Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/vulPJvxHPXFOp4fhnyghwBgLJ9M.roa
File: vulPJvxHPXFOp4fhnyghwBgLJ9M.roa (raw, json)
Hash identifier: 91lj9aBcrpe1U1Gj8vkG9g13drfLcXSEc7xuywaMIqo=
Subject key identifier: BE:E9:4F:26:FC:47:3D:71:4E:A7:87:E1:9F:28:21:C0:18:0B:27:D3
Certificate issuer: /CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Certificate serial: 0192CDF680ED9C7BF305BE4D3A0EF8D32EF8
Authority key identifier: 49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/vulPJvxHPXFOp4fhnyghwBgLJ9M.roa
Signing time: Sun 27 Oct 2024 12:32:17 +0000
ROA not before: Sun 27 Oct 2024 12:32:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215597
IP address blocks: 82.199.222.0/23 maxlen: 23
82.199.222.0/24 maxlen: 24
82.199.223.0/24 maxlen: 24
185.95.206.0/24 maxlen: 24
185.95.207.0/24 maxlen: 24
212.95.142.0/24 maxlen: 24
212.95.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Oct 2024 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:cd:f6:80:ed:9c:7b:f3:05:be:4d:3a:0e:f8:d3:2e:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Validity
Not Before: Oct 27 12:32:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bee94f26fc473d714ea787e19f2821c0180b27d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0b:e5:2c:77:a4:ca:cf:65:fb:5e:88:d8:5d:
1b:d8:30:f0:ad:21:f9:d5:1d:b5:04:b9:61:d9:56:
80:af:e0:0d:8b:20:5d:66:ce:29:c9:c3:51:66:2a:
da:ac:ce:98:a3:b9:fc:84:74:ef:b7:26:43:5d:ce:
40:dd:bf:63:71:7e:84:62:4b:82:19:93:91:69:16:
63:a9:80:51:92:c6:0e:62:b3:38:2c:67:fa:0d:12:
64:a6:89:04:1a:e0:f2:6a:8d:26:e8:cb:1f:da:8c:
19:c8:bc:2d:ca:04:fa:b6:22:9d:98:60:3b:18:0b:
29:a5:93:42:18:ee:e7:da:b0:ef:1a:27:9b:31:22:
17:a5:4b:ce:90:4a:d1:a5:6f:6b:11:9f:fa:c7:1a:
8c:03:26:d3:90:e5:58:3c:4e:ee:f9:a4:87:a4:6a:
12:7a:2e:0f:55:ed:04:1f:7d:6f:c7:c9:2d:3e:ac:
f0:c6:7c:fa:24:1a:00:d7:fd:5b:75:30:ae:1b:25:
19:96:73:c6:0d:69:20:25:da:a7:6a:e2:15:c9:18:
56:4d:9d:32:b0:98:95:d2:52:d0:25:d3:53:cc:5c:
96:36:83:76:9b:07:38:4a:1b:82:aa:3d:97:21:35:
54:42:dd:fa:d6:30:06:19:88:2a:5c:70:77:6e:d6:
ef:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:E9:4F:26:FC:47:3D:71:4E:A7:87:E1:9F:28:21:C0:18:0B:27:D3
X509v3 Authority Key Identifier:
keyid:49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/vulPJvxHPXFOp4fhnyghwBgLJ9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/Sd2PGmKl1_gCEt4PPv51svozj_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.199.222.0/23
185.95.206.0/23
212.95.142.0/24
212.95.148.0/24
Signature Algorithm: sha256WithRSAEncryption
af:2e:ba:c9:e0:e3:a7:e6:3f:9d:6c:a7:d3:41:2b:1a:61:f0:
cd:78:c5:ec:ea:ac:2b:2b:31:b9:d1:f6:c8:44:23:a7:f0:5a:
70:7f:3f:ea:a0:b8:80:e6:a9:eb:bd:ff:cd:ba:ad:34:db:e0:
de:1d:5c:bb:8d:11:19:14:85:86:f3:2e:63:15:a3:06:de:9f:
c4:0f:cf:dd:6e:03:09:4a:6c:cb:62:1b:d6:7f:03:4b:c8:02:
ba:f1:c8:bb:0d:5b:35:c4:9b:d8:83:32:a0:9e:37:75:0b:42:
ca:dd:6a:d8:61:14:f1:1a:8c:15:85:39:50:e5:68:f3:85:2f:
e9:c9:a9:dd:71:31:28:04:2d:db:c7:52:74:5a:ef:c9:5c:0e:
1f:6b:b6:bb:f2:64:d6:71:9c:11:a6:85:e5:28:f3:86:bd:25:
f5:e9:09:d1:9e:4f:f8:66:d7:a5:31:d4:5f:b5:a5:d1:02:f4:
a6:73:6c:db:09:7a:b5:b9:3a:49:e2:d6:6f:f9:77:b9:c0:21:
28:f5:97:d8:03:88:f4:a3:97:fa:64:00:de:8a:1d:66:39:28:
6b:3b:7d:d7:5d:4f:67:5b:1c:f3:04:7b:60:ac:ef:12:5f:63:
17:f0:0d:93:e3:34:0e:a6:04:be:cf:8e:0b:a0:8d:39:cd:d3:
10:c4:4e:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 28 12:17:12 2024 by rpki-client on console-ams.rpki-client.org