Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/VMs03mc9gVtTyrp6cFol--mLpbI.roa
File: VMs03mc9gVtTyrp6cFol--mLpbI.roa (raw, json)
Hash identifier: otViWV9mEQ/84UzPfcVLGCW60aMkG3ob7JVwRrVUqGE=
Subject key identifier: 54:CB:34:DE:67:3D:81:5B:53:CA:BA:7A:70:5A:25:FB:E9:8B:A5:B2
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0185709518B842B3794269F544790BD6C101
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/VMs03mc9gVtTyrp6cFol--mLpbI.roa
Signing time: Mon 02 Jan 2023 03:44:57 +0000
ROA not before: Mon 02 Jan 2023 03:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41245
IP address blocks: 93.170.143.0/24 maxlen: 24
93.171.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:18:b8:42:b3:79:42:69:f5:44:79:0b:d6:c1:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54cb34de673d815b53caba7a705a25fbe98ba5b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:af:79:3f:e4:69:06:b5:c0:aa:ef:03:4c:76:
ac:f7:88:96:30:8d:d0:d0:90:b8:be:39:3a:74:16:
ad:be:1a:a4:49:fe:1e:50:37:df:1d:1e:2e:00:68:
2d:13:8c:3a:c0:77:99:f3:29:ba:32:81:4e:e4:b2:
2f:68:80:2c:57:cd:de:33:1e:cd:be:af:97:0f:7a:
4f:cd:90:4b:da:87:17:fc:56:a2:af:ac:ea:07:3b:
f8:f6:0d:74:48:27:b1:10:2a:ef:e4:40:b9:64:a6:
6b:11:91:91:40:8b:6b:0a:22:ab:ef:14:54:9d:71:
c6:fa:fa:bc:ae:a6:eb:bd:b8:98:6a:09:2a:96:e7:
7a:0c:75:7d:db:eb:36:05:e6:04:43:47:36:ac:d4:
10:03:1b:4e:0a:c4:db:c6:8b:fa:42:cd:07:1a:60:
af:a8:be:7c:e8:44:b0:4a:67:a9:cd:57:12:c0:90:
e2:8a:44:90:01:95:ab:69:94:a2:b9:df:72:a6:27:
34:7e:a1:a7:21:1d:87:75:c7:60:22:51:08:53:83:
53:71:25:57:dd:dc:d6:43:af:eb:16:fd:5e:5c:c4:
4f:46:79:4a:e8:9a:a4:c0:d4:5b:e5:3d:cf:d9:58:
b7:99:3c:3b:e9:e7:59:64:70:6b:c3:97:71:7a:6a:
54:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:CB:34:DE:67:3D:81:5B:53:CA:BA:7A:70:5A:25:FB:E9:8B:A5:B2
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/VMs03mc9gVtTyrp6cFol--mLpbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.143.0/24
93.171.6.0/24
Signature Algorithm: sha256WithRSAEncryption
51:98:41:d3:35:bf:7f:2c:1b:a2:86:bc:79:1c:16:f8:19:86:
db:47:a4:65:8b:10:f3:29:16:fb:6c:95:45:a3:98:66:4b:45:
8f:f3:be:32:e2:82:f3:fa:e5:03:e0:eb:99:62:83:88:d9:8b:
1b:5c:4a:45:49:fd:c7:6c:ba:f8:d4:64:04:36:94:bc:c6:26:
61:d8:e3:12:26:65:60:9f:e5:0f:24:4f:a2:2b:5d:45:5a:ec:
1c:6f:6e:70:25:79:0b:76:80:17:b7:19:f5:d2:ae:c2:fe:10:
62:93:7d:f7:a9:af:b9:be:6b:be:f5:e3:bf:32:f1:73:59:f7:
86:09:6e:a2:fa:92:71:26:05:d5:5b:e0:29:a0:6a:49:9b:ed:
5d:98:ca:07:07:55:4a:7c:4a:2c:f9:df:e9:2f:c9:44:60:7b:
04:d3:a4:8b:6a:4d:d0:4c:10:e3:ac:9e:f0:9d:d4:c8:89:95:
d3:ad:1d:f3:92:10:ac:62:4c:f2:50:d0:1c:00:be:84:55:54:
f5:bd:35:8c:43:0e:20:b4:fe:f5:7f:ff:c4:e9:f9:80:61:2f:
9b:c0:e9:f1:8a:34:f9:2e:78:2a:51:e7:58:2e:4a:4b:01:f7:
d5:c6:9d:8f:cb:41:9a:7a:6b:4f:1e:1f:10:3c:f9:0b:57:e4:
91:4e:67:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:50 2024 by rpki-client on console-ams.rpki-client.org