Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/vefttEUcqR7vdd1c-nstgQLGGHk.roa
File: vefttEUcqR7vdd1c-nstgQLGGHk.roa (raw, json)
Hash identifier: uKoaZQuONIrFgo3gFqUBIighB2XsEz2TYlpeJNacOK8=
Subject key identifier: BD:E7:ED:B4:45:1C:A9:1E:EF:75:DD:5C:FA:7B:2D:81:02:C6:18:79
Certificate issuer: /CN=5271438e23ce925e66c259981221b5b683a2f08f
Certificate serial: 01856BD3666B2620031542F966A6C9914C01
Authority key identifier: 52:71:43:8E:23:CE:92:5E:66:C2:59:98:12:21:B5:B6:83:A2:F0:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UnFDjiPOkl5mwlmYEiG1toOi8I8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/vefttEUcqR7vdd1c-nstgQLGGHk.roa
Signing time: Sun 01 Jan 2023 05:34:54 +0000
ROA not before: Sun 01 Jan 2023 05:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41940
IP address blocks: 194.60.77.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d3:66:6b:26:20:03:15:42:f9:66:a6:c9:91:4c:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5271438e23ce925e66c259981221b5b683a2f08f
Validity
Not Before: Jan 1 05:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bde7edb4451ca91eef75dd5cfa7b2d8102c61879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c7:a7:df:06:b9:fc:35:0a:0d:ac:42:73:c5:
5c:bf:6e:2c:56:3d:f1:bb:3a:8a:01:29:6a:6e:c9:
55:28:86:d6:71:e7:e6:57:b8:5c:03:06:50:35:58:
d2:68:28:f4:b8:7e:18:57:59:54:b3:38:69:62:33:
76:87:7f:ac:12:86:83:d7:54:a5:c0:df:be:5f:d7:
ec:78:a4:60:25:a4:8f:ae:aa:43:1a:a6:0f:d3:23:
51:63:9d:25:52:53:98:02:1a:4f:87:29:03:90:cd:
c6:de:b0:61:6a:81:28:2b:c6:d4:97:e9:04:cb:26:
2b:31:7c:50:6a:bf:8c:db:13:2b:cb:dd:f1:46:c4:
c6:9c:7e:ba:3e:fe:ea:8c:1c:13:60:d9:77:b0:2d:
d0:84:b0:2b:44:77:13:76:28:82:d9:2b:5f:0d:db:
6d:49:56:33:ea:2e:fc:55:b7:77:c3:5e:ad:5e:af:
09:2c:82:ea:3a:2e:8f:ba:d4:2f:46:08:d8:d1:1c:
d2:2c:6d:48:7a:19:d2:75:50:49:4d:86:1e:ed:c6:
9e:ad:15:f7:8b:f1:76:2b:49:a7:80:e3:2e:cc:40:
7f:bd:e8:f7:d5:28:3e:77:94:d5:84:36:d8:75:ea:
3b:5e:2a:25:51:03:ab:a6:57:b9:cf:84:e4:1d:a0:
0e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:E7:ED:B4:45:1C:A9:1E:EF:75:DD:5C:FA:7B:2D:81:02:C6:18:79
X509v3 Authority Key Identifier:
keyid:52:71:43:8E:23:CE:92:5E:66:C2:59:98:12:21:B5:B6:83:A2:F0:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UnFDjiPOkl5mwlmYEiG1toOi8I8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/vefttEUcqR7vdd1c-nstgQLGGHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.60.77.0/24
Signature Algorithm: sha256WithRSAEncryption
27:8c:f6:3d:ec:2a:ef:a8:1c:b3:fd:da:ae:da:09:3c:06:cd:
e4:a1:96:a9:e6:fc:f9:6c:8f:05:c0:86:06:bc:07:b7:55:35:
19:ca:ea:1e:d3:a0:74:12:f9:db:23:05:db:c9:e7:22:e9:d7:
8d:ff:e3:cd:b0:fb:83:6e:89:1a:e5:c1:7c:e1:a0:3f:e8:e0:
6d:22:bc:30:0d:a3:09:3f:58:da:52:31:b3:ce:a9:db:c9:6f:
b9:ec:32:9f:5c:98:39:3e:9c:e7:d6:ac:0a:d4:41:31:f4:54:
7b:9c:4e:5d:b4:43:5e:f3:09:50:e3:b8:ef:cf:98:a4:d9:40:
60:cd:cf:49:cc:13:9c:77:eb:cc:7c:3e:e7:70:35:75:b5:f0:
59:d3:69:7d:d9:9b:02:05:e7:b5:70:87:07:52:46:e6:54:5e:
8f:b2:29:54:de:fe:fa:72:ba:2f:f5:98:e5:df:ae:f1:3f:a7:
2f:02:48:b6:81:c5:8f:26:a6:24:55:16:94:e0:a4:7a:c1:b7:
21:64:e9:e0:c6:18:3c:9a:c4:17:0f:01:b0:7f:0b:4a:75:88:
3f:e4:41:d4:a7:24:a9:e8:6a:bb:13:6a:3d:dc:12:1c:c0:e1:
4a:3a:fb:5e:94:69:db:2e:e4:a4:b3:c5:56:47:12:1f:5d:1a:
52:65:28:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:49:29 2024 by rpki-client on console-fra.rpki-client.org