Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/vlbk363AaItC8OAuvlcRWzBXKdY.roa
File: vlbk363AaItC8OAuvlcRWzBXKdY.roa (raw, json)
Hash identifier: uKaG5S+gzLjF/Iw5Tt0MrQ9eKCgKLyIbF8e5yYTt0r4=
Subject key identifier: BE:56:E4:DF:AD:C0:68:8B:42:F0:E0:2E:BE:57:11:5B:30:57:29:D6
Certificate issuer: /CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Certificate serial: 018B445C128F646BCC6AAC3C97B62A8F4E5B
Authority key identifier: 08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/vlbk363AaItC8OAuvlcRWzBXKdY.roa
Signing time: Wed 18 Oct 2023 19:56:06 +0000
ROA not before: Wed 18 Oct 2023 19:56:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 193.108.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:44:5c:12:8f:64:6b:cc:6a:ac:3c:97:b6:2a:8f:4e:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Validity
Not Before: Oct 18 19:56:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be56e4dfadc0688b42f0e02ebe57115b305729d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:dc:f7:d2:e0:46:c8:a9:25:f2:7d:f5:59:23:
aa:7c:8a:f3:f6:21:f0:b9:89:fc:e2:72:69:6d:84:
82:5d:06:02:93:31:13:d8:97:6b:01:d5:77:4e:4e:
86:de:82:8a:ba:c4:cf:8c:4d:1b:91:07:ed:8b:1a:
5f:94:96:28:1b:8e:9d:bd:1c:a6:1e:96:be:fd:b1:
df:5d:49:c4:79:c5:e3:d5:a4:f3:d8:31:47:c7:67:
95:cb:c3:f7:c7:4e:6c:2c:06:ee:04:ab:48:54:84:
09:bb:49:16:c3:2d:48:1b:62:b9:24:85:d2:0f:fd:
c8:4c:25:fb:bc:95:0f:66:40:c5:5e:02:4a:e6:4c:
f0:f2:0c:c6:06:ea:fb:99:41:7d:1f:2d:ec:3b:58:
9c:57:71:b4:48:1f:3a:03:d8:5f:b0:e3:e0:09:d9:
6c:cc:d7:38:d4:40:6f:97:08:1c:3b:f5:47:6b:a9:
67:6f:7f:d0:33:9a:67:5a:0f:67:40:ed:0e:69:ad:
ed:d3:05:56:3f:0f:44:dc:d0:cb:b5:5b:1a:0f:0b:
16:08:9c:0a:0d:98:a3:60:18:0e:0d:b9:58:7e:47:
b8:d9:24:82:9a:a6:2b:d6:0a:80:3a:4a:29:c2:b8:
b7:e1:ee:76:05:b5:46:4b:d5:a8:72:21:ba:4d:51:
34:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:56:E4:DF:AD:C0:68:8B:42:F0:E0:2E:BE:57:11:5B:30:57:29:D6
X509v3 Authority Key Identifier:
keyid:08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/vlbk363AaItC8OAuvlcRWzBXKdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.59.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:e8:39:95:51:82:4b:63:59:33:0b:d2:f5:80:07:c0:14:55:
22:e0:4b:72:1c:54:9c:3b:a2:d9:f6:13:29:08:83:28:35:ff:
14:13:da:fb:8d:0f:0c:dd:c4:47:72:1b:71:3a:88:45:c6:e9:
d0:83:5d:72:47:8f:04:a0:13:9d:f0:1f:0e:4e:d1:67:ea:01:
65:f7:9d:e5:08:55:47:25:ca:0d:27:21:df:ab:92:49:dc:39:
ea:9c:90:4b:19:ae:83:be:6a:6a:92:30:82:23:68:8b:ab:b5:
92:86:49:80:b3:ea:14:9f:9c:38:d5:dc:30:e1:76:d0:d8:83:
a3:cd:36:46:d6:6e:d9:d4:be:61:ef:dc:ee:97:64:8c:47:11:
5f:cd:8a:b4:e5:09:ef:a0:a8:9c:64:f8:d5:f2:80:9f:db:89:
ff:49:80:f9:05:63:db:43:f1:cd:1d:bd:c3:1e:98:5a:e9:f0:
0d:3d:a1:b3:8a:66:67:1b:73:07:c7:75:7c:92:a2:37:6b:08:
85:42:eb:a6:48:26:8d:8b:de:9d:e6:34:1a:31:89:1b:e3:b6:
5e:f5:79:e7:e8:ae:2d:00:f7:31:a6:82:ad:56:55:9b:1e:30:
02:43:49:a5:00:37:d4:97:e3:6f:ac:a0:a1:ec:e0:77:c2:ea:
08:63:87:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 20 19:36:55 2023 by rpki-client on console-ams.rpki-client.org