Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5fd72f-ef77-4537-89e9-9fbd963a513c/1/vnl68hWhfI0-GUVgdGW1jI9uPXY.roa
File: vnl68hWhfI0-GUVgdGW1jI9uPXY.roa (raw, json)
Hash identifier: s6oHqlDcSSQr6XszOSs+eAzQ2dNs04AbRAQgVZkkb0c=
Subject key identifier: BE:79:7A:F2:15:A1:7C:8D:3E:19:45:60:74:65:B5:8C:8F:6E:3D:76
Certificate issuer: /CN=b039ab8298fa363ae837e530028969cc5cbf104e
Certificate serial: 0190DEBA7182930647D796FA757E7F1FBD09
Authority key identifier: B0:39:AB:82:98:FA:36:3A:E8:37:E5:30:02:89:69:CC:5C:BF:10:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sDmrgpj6NjroN-UwAolpzFy_EE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5fd72f-ef77-4537-89e9-9fbd963a513c/1/vnl68hWhfI0-GUVgdGW1jI9uPXY.roa
Signing time: Tue 23 Jul 2024 08:34:39 +0000
ROA not before: Tue 23 Jul 2024 08:34:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214865
IP address blocks: 62.169.139.0/24 maxlen: 24
2a14:5140::/32 maxlen: 32
2a14:5140:1::/48 maxlen: 48
2a14:5140:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 26 Jul 2024 08:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:de:ba:71:82:93:06:47:d7:96:fa:75:7e:7f:1f:bd:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b039ab8298fa363ae837e530028969cc5cbf104e
Validity
Not Before: Jul 23 08:34:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be797af215a17c8d3e1945607465b58c8f6e3d76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:99:b1:08:a2:99:30:2a:41:a3:22:77:c6:f1:
12:3c:4c:6e:fc:dc:e2:b0:da:f4:1d:38:47:ed:3f:
23:8b:1d:10:00:b6:e2:d9:2c:23:1c:37:66:b0:2d:
57:07:5f:27:48:3b:42:52:a9:dc:05:fd:92:d2:a6:
fa:29:d6:f4:67:a4:11:bb:5f:69:e1:9f:58:67:c6:
29:0f:40:09:5f:89:7b:8e:07:a4:40:df:05:7c:f7:
e1:37:36:b5:a7:b4:08:73:1a:3c:02:d9:02:97:e4:
89:e1:ba:e9:b9:34:77:2b:1c:ed:45:70:23:64:66:
4e:a4:eb:a9:f5:99:14:66:c9:f5:1d:6b:9a:34:7a:
c8:f9:b0:c1:a5:26:67:1c:ec:fc:8e:e4:54:a8:e6:
41:91:04:59:3e:9a:f9:2d:c8:b6:7e:d8:be:80:ca:
da:1c:f2:a8:b6:6d:88:22:65:70:5e:19:79:b5:ee:
d2:21:50:d3:36:b9:a7:fb:f0:f2:3e:df:5e:2d:6c:
af:a8:06:72:f6:5b:aa:a1:6e:6a:13:23:ae:4c:d2:
28:52:b7:99:ad:f0:bf:d5:0b:24:07:92:eb:7f:9c:
61:ef:95:70:a4:18:f0:d2:1a:be:7a:c9:57:b7:19:
76:a8:a1:cb:db:9c:3a:f7:ff:72:1a:ce:c5:df:5f:
8a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:79:7A:F2:15:A1:7C:8D:3E:19:45:60:74:65:B5:8C:8F:6E:3D:76
X509v3 Authority Key Identifier:
keyid:B0:39:AB:82:98:FA:36:3A:E8:37:E5:30:02:89:69:CC:5C:BF:10:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sDmrgpj6NjroN-UwAolpzFy_EE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5fd72f-ef77-4537-89e9-9fbd963a513c/1/vnl68hWhfI0-GUVgdGW1jI9uPXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5fd72f-ef77-4537-89e9-9fbd963a513c/1/sDmrgpj6NjroN-UwAolpzFy_EE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.169.139.0/24
IPv6:
2a14:5140::/32
Signature Algorithm: sha256WithRSAEncryption
72:04:a8:27:05:42:ac:b7:47:7e:c4:b8:7c:91:25:cd:3f:bf:
fa:55:aa:cf:4b:d1:2f:e4:15:4d:08:3a:cd:73:f8:49:96:39:
46:e1:77:85:fa:2e:9f:17:46:d8:a1:b5:52:ce:47:b1:e4:2c:
e1:e8:d6:f6:bb:77:1a:5f:4e:65:c5:bb:aa:63:70:7a:b5:51:
23:fc:0c:43:bd:c3:b1:5b:d4:34:04:d1:db:68:66:b0:c1:fb:
e3:d2:8f:d8:12:3a:71:dc:7a:05:3e:a2:e5:bb:6d:1c:68:ab:
0b:d0:62:11:00:86:fa:71:64:ee:72:60:63:dd:33:2e:39:6c:
39:a6:c8:51:4a:26:12:e1:b6:b0:d3:5e:02:b4:cc:f5:9f:43:
46:80:5c:4b:3c:23:68:57:6b:1a:ec:ed:ff:39:df:d8:2f:0b:
6b:14:76:b2:e8:f7:77:93:95:30:b6:90:49:2e:66:51:c8:b7:
b6:11:42:a4:67:8a:71:82:e4:2e:bf:5c:a2:53:1c:f1:4e:ea:
f3:5e:e5:70:44:af:4c:5d:7f:60:72:b9:dd:5e:45:e5:e3:a0:
30:10:52:85:3e:de:34:11:80:cd:c6:91:46:7c:95:12:42:73:
d7:66:c0:cd:f0:18:74:ec:40:2c:3a:bb:4d:82:f2:4a:c7:95:
79:b2:36:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 10:21:38 2024 by rpki-client on console-fra.rpki-client.org