b:db:c1:c8:c0:20:ef:58:77:f7:e1:e8:
a2:e3:c1:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:10 2024 by rpki-client on console-fra.rpki-client.org