Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/vpIExbxd-Jqz8Ve0-hwecBEvOVo.roa
File: vpIExbxd-Jqz8Ve0-hwecBEvOVo.roa (raw, json)
Hash identifier: QTJb4IF1DibL/3i34WR8tDs4Vn1D/P9Fu5uLmc8LvVg=
Subject key identifier: BE:92:04:C5:BC:5D:F8:9A:B3:F1:57:B4:FA:1C:1E:70:11:2F:39:5A
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE67577D6CC0BAB30420F2576A062B4
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/vpIExbxd-Jqz8Ve0-hwecBEvOVo.roa
Signing time: Sun 01 Jan 2023 10:35:20 +0000
ROA not before: Sun 01 Jan 2023 10:35:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207826
IP address blocks: 94.236.169.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:75:77:d6:cc:0b:ab:30:42:0f:25:76:a0:62:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be9204c5bc5df89ab3f157b4fa1c1e70112f395a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f2:1d:2e:68:85:6d:d4:5f:f5:04:bd:31:7a:
1a:9c:66:5b:a9:2d:b8:80:42:89:7e:52:03:56:2d:
b1:25:33:d1:d1:ab:bb:2f:ca:d4:5e:8f:a4:40:6f:
ac:56:01:76:84:30:80:6d:24:91:b1:df:5e:19:5f:
69:7f:42:16:b5:f1:62:ff:ea:7d:dc:19:5b:99:33:
bd:71:cb:10:4e:99:0a:1c:14:f3:98:73:d3:ff:b6:
14:2d:78:9e:46:d3:42:fd:1d:e3:1f:07:76:94:44:
92:27:c3:3e:d8:4d:66:4d:13:b3:3d:1d:fd:ab:9b:
68:dc:12:7b:cb:b8:7b:83:a0:18:6e:7b:a3:72:6c:
fd:9a:78:d1:34:ee:38:70:21:5b:9e:9a:bd:21:56:
92:ed:3c:fa:f4:7a:c0:21:44:25:cf:c3:f7:67:b9:
2b:30:65:b4:48:eb:c4:16:12:7a:1f:c1:f9:2f:ea:
9c:3b:18:18:61:40:96:39:44:af:13:3b:10:45:13:
dc:bb:fb:45:5b:a0:63:c8:e2:39:cb:f6:ab:33:03:
0f:0b:8c:8d:24:0b:31:97:d9:77:6b:c4:9a:0a:ad:
9a:2e:34:b7:9b:6a:7e:53:10:d4:1c:ea:32:f8:e4:
61:d3:39:16:79:ef:e5:ce:74:cd:6a:53:87:70:3b:
70:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:92:04:C5:BC:5D:F8:9A:B3:F1:57:B4:FA:1C:1E:70:11:2F:39:5A
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/vpIExbxd-Jqz8Ve0-hwecBEvOVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.236.169.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:66:9b:83:1a:a4:46:44:9f:43:6d:a2:9e:bd:4e:c8:1e:f0:
5c:13:bb:e1:18:f0:6a:b5:24:3e:09:c7:51:f0:72:4f:a0:16:
36:e2:56:0b:f8:92:76:ed:b4:36:c3:27:98:75:a2:36:e7:9f:
51:e6:42:37:1a:d5:84:1f:72:b2:8b:bd:27:a4:61:7f:11:44:
1c:66:a8:e2:14:33:9c:e0:83:8b:31:23:0f:34:75:42:f9:f7:
a2:d4:5f:6d:de:7c:13:6a:76:ed:2a:7c:bd:71:ad:96:22:7b:
72:75:f0:06:d2:61:ca:7e:9e:a7:6c:d3:69:67:e2:3a:dc:a4:
c0:50:c7:a0:16:21:88:b3:74:9e:22:21:43:ac:fa:49:02:85:
ae:84:df:4e:5d:30:1a:e4:2d:e0:b1:2d:0b:e8:48:bc:f4:fe:
b4:ef:40:2a:ee:10:8f:e5:b7:80:ad:13:e0:a0:9e:70:92:93:
ad:bb:38:f0:5a:8d:17:76:b8:83:96:15:a9:cd:fc:e1:04:cc:
a6:96:cf:74:97:37:08:ed:ef:5c:df:b7:c3:09:97:fd:6b:81:
3f:57:97:91:02:2f:7e:96:26:fd:ff:8f:30:77:03:ae:1f:f1:
77:16:1d:47:bd:dc:d3:a9:32:b2:00:cc:eb:d0:4c:c1:d1:af:
44:32:28:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:54 2024 by rpki-client on console-ams.rpki-client.org