Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/VNWW5EapBR2kgfibHptkSx5FcVc.roa
File: VNWW5EapBR2kgfibHptkSx5FcVc.roa (raw, json)
Hash identifier: wGP4uuM4snPSoPxOTV8fvSO5fKrq4bWPFJIo3KdqBrQ=
Subject key identifier: 54:D5:96:E4:46:A9:05:1D:A4:81:F8:9B:1E:9B:64:4B:1E:45:71:57
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 01856E8B2796DED6CBDD50E775B939156F02
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/VNWW5EapBR2kgfibHptkSx5FcVc.roa
Signing time: Sun 01 Jan 2023 18:14:51 +0000
ROA not before: Sun 01 Jan 2023 18:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209996
IP address blocks: 192.144.35.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:27:96:de:d6:cb:dd:50:e7:75:b9:39:15:6f:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 18:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54d596e446a9051da481f89b1e9b644b1e457157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a1:66:40:c1:8d:de:28:00:f2:37:f0:4b:a3:
ad:dd:12:8e:a1:15:f5:df:23:25:40:2b:df:d5:51:
ab:04:1e:49:b0:11:c4:37:0e:b3:79:18:6b:91:f4:
b6:e7:42:a1:96:49:f1:ad:f6:26:8d:30:b6:46:71:
a7:4e:bb:9a:c3:05:27:56:0b:6f:1d:b5:b4:5c:83:
b6:6e:46:7b:01:97:62:fb:bd:f6:ce:a4:e3:f2:b4:
af:53:14:8c:66:15:8c:35:28:57:89:1f:ad:30:98:
a1:fd:3c:11:e9:db:e7:06:9d:fd:cc:af:96:32:a0:
b7:a5:85:b2:ba:9c:71:19:f5:f7:ef:45:b9:c6:cd:
34:ef:41:e1:3a:88:e0:c4:13:7f:8f:02:73:48:d5:
7b:87:35:87:21:88:ca:dd:89:7e:6d:ca:6b:dc:51:
db:26:ee:8a:26:cf:dc:a9:2d:23:0f:00:f6:bd:00:
9e:13:41:db:21:91:fc:3d:c4:2a:f0:ca:71:0a:76:
31:60:48:ba:74:28:19:0f:e7:42:77:2c:ab:ce:1a:
74:20:c4:ff:36:99:01:17:c0:63:5f:f3:13:b9:cb:
ed:63:f1:55:45:3b:88:8c:00:6f:67:77:b5:e0:65:
9b:04:6f:6d:2e:8b:a6:de:b2:c4:48:40:94:80:ae:
68:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:D5:96:E4:46:A9:05:1D:A4:81:F8:9B:1E:9B:64:4B:1E:45:71:57
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/VNWW5EapBR2kgfibHptkSx5FcVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.144.35.0/24
Signature Algorithm: sha256WithRSAEncryption
14:30:de:f2:85:97:1a:57:7d:08:a8:fb:6a:ec:d7:0f:9c:cc:
d3:42:67:8a:e9:ee:d3:73:36:9b:f7:7b:14:5a:e6:54:2c:f2:
49:4c:29:73:b2:02:3d:62:33:1e:73:ec:a1:f6:87:fc:e4:cb:
7b:67:7a:c4:10:93:c5:01:54:30:1c:5b:c5:e4:8d:ac:79:64:
81:7c:37:82:c7:73:1b:0b:36:76:36:b2:22:9c:9a:83:4e:62:
00:c0:9b:76:a5:7b:da:89:af:f0:bc:ba:c3:36:94:b7:91:2d:
b9:84:81:da:df:03:2d:bd:cb:1f:bb:13:68:53:95:ea:76:d5:
0b:2f:08:4b:c9:81:93:ea:48:8a:bb:b6:52:7a:29:a2:44:e8:
8f:fc:22:35:7c:ba:78:6f:b1:52:05:08:1c:ca:b0:5e:25:39:
c7:f2:c9:d8:bd:39:e0:df:d8:96:e9:c2:45:0d:f2:0f:8f:b2:
89:a4:fe:9b:c0:96:39:9d:e2:35:29:9b:9f:68:4f:08:4b:85:
70:41:b9:3f:4d:71:34:9e:ba:f3:3b:75:34:e2:13:e0:e6:c3:
90:f8:ae:38:7f:c0:bc:d1:2d:1f:68:0b:ed:91:18:36:40:fb:
8f:3f:70:40:02:d2:3d:9f:76:6d:d8:70:ef:d8:f6:47:21:f5:
8c:88:f1:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:58 2024 by rpki-client on console-ams.rpki-client.org