Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/VY-7bOpUjGoFm60LSQw_V5xEIN8.roa
File: VY-7bOpUjGoFm60LSQw_V5xEIN8.roa (raw, json)
Hash identifier: uZ0zeJ2UN4MJ8BbCXJ4+popEwB7oR2emMrzTEGNiUms=
Subject key identifier: 55:8F:BB:6C:EA:54:8C:6A:05:9B:AD:0B:49:0C:3F:57:9C:44:20:DF
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018BE715045EC6ED38EE9F1B1BE77111B172
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/VY-7bOpUjGoFm60LSQw_V5xEIN8.roa
Signing time: Sun 19 Nov 2023 10:16:36 +0000
ROA not before: Sun 19 Nov 2023 10:16:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.72.116.0/22 maxlen: 24
109.72.117.0/24 maxlen: 24
89.185.0.0/22 maxlen: 22
81.22.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 Nov 2023 09:20:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e7:15:04:5e:c6:ed:38:ee:9f:1b:1b:e7:71:11:b1:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Nov 19 10:16:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=558fbb6cea548c6a059bad0b490c3f579c4420df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:04:ff:49:d2:f9:07:b8:d6:e1:f5:af:f3:66:
11:aa:56:c7:af:8b:50:90:d6:3a:ed:72:b4:6f:af:
94:96:ec:d8:06:fd:73:af:2f:e5:5e:09:63:29:0b:
0b:70:f8:5e:19:4d:14:7f:79:5b:c8:0c:e3:56:40:
27:f1:b0:1c:cd:4c:24:87:da:a8:a5:12:bd:2a:3a:
86:9b:4e:40:48:74:32:7d:b6:d2:f2:d2:dd:72:7c:
c6:f6:4c:a6:1b:e4:78:ab:fc:20:8d:74:6c:8f:76:
4c:20:1a:10:db:45:fa:85:ab:77:a2:37:ef:19:85:
e8:c8:25:be:54:95:fa:31:01:0a:0b:fb:ba:b4:93:
5d:ae:1b:88:17:56:8b:06:65:96:2d:39:24:47:99:
bf:e0:8c:18:24:b8:6a:eb:a0:0d:e0:21:bf:33:a1:
23:de:0c:be:f6:39:57:59:92:97:14:44:a3:e9:f7:
f1:bc:9a:ca:eb:fa:11:25:70:44:84:37:3e:1a:5c:
c6:0f:b3:67:4e:9e:00:22:af:0b:0e:8b:5e:48:8d:
5e:51:df:b9:a5:63:5e:66:19:dc:c4:ab:84:3f:4b:
a9:ba:7b:eb:99:53:4d:c4:c7:c3:8f:d2:90:6f:4a:
bd:13:ff:eb:19:f8:4b:32:b5:72:e8:16:14:53:b5:
fd:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:8F:BB:6C:EA:54:8C:6A:05:9B:AD:0B:49:0C:3F:57:9C:44:20:DF
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/VY-7bOpUjGoFm60LSQw_V5xEIN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.130.0/24
89.185.0.0/22
109.72.116.0/22
Signature Algorithm: sha256WithRSAEncryption
20:03:58:0c:6f:be:a5:f2:43:43:42:bc:b0:c8:a7:1e:3a:99:
36:ba:e0:22:93:aa:01:5b:a8:72:be:d4:a4:ca:b8:42:ef:d8:
9e:a2:2c:75:63:be:96:5e:2a:03:77:6c:e9:4a:f6:20:11:75:
8b:bc:d8:a4:dd:8e:c4:60:06:78:8f:0a:c2:65:05:eb:e5:fe:
93:00:1e:18:9c:21:90:82:45:44:24:7d:b9:3a:55:38:7c:99:
db:90:2c:f2:e7:da:e0:3a:bb:48:dc:68:a0:55:8f:4f:7e:30:
b7:d7:e4:f6:92:d3:53:4e:f7:24:1e:4b:2c:5f:d0:c0:65:e5:
35:c3:f4:05:e6:26:4c:77:ef:b5:c1:e8:6f:93:37:18:12:05:
ef:af:53:2b:84:5e:bc:10:c6:60:bb:4c:e1:02:92:df:69:d3:
6e:0d:9f:5d:3e:39:49:8e:0d:06:54:5b:12:b6:f9:06:f7:d7:
17:e3:db:17:6d:e1:7c:26:bd:9c:09:3a:ba:eb:8d:64:74:5b:
92:fb:c4:bf:e1:d9:1d:25:97:1d:9d:20:be:2b:8a:ec:18:47:
85:4c:a5:8c:c5:df:6a:4a:2c:76:89:a3:04:69:e8:cb:26:7d:
72:ce:3c:61:c3:a7:f9:0b:53:5f:38:e6:46:94:91:d7:47:a6:
f5:60:2f:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org