Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/vMVzSwFLeizB37ac8aGZJ62c3Z4.roa
File: vMVzSwFLeizB37ac8aGZJ62c3Z4.roa (raw, json)
Hash identifier: Ln7TpMM/4s2fa5OXwJlRccaOCUWMTc31SrSgfql+yuE=
Subject key identifier: BC:C5:73:4B:01:4B:7A:2C:C1:DF:B6:9C:F1:A1:99:27:AD:9C:DD:9E
Certificate issuer: /CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Certificate serial: 018F14956FF304AB67122D3E8527FF9CCE96
Authority key identifier: 00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/vMVzSwFLeizB37ac8aGZJ62c3Z4.roa
Signing time: Thu 25 Apr 2024 09:28:08 +0000
ROA not before: Thu 25 Apr 2024 09:28:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30962
IP address blocks: 45.129.240.0/22 maxlen: 22
45.129.241.0/24 maxlen: 24
62.108.32.0/20 maxlen: 20
62.108.32.0/24 maxlen: 24
62.108.48.0/20 maxlen: 20
84.19.0.0/19 maxlen: 19
89.107.64.0/21 maxlen: 21
91.190.144.0/21 maxlen: 21
91.230.27.0/24 maxlen: 24
91.230.47.0/24 maxlen: 24
93.190.88.0/21 maxlen: 21
93.190.95.0/24 maxlen: 24
185.147.216.0/22 maxlen: 22
194.113.216.0/23 maxlen: 23
195.62.20.0/23 maxlen: 23
195.191.114.0/23 maxlen: 23
195.225.240.0/22 maxlen: 22
2a00:f70::/32 maxlen: 32
2a03:f200::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 26 Apr 2024 09:56:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:14:95:6f:f3:04:ab:67:12:2d:3e:85:27:ff:9c:ce:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Validity
Not Before: Apr 25 09:28:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bcc5734b014b7a2cc1dfb69cf1a19927ad9cdd9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:97:1b:a3:b6:a1:7f:34:58:e9:8d:d7:e8:0b:
cf:28:b8:45:fb:b3:78:31:23:53:97:68:1d:9e:93:
ef:03:d3:e1:49:62:d9:4f:b9:f1:fa:11:b8:f4:33:
30:21:50:47:59:61:6a:66:08:76:46:65:78:ca:11:
bc:0d:b5:a0:a9:92:35:d6:22:bb:ac:44:27:43:16:
68:a4:ea:6b:d8:b3:c0:e9:cc:99:7d:8d:a5:ed:c9:
81:19:99:bb:7f:e4:30:65:e7:80:04:8e:ea:c4:71:
a8:f5:6c:05:60:7e:5b:11:79:ae:79:ff:aa:fa:db:
fd:26:d8:41:de:1c:4e:b8:2a:47:2d:4a:a0:8b:f1:
8b:1f:1c:d0:a3:b6:59:e2:3a:83:60:d2:d7:65:cb:
52:0f:cc:bf:b2:92:0f:95:60:3d:ab:5f:e3:4f:02:
c7:7c:5c:92:42:e5:bb:c4:b0:29:40:ac:46:d1:e3:
1a:db:e6:21:28:20:9c:bb:e6:aa:d0:e9:8e:87:19:
6e:48:ef:af:a5:78:5c:fe:fc:b6:7a:6d:27:fb:32:
ba:80:70:84:99:6a:7d:74:1d:21:32:84:54:a9:01:
da:2b:05:6a:7c:15:d1:33:06:7e:f0:58:01:46:b7:
1f:4e:6f:1a:e4:84:e5:df:8c:d1:f1:ea:87:fa:57:
ee:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:C5:73:4B:01:4B:7A:2C:C1:DF:B6:9C:F1:A1:99:27:AD:9C:DD:9E
X509v3 Authority Key Identifier:
keyid:00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/vMVzSwFLeizB37ac8aGZJ62c3Z4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/ACZHyAH7WPz6rBNbtI9eYf6n5WY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.240.0/22
62.108.32.0/19
84.19.0.0/19
89.107.64.0/21
91.190.144.0/21
91.230.27.0/24
91.230.47.0/24
93.190.88.0/21
185.147.216.0/22
194.113.216.0/23
195.62.20.0/23
195.191.114.0/23
195.225.240.0/22
IPv6:
2a00:f70::/32
2a03:f200::/32
Signature Algorithm: sha256WithRSAEncryption
1d:0a:01:df:d7:a6:25:78:3e:43:10:a0:a1:fd:a4:bc:76:52:
a3:d6:b3:0d:e1:f3:55:7d:43:27:86:ca:c3:0f:a8:04:9f:99:
8f:42:70:ab:6e:8e:47:0b:71:8d:a7:3b:7c:0d:1d:22:c0:12:
9b:da:7e:81:f7:68:96:86:0f:2a:89:56:dd:31:51:94:85:30:
64:71:3e:cf:d9:e4:f6:52:bf:06:04:e4:9b:c4:f1:b7:d4:81:
07:f7:e1:06:9e:5b:41:ae:bd:eb:bb:3f:00:9e:eb:c8:0c:cc:
dd:7a:86:7b:90:f3:59:91:c5:2f:fd:f8:e0:c1:ec:41:77:b9:
e8:60:5b:22:c9:28:38:3a:03:b9:09:bd:a5:0e:48:19:4d:62:
39:45:12:88:c4:98:74:1b:4d:3c:fe:eb:e3:e0:c6:8c:b3:14:
a1:bf:8d:53:d8:c5:92:61:b1:af:f3:e3:09:cf:de:60:f9:c7:
d8:67:32:61:09:8b:db:1d:26:e8:de:39:01:ef:e6:66:b2:5b:
8d:af:32:b5:64:df:61:16:5e:49:ec:40:4e:1c:57:d5:9e:39:
b0:82:87:0d:3e:40:f5:67:fe:4e:b6:88:a8:94:eb:62:c5:35:
51:e7:fb:06:1f:56:af:0a:6e:56:14:62:80:d5:13:63:67:91:
a7:4b:cc:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:37 2024 by rpki-client on console-fra.rpki-client.org