Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/VvLZPxXSZXntzpufb-XkkoHczYQ.roa
File: VvLZPxXSZXntzpufb-XkkoHczYQ.roa (raw, json)
Hash identifier: nyVeUNOqtcPR/u2GZ4mV74qQyzKid6S2gLrd3Lz7QnI=
Subject key identifier: 56:F2:D9:3F:15:D2:65:79:ED:CE:9B:9F:6F:E5:E4:92:81:DC:CD:84
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018B673A9D5AAF61757B4207AB00EF15568A
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/VvLZPxXSZXntzpufb-XkkoHczYQ.roa
Signing time: Wed 25 Oct 2023 14:26:16 +0000
ROA not before: Wed 25 Oct 2023 14:26:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197428
IP address blocks: 212.68.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:67:3a:9d:5a:af:61:75:7b:42:07:ab:00:ef:15:56:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Oct 25 14:26:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=56f2d93f15d26579edce9b9f6fe5e49281dccd84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:05:f3:ca:d9:26:47:e0:32:a3:a2:a4:78:58:
b3:93:06:48:83:83:ab:15:7b:99:30:45:ae:61:32:
fe:c7:34:cf:6e:06:4b:f1:16:6f:3b:88:9c:97:8a:
cc:ff:b8:03:2d:a8:d6:9a:b0:87:98:ef:c3:1b:c8:
26:1a:1c:2c:98:86:af:b4:1a:8a:af:46:03:1d:7c:
b2:d6:97:f9:45:be:c7:e9:25:f2:51:10:18:cb:1e:
a3:eb:a0:7f:14:8f:9e:d7:12:d7:bb:4c:6b:b8:ea:
42:1d:0c:44:4d:19:81:bd:57:59:52:37:8b:c2:0f:
0d:43:5e:78:41:60:7f:81:17:a1:40:02:d0:6a:9a:
71:ff:50:00:89:9f:c8:a2:3a:6a:f3:e7:7c:1f:2c:
51:14:a5:0b:7f:02:36:fe:07:7c:be:dd:be:5f:a3:
01:41:6c:9e:9c:e2:d0:d8:a6:b3:58:21:19:01:c0:
57:c9:24:0d:af:6f:60:33:1d:7b:c3:67:57:e7:b5:
dd:ae:38:e3:e1:e2:f0:74:3d:8b:75:17:43:f8:68:
2c:4c:24:5f:24:de:41:48:f6:89:84:87:e6:24:9d:
61:94:6b:09:b0:b7:7b:22:0c:45:ff:18:77:cc:f7:
bb:2f:45:c5:d7:e3:cb:5d:1d:68:77:91:d8:43:b6:
2d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:F2:D9:3F:15:D2:65:79:ED:CE:9B:9F:6F:E5:E4:92:81:DC:CD:84
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/VvLZPxXSZXntzpufb-XkkoHczYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.68.48.0/24
Signature Algorithm: sha256WithRSAEncryption
10:17:9c:91:80:50:c7:81:40:4d:a8:ee:16:c2:a3:20:e9:75:
5d:4f:2b:80:4e:6d:dd:59:9d:74:42:82:a3:1f:cc:ad:3a:67:
64:d0:64:38:19:82:28:d2:44:6e:c3:34:34:e9:af:f1:1a:39:
af:54:14:27:31:9f:05:3b:23:2e:bd:1a:f3:9f:17:59:b8:7f:
10:30:1f:03:ac:4c:ab:49:48:5c:9a:e0:a0:ee:3a:59:24:fb:
09:2d:60:57:86:b5:12:90:00:fc:72:2d:fd:2d:93:79:10:c3:
52:ab:a7:9c:dd:aa:2d:96:1a:76:29:eb:64:bd:f1:de:d3:64:
b1:c0:9a:2a:8e:33:13:e9:07:a1:0f:60:c9:e8:7f:43:51:3c:
e9:ef:4f:c0:cb:22:11:1b:69:d1:7c:1d:57:58:21:e2:95:47:
3d:b0:57:c6:6c:b3:64:3f:3e:f1:4b:ce:4d:05:30:10:1f:e8:
4e:4e:04:95:e5:3c:0a:cc:ff:f6:3e:84:93:66:5f:e5:af:5f:
6a:02:bb:f3:1a:5c:c6:c9:3e:f0:5f:20:67:ba:49:c9:be:38:
55:43:dd:e1:a5:18:07:88:1a:7f:dc:40:74:64:24:0c:ca:17:
00:46:bf:a2:aa:f2:07:07:56:a3:f5:11:02:13:86:13:2a:d3:
6d:68:46:26
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtnOp1ar2F1e0IHqwDvFVaKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx
OTJjYTIwHhcNMjMxMDI1MTQyNjE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NmYyZDkzZjE1ZDI2NTc5ZWRjZTliOWY2ZmU1ZTQ5MjgxZGNjZDg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsgXzytkmR+Ayo6KkeFizkwZIg4Or
FXuZMEWuYTL+xzTPbgZL8RZvO4icl4rM/7gDLajWmrCHmO/DG8gmGhwsmIavtBqK
r0YDHXyy1pf5Rb7H6SXyURAYyx6j66B/FI+e1xLXu0xruOpCHQxETRmBvVdZUjeL
wg8NQ154QWB/gRehQALQappx/1AAiZ/Iojpq8+d8HyxRFKULfwI2/gd8vt2+X6MB
QWyenOLQ2KazWCEZAcBXySQNr29gMx17w2dX57Xdrjjj4eLwdD2LdRdD+GgsTCRf
JN5BSPaJhIfmJJ1hlGsJsLd7IgxF/xh3zPe7L0XF1+PLXR1od5HYQ7YtAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFby2T8V0mV57c6bn2/l5JKB3M2EMB8GA1UdIwQY
MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt
NGUxOThmMGE2MDEzLzEvVnZMWlB4WFNaWG50enB1ZmItWGtrb0hjellRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz
LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1EQwMA0G
CSqGSIb3DQEBCwUAA4IBAQAQF5yRgFDHgUBNqO4WwqMg6XVdTyuATm3dWZ10QoKj
H8ytOmdk0GQ4GYIo0kRuwzQ06a/xGjmvVBQnMZ8FOyMuvRrznxdZuH8QMB8DrEyr
SUhcmuCg7jpZJPsJLWBXhrUSkAD8ci39LZN5EMNSq6ec3aotlhp2KetkvfHe02Sx
wJoqjjMT6QehD2DJ6H9DUTzp70/AyyIRG2nRfB1XWCHilUc9sFfGbLNkPz7xS85N
BTAQH+hOTgSV5TwKzP/2PoSTZl/lr19qArvzGlzGyT7wXyBnuknJvjhVQ93hpRgH
iBp/3EB0ZCQMyhcARr+iqvIHB1aj9RECE4YTKtNtaEYm
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org