Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/vzuFyZ9L47WKH8BjP_Pp4N9tl1Q.roa
File: vzuFyZ9L47WKH8BjP_Pp4N9tl1Q.roa (raw, json)
Hash identifier: VALImNvGwSZOt1nbvapHHyZkxYtd3wzswhNb8LkpGdo=
Subject key identifier: BF:3B:85:C9:9F:4B:E3:B5:8A:1F:C0:63:3F:F3:E9:E0:DF:6D:97:54
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018B6830E2F89D31DE6FFE66D08AD9BEB188
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/vzuFyZ9L47WKH8BjP_Pp4N9tl1Q.roa
Signing time: Wed 25 Oct 2023 18:55:16 +0000
ROA not before: Wed 25 Oct 2023 18:55:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48678
IP address blocks: 77.92.153.0/24 maxlen: 24
31.210.48.0/24 maxlen: 24
188.132.185.0/24 maxlen: 24
78.135.66.0/24 maxlen: 24
188.132.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Nov 2023 08:39:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:68:30:e2:f8:9d:31:de:6f:fe:66:d0:8a:d9:be:b1:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Oct 25 18:55:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf3b85c99f4be3b58a1fc0633ff3e9e0df6d9754
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:34:3a:6d:7d:74:85:a1:89:0b:07:d1:ff:b8:
4d:31:9a:32:05:9d:71:99:c3:83:ad:2e:3c:6d:01:
c8:06:fb:89:7d:c6:b5:03:a6:4f:23:0b:0e:ac:ed:
be:dd:53:1d:48:04:a4:c3:92:08:97:09:f6:9f:04:
50:94:48:b0:45:12:86:05:1b:07:63:0f:a0:4e:37:
c5:87:5c:78:74:db:c1:6e:c8:ae:3d:5c:16:71:78:
16:12:18:7a:76:c0:08:95:ed:67:d7:d1:03:56:9a:
11:0a:8a:da:f8:ee:ff:a0:fe:c6:d5:c0:ef:e3:83:
34:d6:d0:a2:06:55:91:1c:27:4e:f9:0a:45:e5:b8:
58:0e:77:64:3f:66:ad:4b:e3:79:34:38:61:d9:b4:
0f:05:d0:1b:f6:4f:94:22:0e:88:33:c5:83:82:ab:
b2:e1:35:a3:39:45:7c:2e:73:fd:a2:89:ad:b7:d6:
9d:56:30:99:70:f4:69:5b:07:5d:7b:93:16:9a:1a:
ca:0b:c9:83:7d:3b:13:b9:e8:a4:fa:f3:e5:67:82:
31:05:a6:33:94:9b:cc:94:70:32:c0:84:51:96:40:
20:4b:81:19:59:2f:d9:f8:d2:59:28:a3:43:6f:cc:
a8:e4:26:ba:ec:b9:a7:80:76:77:d7:db:74:3b:b3:
8f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:3B:85:C9:9F:4B:E3:B5:8A:1F:C0:63:3F:F3:E9:E0:DF:6D:97:54
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/vzuFyZ9L47WKH8BjP_Pp4N9tl1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.48.0/24
77.92.153.0/24
78.135.66.0/24
188.132.185.0/24
188.132.201.0/24
Signature Algorithm: sha256WithRSAEncryption
02:58:aa:e9:09:ad:89:ea:a7:15:ed:eb:48:1b:d4:bd:60:14:
be:03:ab:34:46:38:e3:9e:40:80:7a:60:52:11:d4:20:5e:4a:
86:8f:d9:df:1a:75:18:7a:97:a8:cc:79:78:ce:80:5c:b3:bc:
b2:61:23:8f:2f:a0:6a:d4:2b:66:3e:28:46:7c:fc:61:d9:67:
57:1f:ea:07:40:15:0b:8f:30:5c:38:d4:6e:5d:3e:1e:b7:63:
30:a7:d8:cb:86:e1:eb:08:f1:81:ab:d6:7d:86:0c:f3:cb:6e:
1c:ed:84:78:a5:bc:80:ec:47:12:ec:ed:2f:e0:ff:36:68:05:
76:72:b3:db:d7:7d:1f:29:2e:f9:ba:a1:01:67:b3:48:cd:66:
03:f4:39:d1:56:bb:7e:07:b8:38:6e:c3:3c:d0:34:60:d8:ea:
4b:9d:c6:4b:76:a2:79:43:9e:0f:de:e0:55:ac:0b:51:d8:94:
ff:cf:b3:9c:31:42:4b:8c:d8:07:28:e8:08:59:65:1e:d9:c0:
39:a8:2d:a9:55:30:14:95:31:1e:7d:c5:57:89:8a:5e:29:ca:
da:8d:f6:ff:af:10:d4:13:55:35:e7:76:40:1c:95:55:c9:80:
d9:72:b7:f5:3d:bf:d1:2d:31:76:11:76:d0:46:8e:d8:96:c0:
24:a1:9f:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:59 2024 by rpki-client on console-ams.rpki-client.org