Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/VD2UBrp7k6jMxPM23rBuPQsJkVI.roa
File: VD2UBrp7k6jMxPM23rBuPQsJkVI.roa (raw, json)
Hash identifier: vF77h7X8Psfmdx56XqbTSwXUAfMHx9B6IvzBwYdwIM4=
Subject key identifier: 54:3D:94:06:BA:7B:93:A8:CC:C4:F3:36:DE:B0:6E:3D:0B:09:91:52
Certificate issuer: /CN=577021dcdf44b6afdd3810547c55a79bd1a9fa3b
Certificate serial: 018C57EBCE4CD89A7FA4E3DE1E2026753AED
Authority key identifier: 57:70:21:DC:DF:44:B6:AF:DD:38:10:54:7C:55:A7:9B:D1:A9:FA:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/VD2UBrp7k6jMxPM23rBuPQsJkVI.roa
Signing time: Mon 11 Dec 2023 08:08:40 +0000
ROA not before: Mon 11 Dec 2023 08:08:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207579
IP address blocks: 185.210.194.0/24 maxlen: 24
62.122.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:57:eb:ce:4c:d8:9a:7f:a4:e3:de:1e:20:26:75:3a:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=577021dcdf44b6afdd3810547c55a79bd1a9fa3b
Validity
Not Before: Dec 11 08:08:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=543d9406ba7b93a8ccc4f336deb06e3d0b099152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:89:64:7f:02:dc:b3:59:27:25:5e:34:5e:6d:
fc:08:f8:d3:ca:35:f0:e9:c6:6c:62:c5:54:8f:32:
89:2f:cf:ac:37:61:b9:29:1c:09:02:f2:5d:d9:33:
06:71:f5:d8:cb:eb:f1:93:dd:c7:61:a8:b4:e5:f9:
79:16:3c:58:43:82:70:b4:32:42:15:bd:e4:70:69:
0a:ba:d5:b3:ec:a0:50:df:3b:bd:64:47:57:8e:75:
23:ea:ce:ad:39:8a:cb:64:89:7f:18:cc:41:58:42:
5f:6e:86:76:ee:7f:19:57:df:01:31:63:51:55:ec:
6c:34:7d:c2:17:69:a7:33:f9:37:eb:51:3c:d1:12:
61:50:17:54:b6:ff:a2:62:43:ab:9a:1b:03:36:b6:
55:2d:d0:86:3f:d2:ad:6c:f2:b6:d2:57:85:b3:54:
d8:cb:9a:15:fc:d6:9f:b8:13:a6:46:1e:d5:44:93:
87:06:0d:6b:1c:55:9e:51:b2:a4:9c:09:4d:76:7a:
94:af:88:6b:f7:0d:46:09:8e:80:b0:d2:f4:76:a9:
b8:5e:09:c8:7d:b8:30:01:e4:a8:f8:ef:1c:6a:f3:
88:c3:67:e2:75:27:73:ae:8e:ae:bd:e5:5e:d2:cf:
9c:c4:ef:76:71:5d:9d:3a:56:5f:1e:1c:5a:56:e3:
b5:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:3D:94:06:BA:7B:93:A8:CC:C4:F3:36:DE:B0:6E:3D:0B:09:91:52
X509v3 Authority Key Identifier:
keyid:57:70:21:DC:DF:44:B6:AF:DD:38:10:54:7C:55:A7:9B:D1:A9:FA:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/VD2UBrp7k6jMxPM23rBuPQsJkVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.122.229.0/24
185.210.194.0/24
Signature Algorithm: sha256WithRSAEncryption
98:d6:d6:36:5f:2b:15:71:65:cb:68:7c:7f:71:73:67:b2:61:
27:f1:5c:60:6f:be:4d:09:b6:96:55:7b:5b:fa:89:1a:f4:ad:
b9:46:29:e7:79:4e:26:4c:df:ef:b6:b4:e9:4b:f9:7d:23:b5:
e3:2c:0f:32:a8:25:54:54:f1:1a:4e:d1:8a:02:66:f4:bb:e3:
e4:85:91:ac:73:39:bd:ae:c1:6a:96:cd:6a:a5:6b:6e:bb:99:
41:01:48:2f:aa:53:f4:9e:ef:79:bd:9d:83:2b:0a:b2:83:e1:
d0:cd:ce:e0:ba:e9:74:31:f4:09:bd:68:e9:90:94:26:89:a3:
86:e8:73:1b:66:dc:2d:df:84:32:f5:e8:76:2d:bc:c0:c8:d8:
7a:b4:7e:30:52:8c:99:c5:50:f7:fc:d3:e9:83:f5:49:5f:02:
25:8e:08:a7:64:74:64:6a:b9:40:20:54:30:bd:5b:00:89:d8:
05:4a:af:f4:fb:c1:a5:74:3a:4a:22:d3:aa:4c:fe:ec:c8:e2:
37:0d:f3:09:d3:b9:34:52:29:7e:53:4f:a0:32:44:2f:62:f2:
84:34:44:22:f2:2b:79:ae:6d:09:db:d9:f4:7d:b8:f7:43:35:
0e:51:ed:db:f0:b5:ce:75:dd:67:82:ec:52:15:eb:d9:fc:98:
e3:1c:87:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:13 2024 by rpki-client on console-ams.rpki-client.org