Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/eef70e-820c-45b1-ab19-431f91da4e28/1/VEq2-G-wGIKsPOs6m7dKkqx4bXE.roa
File: VEq2-G-wGIKsPOs6m7dKkqx4bXE.roa (raw, json)
Hash identifier: eGfINq1TdqzuAKEGuGi9bZxS9onV0SNOy7nx/1OQ2C4=
Subject key identifier: 54:4A:B6:F8:6F:B0:18:82:AC:3C:EB:3A:9B:B7:4A:92:AC:78:6D:71
Certificate issuer: /CN=3044e60bb97132ea849a53fc554bbbc63948b016
Certificate serial: 018CC56E4C89C192C38B64341E71D838FFD2
Authority key identifier: 30:44:E6:0B:B9:71:32:EA:84:9A:53:FC:55:4B:BB:C6:39:48:B0:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/METmC7lxMuqEmlP8VUu7xjlIsBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/eef70e-820c-45b1-ab19-431f91da4e28/1/VEq2-G-wGIKsPOs6m7dKkqx4bXE.roa
Signing time: Mon 01 Jan 2024 14:29:49 +0000
ROA not before: Mon 01 Jan 2024 14:29:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207543
IP address blocks: 193.228.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Jan 2024 18:13:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:4c:89:c1:92:c3:8b:64:34:1e:71:d8:38:ff:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3044e60bb97132ea849a53fc554bbbc63948b016
Validity
Not Before: Jan 1 14:29:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=544ab6f86fb01882ac3ceb3a9bb74a92ac786d71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fe:c6:d9:73:dc:71:9b:6d:56:41:a5:da:24:
0c:09:6c:a1:d5:1e:2d:ce:bc:1f:1f:7a:fb:8b:a7:
0b:14:95:04:c0:c4:f6:83:e4:bb:b8:fb:49:13:24:
28:80:06:33:3b:3c:6b:9c:03:87:d1:70:e1:88:f8:
07:cb:82:03:5d:a1:c8:4c:dd:86:87:5a:3d:ca:ff:
e1:88:6f:81:6c:29:87:70:18:22:55:3a:59:96:35:
3d:e6:3a:f7:f4:fe:41:af:9a:e2:23:87:3b:fb:24:
f0:c5:89:1b:36:5e:ab:53:07:6a:3b:bb:ac:c8:ac:
90:47:66:90:9d:2b:93:b4:db:36:02:93:dd:3e:33:
1e:b4:92:a6:b8:ef:77:85:95:f6:2e:31:89:69:04:
5c:33:e3:aa:24:06:f7:50:97:97:60:7d:c6:b9:7d:
4f:57:67:9a:06:f3:2f:01:f5:80:d5:4a:e4:47:2f:
5b:c7:ee:12:0a:68:aa:00:8c:1d:c8:c1:c8:55:1d:
c0:56:71:c7:5c:38:e2:f2:e3:83:42:29:96:cc:15:
cd:03:07:88:0f:aa:f4:09:c4:50:89:d4:2b:29:4f:
83:40:92:6d:88:de:c3:df:d4:48:25:1c:ca:73:56:
18:4a:c7:ef:d4:27:20:b7:2c:e7:1e:c0:bb:f5:5d:
bb:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:4A:B6:F8:6F:B0:18:82:AC:3C:EB:3A:9B:B7:4A:92:AC:78:6D:71
X509v3 Authority Key Identifier:
keyid:30:44:E6:0B:B9:71:32:EA:84:9A:53:FC:55:4B:BB:C6:39:48:B0:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/METmC7lxMuqEmlP8VUu7xjlIsBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/eef70e-820c-45b1-ab19-431f91da4e28/1/VEq2-G-wGIKsPOs6m7dKkqx4bXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/eef70e-820c-45b1-ab19-431f91da4e28/1/METmC7lxMuqEmlP8VUu7xjlIsBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.11.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:c6:59:8c:e8:84:f4:3f:78:c5:ae:43:93:f2:22:21:32:8b:
d6:8b:75:22:22:d0:72:d1:9a:46:76:29:c7:57:a9:91:12:f4:
fb:be:38:d6:92:d1:e8:eb:b6:41:a1:4e:a2:20:8b:8b:34:93:
5e:39:a7:6a:be:8d:db:81:33:99:d0:76:51:da:a6:9c:e9:5b:
dc:62:3d:7c:7b:a8:6a:51:74:0d:dd:b3:80:3a:96:50:cc:3e:
9d:d0:c4:e2:2d:c6:b8:fd:79:df:14:28:03:7f:7e:af:57:8a:
1b:02:e4:a6:0a:dd:8e:0d:e0:15:22:b9:9b:1d:99:2d:b4:29:
10:00:cb:2c:5a:ff:f6:00:64:c5:16:30:c7:c2:4b:00:11:93:
09:09:dd:52:e8:ef:1d:68:77:cb:15:7a:ab:85:ff:c7:a5:6e:
55:ee:47:83:f8:5d:d3:ac:43:e5:fe:72:c3:88:9a:e4:48:d1:
e1:c4:55:0f:86:00:dc:d6:d5:33:fc:0d:aa:22:28:2e:d9:c9:
54:60:90:d2:28:0a:54:54:d3:f6:61:51:29:d2:2e:a6:6b:c2:
a4:cc:45:b1:07:33:c4:93:f6:6e:aa:04:f3:1d:fb:dd:b6:d0:
27:58:db:d3:98:81:28:6c:5b:11:92:84:e6:55:b6:c9:17:4b:
af:40:42:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:42 2024 by rpki-client on console-fra.rpki-client.org