Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/vgm4Wwac4D_1WTALfb1zF3fR-8k.roa
File: vgm4Wwac4D_1WTALfb1zF3fR-8k.roa (raw, json)
Hash identifier: /0N5b/A2L0Vi7tA/71419DLSkJ0CG5WpUXAeyZhYJ9o=
Subject key identifier: BE:09:B8:5B:06:9C:E0:3F:F5:59:30:0B:7D:BD:73:17:77:D1:FB:C9
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 01879E27CEA576B3BBB250127C95CFFFBEFD
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/vgm4Wwac4D_1WTALfb1zF3fR-8k.roa
Signing time: Thu 20 Apr 2023 10:13:41 +0000
ROA not before: Thu 20 Apr 2023 10:13:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211440
IP address blocks: 188.191.96.0/24 maxlen: 24
188.191.104.0/24 maxlen: 24
188.191.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Jun 2023 03:41:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9e:27:ce:a5:76:b3:bb:b2:50:12:7c:95:cf:ff:be:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Apr 20 10:13:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be09b85b069ce03ff559300b7dbd731777d1fbc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:a5:fe:d9:5b:81:02:dd:38:e1:1b:45:2c:b0:
d6:aa:8e:4a:82:76:9e:a4:7f:19:a5:fe:1f:3b:d1:
7d:5d:5b:6f:50:8d:24:df:a7:4f:7e:ae:45:cf:84:
f5:a9:cb:8a:e1:3c:a8:73:97:ac:bf:a1:38:fc:b6:
ed:01:5e:61:dc:18:f5:4e:4c:b7:0d:6a:91:d0:10:
a8:bd:c1:44:23:ec:58:39:86:ae:f6:8b:60:af:4b:
3f:b3:17:f8:c7:d9:65:82:9a:9a:ab:ba:37:c6:90:
1b:16:ce:4b:fb:64:25:89:30:42:c6:26:79:27:ef:
e3:76:40:fd:61:40:e8:71:db:38:ae:de:d4:d0:07:
7b:ff:ea:b5:52:bc:d4:27:a4:32:c5:cc:6b:57:85:
07:e4:ab:c1:da:3c:a1:47:ef:5f:a2:81:f0:67:e6:
90:e5:8e:04:fc:ef:d0:9c:54:7f:e3:db:11:fb:92:
bb:20:64:b3:83:45:ed:c1:27:c1:a1:91:26:96:c9:
f4:6a:74:04:04:53:5d:57:91:91:dc:ce:49:fe:05:
1a:88:10:69:df:67:3a:18:40:6e:27:2c:5a:a4:1a:
3a:8f:f0:84:03:ad:1c:44:07:5d:bb:47:cd:e3:b3:
9f:ad:e2:e1:47:cf:af:86:fc:a0:82:1b:93:dd:71:
a7:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:09:B8:5B:06:9C:E0:3F:F5:59:30:0B:7D:BD:73:17:77:D1:FB:C9
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/vgm4Wwac4D_1WTALfb1zF3fR-8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.96.0/24
188.191.104.0/24
188.191.108.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:6c:d3:4c:57:a1:96:56:a1:98:32:d7:d1:5a:94:8d:ba:d0:
e6:f9:12:ef:ee:44:8a:f6:b1:89:49:d2:d9:7c:a4:a2:43:47:
58:e4:ef:a8:54:0d:45:3d:73:5b:c7:51:b4:26:43:d2:f4:26:
02:17:61:f9:69:99:2a:96:09:38:70:dd:d0:45:42:a5:21:da:
88:4b:e3:55:d4:d4:c1:53:ba:5f:31:0e:3a:04:21:83:2a:5b:
58:fd:ab:9a:f8:f6:36:c2:64:57:c8:16:cc:e0:d9:27:db:40:
75:7e:ef:e8:c8:dd:e4:82:a4:a0:49:11:f9:9c:5c:fd:dc:6c:
14:09:f8:92:ce:e1:1b:1f:d2:d0:2a:e7:73:c0:01:1c:fd:13:
03:b0:4d:33:e8:75:f0:44:e9:1a:23:6f:4e:e2:53:ca:81:66:
3c:f3:c1:7d:ae:86:88:84:cc:a6:0d:76:36:ee:5c:76:a8:f5:
06:d9:07:f3:1c:e4:de:5b:3a:a0:91:c4:7d:a0:4e:56:b2:ed:
1e:9b:3d:bd:fa:21:25:59:56:71:1c:26:8e:6d:62:f6:0f:00:
ed:7c:1c:d7:1f:f9:9b:10:63:de:72:e5:54:48:fb:70:b0:e8:
a6:9c:22:d3:ab:6b:52:f4:b5:13:79:ae:3c:38:2b:a9:06:47:
6f:72:4b:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:49 2024 by rpki-client on console-ams.rpki-client.org