Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/vFBeMwWqq8ojy0IegQdfCIOqICQ.roa
File: vFBeMwWqq8ojy0IegQdfCIOqICQ.roa (raw, json)
Hash identifier: NeaFa+Jvjfvbuol3mjlSWiJLTy0xNcYkXiOl6+xBWF0=
Subject key identifier: BC:50:5E:33:05:AA:AB:CA:23:CB:42:1E:81:07:5F:08:83:AA:20:24
Certificate issuer: /CN=cd108c225f2478cd4230179890d07284be1636cd
Certificate serial: 018ED206886798804181844CE55450E6770F
Authority key identifier: CD:10:8C:22:5F:24:78:CD:42:30:17:98:90:D0:72:84:BE:16:36:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zRCMIl8keM1CMBeYkNByhL4WNs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/vFBeMwWqq8ojy0IegQdfCIOqICQ.roa
Signing time: Fri 12 Apr 2024 11:17:07 +0000
ROA not before: Fri 12 Apr 2024 11:17:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25198
IP address blocks: 45.91.224.0/24 maxlen: 24
185.202.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Apr 2024 03:47:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d2:06:88:67:98:80:41:81:84:4c:e5:54:50:e6:77:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd108c225f2478cd4230179890d07284be1636cd
Validity
Not Before: Apr 12 11:17:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc505e3305aaabca23cb421e81075f0883aa2024
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:16:3f:a9:35:97:b9:e1:af:7b:fd:7a:db:b6:
42:fa:2b:bb:11:82:0d:bf:a8:7c:c8:a5:73:34:cd:
71:e6:8f:20:91:a9:73:01:a5:59:3a:af:ea:5e:d2:
33:9a:8c:42:05:b9:8c:c6:dd:0a:5f:3c:f1:fc:9e:
ba:10:d5:1f:39:bc:fc:bd:e2:8f:13:31:6b:3f:8f:
45:6e:f5:03:75:19:bc:f4:60:84:1b:be:2a:b0:b3:
e1:2c:6d:99:81:84:90:d2:1b:51:3a:7b:ae:f7:bc:
47:28:a2:56:b1:07:b3:e1:e7:e4:5d:ec:6f:cd:5f:
1f:02:89:9e:1b:ec:50:62:fa:e3:fb:d1:74:a4:99:
17:bc:1f:a7:55:e2:01:50:fb:d5:80:6b:f3:b4:0d:
75:20:1a:3e:1f:5f:48:3a:4d:ca:b2:61:91:e4:c5:
b0:28:8d:54:89:82:51:38:e5:27:a6:61:51:31:6e:
65:63:e6:4a:51:1d:40:57:fa:cf:eb:15:f2:5f:88:
15:96:80:2f:d4:67:08:0e:99:b0:b5:86:24:dd:74:
bd:0c:ab:84:ef:99:a4:f7:53:62:ce:20:64:ef:6e:
91:cc:a2:9e:29:20:d5:d4:c9:83:1d:ca:f1:7b:18:
84:5c:17:de:e9:9d:a6:13:ae:e0:c5:18:27:57:8a:
1b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:50:5E:33:05:AA:AB:CA:23:CB:42:1E:81:07:5F:08:83:AA:20:24
X509v3 Authority Key Identifier:
keyid:CD:10:8C:22:5F:24:78:CD:42:30:17:98:90:D0:72:84:BE:16:36:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zRCMIl8keM1CMBeYkNByhL4WNs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/vFBeMwWqq8ojy0IegQdfCIOqICQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/zRCMIl8keM1CMBeYkNByhL4WNs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.224.0/24
185.202.100.0/24
Signature Algorithm: sha256WithRSAEncryption
48:0d:50:43:ed:b8:72:67:cb:05:ab:93:d7:a4:88:4e:cc:81:
18:a1:1b:12:20:e5:53:ba:aa:bf:ca:72:ec:dc:f8:94:cf:72:
4e:aa:b0:40:ae:1e:b9:0b:9b:f8:f6:02:fd:5f:76:5a:a2:06:
61:e6:c4:ee:5e:7a:ab:fb:f5:d0:a2:58:ab:97:f1:09:3a:6a:
9e:a4:81:c6:7a:fb:f6:6c:b2:1f:5b:e8:19:73:0a:17:1c:b1:
15:60:71:26:e5:a9:3d:0d:da:e4:12:05:00:24:ae:4e:d1:56:
d5:0c:38:e5:10:1f:84:7e:bf:1c:aa:75:18:f4:5e:34:06:4a:
09:96:70:10:db:81:16:8e:37:12:13:3c:43:8b:37:d6:f1:5a:
c6:9a:40:ad:ea:ac:01:99:b1:d1:60:86:39:85:6d:74:1e:51:
b1:61:4a:5a:d0:c3:cb:95:33:7c:4b:d3:17:13:7d:e2:3f:98:
3b:8a:5a:1b:40:54:ab:4e:31:a5:8b:b8:28:17:a2:a2:2d:33:
a7:bd:d9:36:0b:14:6b:75:b9:24:b3:9d:d4:c2:a3:f5:ca:31:
25:6e:bd:a9:a1:20:b3:82:48:3e:f9:e5:91:27:10:9e:f7:c9:
50:bc:e8:dd:60:23:99:2c:be:5f:48:e1:22:b0:5f:fa:f9:d9:
0d:94:1a:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:03 2024 by rpki-client on console-ams.rpki-client.org