Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/vB5sZ9kB5JDVD4izKy_VN4LkW28.roa
File: vB5sZ9kB5JDVD4izKy_VN4LkW28.roa (raw, json)
Hash identifier: 2bCrkOXZtM3EZqDi9GJkzpd+KZfQoZk8l435LEZSpgw=
Subject key identifier: BC:1E:6C:67:D9:01:E4:90:D5:0F:88:B3:2B:2F:D5:37:82:E4:5B:6F
Certificate issuer: /CN=e30cc9429b63382e9b1714d21b3c96d2e5ebe257
Certificate serial: 018CC7274331C3CEC1650705B6C8DC914279
Authority key identifier: E3:0C:C9:42:9B:63:38:2E:9B:17:14:D2:1B:3C:96:D2:E5:EB:E2:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4wzJQptjOC6bFxTSGzyW0uXr4lc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/vB5sZ9kB5JDVD4izKy_VN4LkW28.roa
Signing time: Mon 01 Jan 2024 22:31:28 +0000
ROA not before: Mon 01 Jan 2024 22:31:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 17025
IP address blocks: 94.31.10.0/23 maxlen: 24
94.31.12.0/24 maxlen: 24
94.31.13.0/24 maxlen: 24
213.152.239.0/24 maxlen: 24
79.141.45.0/24 maxlen: 24
2a00:16f8::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 25 Sep 2024 16:07:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:43:31:c3:ce:c1:65:07:05:b6:c8:dc:91:42:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e30cc9429b63382e9b1714d21b3c96d2e5ebe257
Validity
Not Before: Jan 1 22:31:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc1e6c67d901e490d50f88b32b2fd53782e45b6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0d:b4:5d:e9:ac:b2:fc:51:c1:7c:a2:8f:a6:
d3:3b:df:83:73:5b:e9:b7:a7:3b:45:27:f6:2c:d7:
91:f6:d2:7e:da:eb:17:10:df:ad:3c:08:4e:be:6f:
67:05:d9:56:a4:10:0c:f1:cd:92:19:89:c3:a1:41:
c4:80:22:22:31:76:31:df:45:1b:1a:12:31:80:62:
99:84:8e:e9:28:44:dc:6b:f1:8c:49:0b:b2:f4:d4:
10:06:24:ba:1b:d6:50:ef:24:12:93:4c:58:98:4c:
17:d3:da:0f:62:b4:fd:14:15:b5:f2:ca:b3:8b:9a:
3f:86:78:d8:ac:25:c3:3b:1c:1c:68:fc:a1:27:59:
08:ba:e2:e7:8d:d6:c9:79:2e:16:29:36:97:99:bf:
62:ca:3c:4f:2b:7b:da:2c:38:08:0b:b9:3e:24:95:
c7:9a:a5:c7:94:e7:31:e2:8a:34:50:06:7f:a7:50:
da:b9:12:c3:29:81:48:da:b4:ac:4b:02:d7:b6:5b:
25:a7:ac:f7:0e:6a:de:6f:25:33:d0:7c:a2:82:2f:
47:6a:44:81:93:da:2a:a2:55:66:2a:ac:cf:79:d3:
f0:b6:af:c4:90:00:47:b7:a6:7d:33:0f:d3:80:4f:
fe:12:fb:23:21:14:31:f9:59:41:b5:0b:a3:03:89:
57:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:1E:6C:67:D9:01:E4:90:D5:0F:88:B3:2B:2F:D5:37:82:E4:5B:6F
X509v3 Authority Key Identifier:
keyid:E3:0C:C9:42:9B:63:38:2E:9B:17:14:D2:1B:3C:96:D2:E5:EB:E2:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4wzJQptjOC6bFxTSGzyW0uXr4lc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/vB5sZ9kB5JDVD4izKy_VN4LkW28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/4wzJQptjOC6bFxTSGzyW0uXr4lc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.141.45.0/24
94.31.10.0-94.31.13.255
213.152.239.0/24
IPv6:
2a00:16f8::/48
Signature Algorithm: sha256WithRSAEncryption
b1:79:ab:41:ac:b4:4e:af:eb:c1:1b:26:fa:66:a6:cb:dd:52:
e5:e1:67:f4:06:f6:b3:24:3e:14:4a:33:50:27:dd:1b:53:28:
81:d1:9f:ce:dc:a6:a6:14:4f:21:70:07:70:48:16:9e:1c:9d:
31:80:10:33:32:a4:ae:dd:41:3e:93:be:a8:ff:62:65:d4:f6:
23:2f:7e:2a:46:7d:f8:08:35:cb:2f:4f:ac:6e:60:e7:99:df:
d1:1a:eb:d9:bb:50:cc:23:0f:eb:ba:eb:47:f1:38:bd:5c:09:
99:94:72:d0:a0:da:cf:c2:74:96:4f:2a:cf:36:54:e2:b9:06:
33:18:3b:97:ef:2a:d4:fa:af:0b:38:85:c0:7c:3c:85:19:1f:
cd:13:61:c4:41:d2:1a:59:47:3a:7a:b2:a5:35:98:19:28:84:
8b:95:75:4f:04:c4:2b:91:b1:8d:d2:9b:53:f8:e0:e7:56:bc:
cb:ad:68:7b:bf:cc:63:35:9d:2b:ac:c2:62:0a:61:3b:8e:7a:
ae:cf:73:b9:e8:ac:d2:6e:76:0a:bc:19:30:54:cc:29:6c:be:
ab:84:38:b9:4e:91:9c:e8:0a:d0:49:ec:ce:0e:06:4a:c9:1d:
41:a5:40:bd:85:9c:65:70:da:3e:b7:cc:18:a4:4a:71:3f:05:
54:30:78:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 25 19:03:23 2024 by rpki-client on console-fra.rpki-client.org