Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/880b00-58ab-47de-9728-0cad6ca7ecd7/1/VdNJyCIpszNVMNXLOvcxSlRvPgQ.roa
File: VdNJyCIpszNVMNXLOvcxSlRvPgQ.roa (raw, json)
Hash identifier: cdhUC4JtNvG5NWhnzHcWStOdT6AkM6h7Zf9T6ntGLaE=
Subject key identifier: 55:D3:49:C8:22:29:B3:33:55:30:D5:CB:3A:F7:31:4A:54:6F:3E:04
Certificate issuer: /CN=81523888eed5311f92a16615ef2cf0175c6fe41e
Certificate serial: 018571553A42617D1A33541C132940178970
Authority key identifier: 81:52:38:88:EE:D5:31:1F:92:A1:66:15:EF:2C:F0:17:5C:6F:E4:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gVI4iO7VMR-SoWYV7yzwF1xv5B4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/880b00-58ab-47de-9728-0cad6ca7ecd7/1/VdNJyCIpszNVMNXLOvcxSlRvPgQ.roa
Signing time: Mon 02 Jan 2023 07:14:48 +0000
ROA not before: Mon 02 Jan 2023 07:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202619
IP address blocks: 193.105.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:3a:42:61:7d:1a:33:54:1c:13:29:40:17:89:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81523888eed5311f92a16615ef2cf0175c6fe41e
Validity
Not Before: Jan 2 07:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55d349c82229b3335530d5cb3af7314a546f3e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:32:ca:68:97:01:34:79:ef:81:b0:48:c6:3c:
17:e3:2b:b1:d4:ca:04:92:a9:81:eb:3c:5b:90:6c:
1b:05:6c:5b:71:db:60:16:47:10:7e:a9:05:e0:9d:
3c:8e:d8:05:40:8f:ad:cc:1e:97:d2:fc:77:a5:c1:
c8:33:b3:39:07:cf:c2:8d:0d:0c:40:9f:2e:fb:00:
e6:6c:9f:8e:7f:5f:1e:57:0f:db:22:c1:46:23:a7:
0a:d6:0b:7e:1d:c2:4d:f7:dd:e7:ee:5e:84:6c:a9:
67:95:06:df:53:3c:c9:7f:5d:49:a9:cd:8d:c0:20:
30:9c:09:1b:89:ec:55:84:50:de:c1:09:f1:45:58:
6c:d5:f4:1f:5b:06:88:da:29:6b:a4:7f:39:a6:ac:
f6:51:f4:03:89:be:e0:f7:b9:ce:7a:38:ec:fa:96:
8a:db:9c:9d:70:a2:9d:76:b2:7b:33:39:91:e2:6b:
2f:c4:dc:e1:6b:94:8a:bc:95:3a:19:64:85:09:22:
9a:83:b1:b8:e8:17:f5:74:ba:38:06:c5:89:37:f5:
60:a2:83:74:5a:1b:b0:ac:b4:b4:f4:88:9f:8c:0e:
98:a7:53:b5:bc:84:fc:6b:bd:0f:a8:0d:a0:44:b5:
da:61:43:14:a5:dc:9d:a9:ce:ec:8f:be:6e:f8:5c:
e4:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:D3:49:C8:22:29:B3:33:55:30:D5:CB:3A:F7:31:4A:54:6F:3E:04
X509v3 Authority Key Identifier:
keyid:81:52:38:88:EE:D5:31:1F:92:A1:66:15:EF:2C:F0:17:5C:6F:E4:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gVI4iO7VMR-SoWYV7yzwF1xv5B4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/880b00-58ab-47de-9728-0cad6ca7ecd7/1/VdNJyCIpszNVMNXLOvcxSlRvPgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/880b00-58ab-47de-9728-0cad6ca7ecd7/1/gVI4iO7VMR-SoWYV7yzwF1xv5B4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.92.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:32:89:c2:90:6f:5f:c7:10:9e:64:98:69:22:4c:fb:e4:6a:
1e:df:5a:80:d3:2b:a4:18:b9:dd:8f:78:b6:0a:34:61:2a:43:
1f:d7:a8:36:c4:1b:ad:66:2c:a2:ed:4c:ab:a9:8f:be:d7:7a:
50:fc:8c:9a:9c:c4:d6:fe:6a:8d:09:57:ad:9e:b4:71:4b:ba:
4f:4f:88:34:08:e4:c2:f2:9b:61:72:fb:1f:af:db:9b:ce:93:
b1:14:1b:4b:1c:45:67:b2:4a:31:c3:16:0c:6c:50:cd:7c:d8:
36:22:c1:ae:67:76:bb:8a:8a:dc:bc:bd:f8:33:ea:48:f9:a4:
8e:25:a6:54:2a:f2:e1:60:94:71:27:95:65:c7:0b:99:aa:47:
46:5d:b8:8e:61:9a:ac:2a:57:58:ef:18:a2:07:5a:7e:96:d8:
77:76:a0:45:d3:8c:b2:6d:5a:19:fb:85:4f:7a:27:de:87:14:
b7:9c:2b:a3:e3:ae:bb:8f:e2:0c:b2:b5:24:0b:f5:a4:0f:2b:
38:84:f4:76:9b:01:7f:7d:5e:21:f1:b3:c2:95:b1:0e:7b:99:
89:ca:e6:c8:09:33:f4:93:7b:b1:f7:da:b5:a3:9c:7a:fd:27:
ee:7d:7b:69:47:5e:95:72:29:96:6d:c8:33:49:62:55:05:30:
53:3a:96:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:40 2024 by rpki-client on console-ams.rpki-client.org