Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/vuqha-i1uXvyzQNBVYavDBgHV-I.roa
File: vuqha-i1uXvyzQNBVYavDBgHV-I.roa (raw, json)
Hash identifier: 8+rBYyt4akTMCkLrtqLt+mKrwX5csNlMJ0sQmFc6GTs=
Subject key identifier: BE:EA:A1:6B:E8:B5:B9:7B:F2:CD:03:41:55:86:AF:0C:18:07:57:E2
Certificate issuer: /CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Certificate serial: 0188C3BF730D58B7F2EAD4ACD39A23AC68E6
Authority key identifier: F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/vuqha-i1uXvyzQNBVYavDBgHV-I.roa
Signing time: Fri 16 Jun 2023 10:28:03 +0000
ROA not before: Fri 16 Jun 2023 10:28:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198605
IP address blocks: 77.234.40.0/21 maxlen: 24
77.234.40.0/24 maxlen: 24
37.156.184.0/22 maxlen: 24
195.74.76.0/24 maxlen: 24
185.189.94.0/24 maxlen: 24
185.189.92.0/22 maxlen: 24
69.94.64.0/20 maxlen: 24
31.14.74.0/24 maxlen: 24
31.14.73.0/24 maxlen: 24
31.14.72.0/24 maxlen: 24
91.213.143.0/24 maxlen: 24
185.167.64.0/24 maxlen: 24
185.51.228.0/22 maxlen: 24
5.45.56.0/21 maxlen: 24
2a0b:e180::/29 maxlen: 45
2001:67c:284::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c3:bf:73:0d:58:b7:f2:ea:d4:ac:d3:9a:23:ac:68:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Validity
Not Before: Jun 16 10:28:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=beeaa16be8b5b97bf2cd03415586af0c180757e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:69:aa:a1:82:bc:b5:cd:ec:9c:91:24:19:1b:
96:f6:f3:b8:a1:a2:83:65:d2:49:aa:64:0e:53:10:
f6:ad:d5:e1:3f:47:38:ca:cb:ea:04:db:79:e6:ed:
85:75:a1:89:68:dc:55:59:7b:60:1d:85:4c:34:f3:
7f:47:06:de:9f:74:41:fd:96:1a:d1:9e:8c:81:e3:
52:4d:10:29:d8:95:d1:9e:33:cc:89:9f:5e:45:4d:
90:3c:89:ce:e3:f6:67:41:9a:29:25:b2:59:25:74:
d6:a2:4e:6a:11:31:f3:f1:da:22:10:79:28:90:8b:
84:9f:58:94:63:ec:b0:c9:b6:f4:21:6c:18:30:35:
d2:54:39:ea:7b:1e:f5:c4:07:19:5e:65:03:cc:f9:
2b:74:1a:54:fc:44:1d:37:e2:0a:08:36:3c:ae:e3:
1d:8b:02:99:c1:dc:fc:8a:5f:28:61:67:c7:ef:ce:
18:bf:52:6b:54:d4:46:60:b7:be:cc:f8:89:28:ee:
7c:e7:1a:f3:1b:d2:4d:c8:c0:57:12:68:34:98:2e:
c9:27:56:74:98:ef:4b:ba:96:aa:6d:69:b4:9a:ce:
14:99:38:5a:53:44:46:3e:5a:0a:d9:56:20:9f:1b:
a1:bf:f4:cb:aa:66:70:6f:78:17:b3:60:06:c9:c6:
b8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:EA:A1:6B:E8:B5:B9:7B:F2:CD:03:41:55:86:AF:0C:18:07:57:E2
X509v3 Authority Key Identifier:
keyid:F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/vuqha-i1uXvyzQNBVYavDBgHV-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/1-Pc8XA86EGqLp9_z41yBbRB43HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.45.56.0/21
31.14.72.0-31.14.74.255
37.156.184.0/22
69.94.64.0/20
77.234.40.0/21
91.213.143.0/24
185.51.228.0/22
185.167.64.0/24
185.189.92.0/22
195.74.76.0/24
IPv6:
2001:67c:284::/48
2a0b:e180::/29
Signature Algorithm: sha256WithRSAEncryption
33:d9:80:d9:0d:a0:a6:d8:f5:46:82:e6:70:00:58:1e:03:66:
2c:38:df:62:38:5f:0e:92:23:e5:8e:ae:5f:7b:47:10:3b:89:
a6:ab:5e:03:97:23:dc:da:ed:a5:2b:49:30:43:0d:78:fa:96:
d9:b2:a3:3a:5a:d1:bd:f8:53:29:b8:b2:b6:12:f1:e3:19:49:
16:de:78:03:1a:96:2d:b7:4a:2d:0c:00:76:4b:fc:ee:68:bc:
72:a0:79:ae:27:0b:fd:45:c9:62:d7:b5:57:78:82:c2:a8:eb:
1d:6f:1c:57:95:3c:23:da:81:12:7c:d3:69:5f:c3:fd:e0:90:
29:11:4c:4d:79:29:ef:8f:b9:ad:af:9e:9e:53:d0:02:4e:13:
2b:34:64:00:a9:3b:9a:a7:b7:4f:58:3d:ec:15:d5:b7:34:04:
88:1c:85:41:b7:46:d6:36:f3:96:8b:6c:32:30:7a:75:5e:f5:
51:66:e0:64:a5:6c:f9:78:14:1b:35:3c:e2:03:2b:61:7e:4c:
47:95:8d:a8:51:5e:99:4a:7c:df:2f:7f:7d:34:69:71:08:cb:
c3:ce:e7:c3:2f:a1:7a:7b:13:07:21:08:ed:ff:38:5c:21:25:
78:ab:30:a2:1e:48:a4:e7:91:49:82:a2:d1:0b:ab:95:50:bb:
20:f1:17:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:31:59 2024 by rpki-client on console-ams.rpki-client.org