Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/Vg2DlqGwpzY2bfBNVPVpgZ6bejM.roa
File: Vg2DlqGwpzY2bfBNVPVpgZ6bejM.roa (raw, json)
Hash identifier: 4himi+e37DLGd4WkUU+a/xd7+1RgEoUZZmP4jK+jXRM=
Subject key identifier: 56:0D:83:96:A1:B0:A7:36:36:6D:F0:4D:54:F5:69:81:9E:9B:7A:33
Certificate issuer: /CN=c67e2a46e34f491433c8b62f319b902bddfde831
Certificate serial: 018C14A0F366B7FBCE99ED110EAB18A3C0A8
Authority key identifier: C6:7E:2A:46:E3:4F:49:14:33:C8:B6:2F:31:9B:90:2B:DD:FD:E8:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xn4qRuNPSRQzyLYvMZuQK9396DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/Vg2DlqGwpzY2bfBNVPVpgZ6bejM.roa
Signing time: Tue 28 Nov 2023 06:32:21 +0000
ROA not before: Tue 28 Nov 2023 06:32:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216014
IP address blocks: 77.247.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:14:a0:f3:66:b7:fb:ce:99:ed:11:0e:ab:18:a3:c0:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c67e2a46e34f491433c8b62f319b902bddfde831
Validity
Not Before: Nov 28 06:32:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=560d8396a1b0a736366df04d54f569819e9b7a33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2e:54:c7:5b:75:68:02:d4:3e:a4:9f:33:f3:
04:61:9f:40:b4:f8:ba:b0:c5:9f:4e:28:21:6c:52:
a6:81:43:1f:a1:78:b2:5e:0f:8c:be:30:50:33:6f:
0e:6f:8e:95:df:6e:24:f4:c2:62:69:ce:86:1e:93:
f8:72:11:8a:32:8b:09:77:73:37:e5:b9:50:2e:09:
16:86:03:74:31:e9:de:2c:e1:c1:4c:4b:60:c7:52:
d0:43:16:2d:99:7b:38:91:11:a0:a4:5a:df:a1:3c:
09:bd:1f:6a:c1:df:0c:2c:c3:6f:63:ea:fd:12:b8:
97:63:1e:31:87:82:b7:11:8e:6a:03:40:f1:69:d8:
46:a8:26:26:a2:2e:47:39:23:5e:b7:3e:4c:f7:e6:
2b:ee:24:87:b7:24:fd:e7:b6:42:60:5b:d0:04:9c:
e8:1a:15:c4:a6:82:53:87:24:83:8a:05:55:a0:8f:
27:52:52:25:86:cd:df:69:fa:47:14:41:b2:46:7f:
fd:b0:da:ba:6a:aa:30:98:d6:27:d6:53:78:a2:b9:
38:b8:91:7a:91:5e:45:84:cf:a1:1a:c9:ce:7e:9d:
96:2f:77:58:90:8a:05:c0:1f:f9:e3:3b:29:88:46:
db:c5:d2:fa:4c:9b:aa:42:55:1e:85:27:85:f9:bf:
b5:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:0D:83:96:A1:B0:A7:36:36:6D:F0:4D:54:F5:69:81:9E:9B:7A:33
X509v3 Authority Key Identifier:
keyid:C6:7E:2A:46:E3:4F:49:14:33:C8:B6:2F:31:9B:90:2B:DD:FD:E8:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xn4qRuNPSRQzyLYvMZuQK9396DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/Vg2DlqGwpzY2bfBNVPVpgZ6bejM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/xn4qRuNPSRQzyLYvMZuQK9396DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.247.109.0/24
Signature Algorithm: sha256WithRSAEncryption
92:c6:a9:33:c1:54:dd:ff:ed:71:b4:68:8b:52:d4:6e:89:b3:
ed:fb:c4:17:4b:f0:40:ed:93:5d:f1:92:1d:15:b1:00:1a:28:
c0:07:8e:96:5e:e0:47:0e:c2:df:f0:38:d1:2b:07:a8:7b:f4:
ea:77:5b:45:2e:f9:97:c4:32:6b:5c:39:ae:e5:d5:36:5a:e2:
e2:ff:41:d7:5b:b9:d3:51:9e:02:5c:68:e2:61:fa:7e:0a:dc:
42:b5:21:52:7c:b9:47:8f:d2:4d:49:55:2e:35:54:f5:d2:6e:
72:49:5a:75:1a:d9:fb:77:5f:77:75:93:1b:2f:79:dd:2d:95:
70:cb:eb:db:57:9b:99:7a:7f:8d:37:a7:75:d1:ab:03:1f:24:
fc:5f:13:5f:c8:98:a7:a6:c4:45:51:03:78:0b:3c:7a:56:6c:
11:dc:5c:d0:75:fe:0b:84:5c:fc:49:50:5b:7b:a0:2d:22:47:
aa:5b:6d:6d:ce:34:86:7b:da:52:61:7f:34:66:92:11:cf:7c:
c9:45:1f:a7:11:09:c4:ad:7c:38:2d:bb:bd:0b:3d:6e:55:6e:
03:43:9d:2f:83:a5:4e:09:9e:02:b2:78:e4:66:1c:33:88:86:
fa:14:86:13:0e:8f:49:0d:42:8c:17:7d:ec:89:45:16:35:fa:
1a:8c:b6:56
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYwUoPNmt/vOme0RDqsYo8CoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2N2UyYTQ2ZTM0ZjQ5MTQzM2M4YjYyZjMxOWI5MDJiZGRm
ZGU4MzEwHhcNMjMxMTI4MDYzMjIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NjBkODM5NmExYjBhNzM2MzY2ZGYwNGQ1NGY1Njk4MTllOWI3YTMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsC5Ux1t1aALUPqSfM/MEYZ9AtPi6
sMWfTighbFKmgUMfoXiyXg+MvjBQM28Ob46V324k9MJiac6GHpP4chGKMosJd3M3
5blQLgkWhgN0MeneLOHBTEtgx1LQQxYtmXs4kRGgpFrfoTwJvR9qwd8MLMNvY+r9
EriXYx4xh4K3EY5qA0DxadhGqCYmoi5HOSNetz5M9+Yr7iSHtyT957ZCYFvQBJzo
GhXEpoJThySDigVVoI8nUlIlhs3fafpHFEGyRn/9sNq6aqowmNYn1lN4ork4uJF6
kV5FhM+hGsnOfp2WL3dYkIoFwB/54zspiEbbxdL6TJuqQlUehSeF+b+18wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFYNg5ahsKc2Nm3wTVT1aYGem3ozMB8GA1UdIwQY
MBaAFMZ+KkbjT0kUM8i2LzGbkCvd/egxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG40cVJ1TlBTUlF6eUxZdk1adVFLOTM5NkRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy84MGM1NjgtYmQxNS00ZjMyLThkZDQt
MDY2ODY2ZjJkZWQwLzEvVmcyRGxxR3dwelkyYmZCTlZQVnBnWjZiZWpNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy84MGM1NjgtYmQxNS00ZjMyLThkZDQtMDY2ODY2ZjJkZWQw
LzEveG40cVJ1TlBTUlF6eUxZdk1adVFLOTM5NkRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATfdtMA0G
CSqGSIb3DQEBCwUAA4IBAQCSxqkzwVTd/+1xtGiLUtRuibPt+8QXS/BA7ZNd8ZId
FbEAGijAB46WXuBHDsLf8DjRKweoe/Tqd1tFLvmXxDJrXDmu5dU2WuLi/0HXW7nT
UZ4CXGjiYfp+CtxCtSFSfLlHj9JNSVUuNVT10m5ySVp1Gtn7d193dZMbL3ndLZVw
y+vbV5uZen+NN6d10asDHyT8XxNfyJinpsRFUQN4Czx6VmwR3FzQdf4LhFz8SVBb
e6AtIkeqW21tzjSGe9pSYX80ZpIRz3zJRR+nEQnErXw4Lbu9Cz1uVW4DQ50vg6VO
CZ4CsnjkZhwziIb6FIYTDo9JDUKMF33siUUWNfoajLZW
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:39 2024 by rpki-client on console-fra.rpki-client.org