Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/464194-53ad-4031-856b-4332c957a22f/1/vggs16aXJI5R9UPQ9sfEIMUxvn0.roa
File: vggs16aXJI5R9UPQ9sfEIMUxvn0.roa (raw, json)
Hash identifier: T1kX1ZoYmbFj2ixYaROb3tsuBoA7by/HUf4soFfwdQY=
Subject key identifier: BE:08:2C:D7:A6:97:24:8E:51:F5:43:D0:F6:C7:C4:20:C5:31:BE:7D
Certificate issuer: /CN=6b4b3e6a7c8783fc8a5719fbd9f37b32c8c7c5ca
Certificate serial: 0187B3C280DD4A0733003FA0FF7A81436D31
Authority key identifier: 6B:4B:3E:6A:7C:87:83:FC:8A:57:19:FB:D9:F3:7B:32:C8:C7:C5:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0s-anyHg_yKVxn72fN7MsjHxco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/464194-53ad-4031-856b-4332c957a22f/1/vggs16aXJI5R9UPQ9sfEIMUxvn0.roa
Signing time: Mon 24 Apr 2023 14:54:41 +0000
ROA not before: Mon 24 Apr 2023 14:54:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202908
IP address blocks: 194.147.68.0/24 maxlen: 24
194.147.69.0/24 maxlen: 24
194.124.190.0/24 maxlen: 24
194.124.191.0/24 maxlen: 24
2a0a:aec0::/29 maxlen: 48
2a0a:aec0:100b::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b3:c2:80:dd:4a:07:33:00:3f:a0:ff:7a:81:43:6d:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b4b3e6a7c8783fc8a5719fbd9f37b32c8c7c5ca
Validity
Not Before: Apr 24 14:54:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be082cd7a697248e51f543d0f6c7c420c531be7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:1a:bf:d1:86:b1:38:09:88:01:60:78:dc:44:
42:b4:2c:10:a0:2b:6d:07:2a:39:c7:c5:28:37:32:
bd:a7:1f:08:75:de:79:61:57:f1:95:28:a2:78:97:
ee:6f:8b:23:c5:e5:f6:4e:96:5e:02:c1:c2:b0:c8:
35:d0:4d:b4:89:e0:d5:6f:c2:26:e8:3b:57:e0:f1:
6c:a8:02:74:79:5e:75:8b:eb:40:eb:82:5d:d4:09:
42:b0:21:09:cf:e6:89:d8:5f:5b:80:40:6d:cb:18:
cd:b6:92:dc:f5:57:21:13:92:fd:3b:47:8f:00:ba:
80:f4:3a:39:0c:e3:e7:d2:67:17:e7:49:9a:5d:0e:
04:8a:01:7e:e0:8d:ba:4b:3a:6c:83:4f:b2:67:94:
a4:be:16:f2:e7:dd:cd:51:80:f6:fe:b0:e5:16:b0:
81:b1:fd:a7:2f:97:96:e1:df:76:bf:53:30:4e:b1:
04:37:41:40:47:08:31:39:1b:03:ab:e9:37:a8:d2:
cd:ab:16:16:01:f9:9e:39:e8:80:bb:a2:ed:fa:ab:
7e:36:a8:a4:7d:16:2d:57:0b:f4:bd:cf:a6:aa:71:
a0:97:99:a8:0c:01:a3:f6:40:8d:ae:c8:f5:94:b5:
6c:1c:f8:e0:0c:4d:ac:87:3f:a4:5c:c3:28:34:ba:
54:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:08:2C:D7:A6:97:24:8E:51:F5:43:D0:F6:C7:C4:20:C5:31:BE:7D
X509v3 Authority Key Identifier:
keyid:6B:4B:3E:6A:7C:87:83:FC:8A:57:19:FB:D9:F3:7B:32:C8:C7:C5:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0s-anyHg_yKVxn72fN7MsjHxco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/464194-53ad-4031-856b-4332c957a22f/1/vggs16aXJI5R9UPQ9sfEIMUxvn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/464194-53ad-4031-856b-4332c957a22f/1/a0s-anyHg_yKVxn72fN7MsjHxco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.124.190.0/23
194.147.68.0/23
IPv6:
2a0a:aec0::/29
Signature Algorithm: sha256WithRSAEncryption
57:54:7a:aa:55:4b:49:75:f2:1c:97:db:1f:e0:ac:c3:2d:1c:
c3:61:26:ce:ce:2c:40:e6:94:1e:c6:e1:e9:78:51:d1:15:26:
df:f0:46:87:02:8a:2c:e3:1c:07:28:30:ea:6f:0f:9e:e4:73:
b1:3b:0d:89:63:68:31:aa:13:8e:51:12:d7:fe:0e:3d:b9:81:
87:c5:3d:06:2d:a4:63:d9:36:96:fe:e7:c2:98:17:c6:db:97:
f5:98:32:c9:aa:e3:22:92:a8:0c:10:c0:07:6b:12:59:9b:82:
c7:db:93:70:41:ba:56:c8:6f:00:f8:63:75:ae:3d:1e:3c:49:
fe:59:5c:37:d9:a3:86:7e:25:50:f5:ab:71:53:e8:ea:1a:fa:
5a:ff:95:29:a8:b0:80:39:8e:cd:98:62:a4:43:3e:00:93:d9:
a7:25:87:0f:b2:f3:5e:b7:15:66:4e:fa:81:4e:d1:b4:e7:df:
9f:cf:af:31:39:89:91:2a:38:49:f9:cf:96:d6:2f:71:0c:f9:
d8:96:ba:95:06:80:84:a5:3d:77:8d:ba:f0:5c:90:74:15:8f:
ad:62:6b:1b:45:e2:9e:e5:c8:3f:12:96:94:13:89:d6:0f:c6:
ed:e0:f1:85:87:b7:65:ac:a2:7c:a2:c3:21:62:3f:52:da:b0:
2f:4a:47:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:30 2024 by rpki-client on console-ams.rpki-client.org