Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/VGlIP3ol6Y5DsQkYpq7p16tw_84.roa
File: VGlIP3ol6Y5DsQkYpq7p16tw_84.roa (raw, json)
Hash identifier: ez23tsfGMyIevhDcriEdiLEyzJUtVpPzai/i+BipBL0=
Subject key identifier: 54:69:48:3F:7A:25:E9:8E:43:B1:09:18:A6:AE:E9:D7:AB:70:FF:CE
Certificate issuer: /CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Certificate serial: 019282B23CB8D6DCCB1F3537CDB88A4AF276
Authority key identifier: D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/VGlIP3ol6Y5DsQkYpq7p16tw_84.roa
Signing time: Sat 12 Oct 2024 21:46:11 +0000
ROA not before: Sat 12 Oct 2024 21:46:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 147.185.197.0/24 maxlen: 24
207.244.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 13 Oct 2024 15:35:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:82:b2:3c:b8:d6:dc:cb:1f:35:37:cd:b8:8a:4a:f2:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Validity
Not Before: Oct 12 21:46:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5469483f7a25e98e43b10918a6aee9d7ab70ffce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:08:a4:33:0e:b3:26:1b:0f:e9:90:89:17:5b:
8d:5c:a8:bf:72:b2:77:5b:e0:70:7d:7b:53:1e:5f:
a9:3b:a7:4d:6f:58:36:9d:37:a6:42:1a:77:27:dd:
49:58:f0:d5:cb:2a:ac:20:7e:a6:27:0a:c5:78:cb:
68:bd:fa:2b:4f:69:1e:38:7e:03:92:d4:b8:53:b5:
48:5a:e5:6e:98:7a:27:c8:91:5e:be:9d:5f:4d:f0:
04:11:15:7c:4b:fc:ac:ce:b1:fc:54:43:50:93:b7:
a1:fc:96:6b:99:80:dd:36:b2:e0:30:02:ca:a5:de:
64:b7:56:e3:52:f1:2d:f8:9c:57:9b:e6:b9:98:4b:
8a:47:1e:6d:9c:1b:e3:17:aa:97:64:4f:2d:6c:fa:
84:56:7a:8c:91:b9:1d:ce:92:c7:0c:69:e4:b5:5d:
fa:14:c3:35:15:6e:02:7c:1c:44:6e:6b:d9:30:9b:
85:e0:b0:ca:7e:bd:68:99:c2:cd:d2:3f:c8:84:e8:
44:1a:91:df:12:bb:4f:42:1c:d2:2c:ca:c5:9c:ab:
0e:0d:f9:bc:b8:15:be:a1:eb:af:d2:d6:cf:ea:1a:
c1:f8:3e:5e:1d:0b:6a:7c:8b:c6:ae:0f:67:26:f9:
e8:86:13:21:c7:3e:48:27:d9:d1:a1:e8:ff:55:d0:
14:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:69:48:3F:7A:25:E9:8E:43:B1:09:18:A6:AE:E9:D7:AB:70:FF:CE
X509v3 Authority Key Identifier:
keyid:D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/VGlIP3ol6Y5DsQkYpq7p16tw_84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.185.197.0/24
207.244.197.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:68:84:2a:c1:e0:a9:1f:a7:6f:e0:b3:21:b0:99:7a:14:af:
77:cd:84:0f:18:bc:4c:95:22:57:90:3c:9f:18:17:66:0f:57:
6c:d7:17:f2:db:46:8d:cb:77:c7:c6:57:d0:08:6b:6c:f5:80:
a2:8b:c5:a1:9c:75:b5:40:c7:2b:20:df:51:e0:4a:0b:ea:d4:
0b:95:04:be:af:30:d6:90:d4:d9:7c:61:39:46:23:cd:31:13:
78:c2:7c:04:06:d9:20:52:07:4f:da:14:40:60:02:e5:13:f6:
c5:a2:5d:97:68:8e:28:4c:36:1e:c8:2d:ff:51:12:1b:5b:70:
56:fc:1d:af:df:98:65:67:d5:8f:77:df:29:9b:c4:28:20:db:
4a:39:00:9c:7a:00:60:b8:9f:11:3b:b3:1c:42:95:e9:40:08:
01:2b:fc:38:7c:3b:44:cd:95:e8:f8:60:f4:33:db:8f:d5:8b:
df:d6:82:f0:79:41:7d:08:bc:b3:ba:8f:b9:94:fe:70:15:6c:
69:80:4f:2b:43:5a:c5:07:07:d1:6e:00:d0:a5:59:e9:2b:73:
c8:34:52:97:b8:e3:e0:65:9d:38:5d:72:9c:fd:88:2e:b8:29:
18:23:de:62:67:dd:02:56:09:51:43:11:92:b9:95:f2:67:8b:
75:39:3d:64
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZKCsjy41tzLHzU3zbiKSvJ2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwOGRhOWNmMDBkNGQ1OGI4NTRmZmM2MjAxMGYyMzViMDZk
ZjM1NGEwHhcNMjQxMDEyMjE0NjExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NDY5NDgzZjdhMjVlOThlNDNiMTA5MThhNmFlZTlkN2FiNzBmZmNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2wikMw6zJhsP6ZCJF1uNXKi/crJ3
W+BwfXtTHl+pO6dNb1g2nTemQhp3J91JWPDVyyqsIH6mJwrFeMtovforT2keOH4D
ktS4U7VIWuVumHonyJFevp1fTfAEERV8S/yszrH8VENQk7eh/JZrmYDdNrLgMALK
pd5kt1bjUvEt+JxXm+a5mEuKRx5tnBvjF6qXZE8tbPqEVnqMkbkdzpLHDGnktV36
FMM1FW4CfBxEbmvZMJuF4LDKfr1omcLN0j/IhOhEGpHfErtPQhzSLMrFnKsODfm8
uBW+oeuv0tbP6hrB+D5eHQtqfIvGrg9nJvnohhMhxz5IJ9nRoej/VdAUSQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFRpSD96JemOQ7EJGKau6dercP/OMB8GA1UdIwQY
MBaAFNCNqc8A1NWLhU/8YgEPI1sG3zVKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEkycHp3RFUxWXVGVF94aUFROGpXd2JmTlVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9mZWJlZjgtYTBlYS00YzdlLTg4MDYt
MjBlMTk3ODBjYjJlLzEvVkdsSVAzb2w2WTVEc1FrWXBxN3AxNnR3Xzg0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS9mZWJlZjgtYTBlYS00YzdlLTg4MDYtMjBlMTk3ODBjYjJl
LzEvMEkycHp3RFUxWXVGVF94aUFROGpXd2JmTlVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAk7nFAwQA
z/TFMA0GCSqGSIb3DQEBCwUAA4IBAQB/aIQqweCpH6dv4LMhsJl6FK93zYQPGLxM
lSJXkDyfGBdmD1ds1xfy20aNy3fHxlfQCGts9YCii8WhnHW1QMcrIN9R4EoL6tQL
lQS+rzDWkNTZfGE5RiPNMRN4wnwEBtkgUgdP2hRAYALlE/bFol2XaI4oTDYeyC3/
URIbW3BW/B2v35hlZ9WPd98pm8QoINtKOQCcegBguJ8RO7McQpXpQAgBK/w4fDtE
zZXo+GD0M9uP1Yvf1oLweUF9CLyzuo+5lP5wFWxpgE8rQ1rFBwfRbgDQpVnpK3PI
NFKXuOPgZZ04XXKc/YguuCkYI95iZ90CVglRQxGSuZXyZ4t1OT1k
-----END CERTIFICATE-----
Generated at Sun Oct 13 19:55:36 2024 by rpki-client on console-ams.rpki-client.org