Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/VnavG7RVVmTeKcuPOUSYqNMyqbM.roa
File: VnavG7RVVmTeKcuPOUSYqNMyqbM.roa (raw, json)
Hash identifier: 4035asJrmzZaTN9s08rEHQK0J/YyZX18fN1axxtqAFo=
Subject key identifier: 56:76:AF:1B:B4:55:56:64:DE:29:CB:8F:39:44:98:A8:D3:32:A9:B3
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018B1DEEB5D094636DC08A6C72276214FB17
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/VnavG7RVVmTeKcuPOUSYqNMyqbM.roa
Signing time: Wed 11 Oct 2023 08:51:05 +0000
ROA not before: Wed 11 Oct 2023 08:51:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198652
IP address blocks: 2.57.240.0/24 maxlen: 24
89.37.192.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Oct 2023 09:41:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1d:ee:b5:d0:94:63:6d:c0:8a:6c:72:27:62:14:fb:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Oct 11 08:51:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5676af1bb4555664de29cb8f394498a8d332a9b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:92:a9:6b:bb:4b:ae:90:fc:a6:04:24:f7:dc:
b0:08:11:99:ac:4b:37:34:85:24:00:4e:16:2e:e8:
1a:97:62:00:1e:ec:4e:15:47:c9:63:61:d7:7b:4f:
7a:84:da:61:b8:a8:ec:09:f2:ae:03:78:18:f8:89:
12:55:be:cd:7b:0c:15:25:f6:28:4b:5f:4e:3a:15:
1e:04:c2:8f:29:ed:c1:e8:46:da:77:bc:a6:00:ce:
ee:70:d6:09:a2:94:fe:f3:0b:f7:fc:91:e0:cd:6f:
4c:c2:14:f4:fa:61:8a:75:16:aa:65:e6:ee:78:cf:
29:9d:97:a7:cc:02:fb:0e:25:4f:d0:79:bb:05:37:
2e:91:fc:1c:9e:f7:47:67:c8:91:c9:49:bb:f2:00:
0b:f9:3d:a3:07:10:5a:f0:65:22:e8:ce:dd:77:d4:
2b:a9:30:ac:58:69:5e:97:63:19:23:44:8d:ef:65:
97:fa:29:78:87:58:07:0d:6d:42:ff:af:24:11:1e:
c5:ee:c3:0a:90:d0:3a:92:cb:5f:d1:e6:07:ed:99:
8d:ac:67:dd:ea:4e:da:38:39:1d:94:5b:33:d0:81:
8d:85:53:29:bc:00:b8:70:90:fc:9c:8c:3a:2b:ec:
a8:46:94:d0:f7:e0:d5:0f:d4:c1:13:63:b5:02:a8:
ed:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:76:AF:1B:B4:55:56:64:DE:29:CB:8F:39:44:98:A8:D3:32:A9:B3
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/VnavG7RVVmTeKcuPOUSYqNMyqbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.240.0/24
89.37.192.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:75:fd:75:38:0a:17:cb:be:66:51:c0:35:7d:90:af:de:ef:
fb:19:e2:da:82:5c:1f:d0:0b:1b:7b:1f:db:1a:00:18:45:ec:
fc:a9:86:48:d5:ba:30:51:4c:54:a9:6a:1e:2d:90:aa:d0:07:
d4:96:fd:84:69:20:e3:a0:87:99:c5:19:6b:1f:52:9b:95:9e:
03:6d:dc:03:f7:17:d6:c0:12:b1:52:f3:4e:64:72:b7:2b:82:
b6:d5:d7:13:98:9c:53:f0:3c:a0:a4:50:a8:ff:49:ff:97:a0:
d2:ed:c6:d6:ff:34:ea:0e:51:30:8d:b6:56:50:54:52:07:9c:
35:aa:84:db:39:37:eb:94:36:56:d3:63:b2:fe:0d:4f:2b:9f:
bc:f0:ba:93:48:c1:b2:fe:48:2d:b7:c2:81:4d:69:6e:41:6b:
70:14:9e:f7:70:7a:00:2c:0a:d7:0a:af:f7:ef:5f:9c:e2:ac:
6e:b8:ca:17:9b:39:07:82:66:25:2d:84:c8:8b:76:55:4f:2d:
67:45:2b:e5:49:a1:cb:ca:50:8b:b1:95:79:44:1b:ff:58:4e:
06:a7:4f:1f:d0:ff:11:dc:48:69:25:09:58:c4:85:f6:e0:3b:
ee:54:12:ff:12:86:96:54:15:f7:67:e5:0f:e5:26:f0:88:42:
1d:fa:3e:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org