Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/5731da-6665-4161-80c1-5e79b4435e2c/1/VObOaSppf-mokBczOkBvZhO7ED8.roa
File: VObOaSppf-mokBczOkBvZhO7ED8.roa (raw, json)
Hash identifier: wn65XoEomFEu/1LfqGzHaMvVvKOHFYL7Kxd/qSczUJY=
Subject key identifier: 54:E6:CE:69:2A:69:7F:E9:A8:90:17:33:3A:40:6F:66:13:BB:10:3F
Certificate issuer: /CN=4a409555105040578cb296070074f45107252eeb
Certificate serial: 01856DA66F4107B04A6D7B67F33877B97E06
Authority key identifier: 4A:40:95:55:10:50:40:57:8C:B2:96:07:00:74:F4:51:07:25:2E:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SkCVVRBQQFeMspYHAHT0UQclLus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/5731da-6665-4161-80c1-5e79b4435e2c/1/VObOaSppf-mokBczOkBvZhO7ED8.roa
Signing time: Sun 01 Jan 2023 14:05:01 +0000
ROA not before: Sun 01 Jan 2023 14:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21211
IP address blocks: 212.122.79.0/24 maxlen: 24
212.122.80.0/23 maxlen: 23
212.122.88.0/22 maxlen: 22
212.122.92.0/23 maxlen: 23
212.122.95.0/24 maxlen: 24
84.240.0.0/22 maxlen: 22
84.240.0.0/18 maxlen: 18
84.240.4.0/22 maxlen: 22
213.159.48.0/20 maxlen: 20
84.240.8.0/21 maxlen: 21
84.240.16.0/20 maxlen: 20
212.122.64.0/19 maxlen: 19
212.122.68.0/22 maxlen: 22
212.122.65.0/24 maxlen: 24
212.122.72.0/24 maxlen: 24
212.122.73.0/24 maxlen: 24
185.25.0.0/22 maxlen: 22
213.159.32.0/19 maxlen: 19
213.159.32.0/20 maxlen: 20
213.159.33.0/24 maxlen: 24
31.44.96.0/20 maxlen: 20
31.44.96.0/21 maxlen: 21
78.157.64.0/19 maxlen: 19
31.44.104.0/21 maxlen: 21
2a03:280::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:a6:6f:41:07:b0:4a:6d:7b:67:f3:38:77:b9:7e:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a409555105040578cb296070074f45107252eeb
Validity
Not Before: Jan 1 14:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54e6ce692a697fe9a89017333a406f6613bb103f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:37:4a:24:53:48:6a:5b:fb:15:e6:5e:a0:de:
a9:b4:c6:0c:b7:fd:87:8e:ab:d0:8b:ae:71:5b:63:
a7:b9:ae:4b:cd:71:9d:80:78:41:e4:27:58:1c:91:
fb:66:e4:e5:47:c4:c8:91:87:5e:df:6e:a5:9a:0a:
45:2c:e0:5c:7f:51:7f:b7:31:a5:90:46:66:20:08:
94:29:45:95:ff:36:0c:24:d6:c8:31:42:32:7f:06:
7a:6b:13:85:82:fb:b5:4a:6c:2e:78:ee:66:c9:9e:
3c:84:fd:3f:06:b6:8d:00:0f:01:db:6b:0c:18:a3:
ba:79:b4:60:cf:4c:6a:e8:08:83:ae:7b:ef:c5:2a:
4a:23:09:0d:1f:27:a6:5a:c2:84:59:7e:71:24:37:
3e:f7:57:af:e5:47:90:98:56:3c:5c:e4:b0:14:c3:
b0:a5:50:83:48:78:e6:0e:07:2b:16:8b:ad:85:65:
a2:63:dc:9b:8a:0b:72:7b:21:c5:6b:30:14:2b:20:
ec:db:57:d2:2e:33:67:93:31:91:e0:f1:79:e0:e1:
19:2b:cb:a5:7d:85:b7:fe:50:b6:25:66:5a:65:0c:
b1:ea:7b:88:dc:94:7c:e3:55:33:0e:81:26:ef:0f:
98:9d:db:9d:05:32:74:38:ff:99:e8:02:75:e7:f1:
e3:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:E6:CE:69:2A:69:7F:E9:A8:90:17:33:3A:40:6F:66:13:BB:10:3F
X509v3 Authority Key Identifier:
keyid:4A:40:95:55:10:50:40:57:8C:B2:96:07:00:74:F4:51:07:25:2E:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SkCVVRBQQFeMspYHAHT0UQclLus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/5731da-6665-4161-80c1-5e79b4435e2c/1/VObOaSppf-mokBczOkBvZhO7ED8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/5731da-6665-4161-80c1-5e79b4435e2c/1/SkCVVRBQQFeMspYHAHT0UQclLus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.44.96.0/20
78.157.64.0/19
84.240.0.0/18
185.25.0.0/22
212.122.64.0/19
213.159.32.0/19
IPv6:
2a03:280::/32
Signature Algorithm: sha256WithRSAEncryption
18:0f:5d:f8:39:1c:f4:74:9f:9a:e7:4a:09:40:ed:2c:48:0c:
08:6f:a5:96:db:c5:c9:98:a5:26:ae:16:5a:9c:94:8f:e5:e1:
20:80:c8:46:9c:2d:5e:a8:08:c8:60:2a:c2:92:16:a5:bf:e3:
f9:b5:65:28:2e:3e:ea:94:e6:ff:dc:52:84:15:eb:da:b4:41:
be:f7:74:0b:f8:f8:79:33:3a:dd:18:82:fc:49:28:6e:be:5e:
aa:d2:8b:35:a0:41:5d:56:93:5b:2c:32:51:3b:68:87:2b:df:
f2:c9:2e:68:41:c6:fe:92:8c:4a:9e:50:a1:bc:a9:8b:07:b1:
8b:a7:38:52:9b:4d:1c:26:3f:51:65:7b:44:d1:60:6e:47:d2:
d9:3f:7d:03:94:20:03:0b:9e:6f:21:6b:b9:82:de:4f:a5:c5:
fe:00:d7:c6:07:db:60:4b:8e:2c:80:89:da:cc:95:d7:79:c2:
41:ab:25:7e:22:6b:c7:0d:cc:f8:14:0a:da:65:75:db:1c:55:
d0:d8:bc:b8:ff:d8:d9:bf:3d:18:e6:f2:20:46:7c:2d:98:9c:
1b:d1:bd:e8:84:95:c1:18:12:25:c2:bd:3e:b3:77:1a:90:d1:
f0:aa:36:34:c5:2e:c9:54:4c:ee:c1:01:15:5a:67:0f:5c:b4:
cf:0e:3d:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:46 2024 by rpki-client on console-ams.rpki-client.org