Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/vhrTruEp1S7UWParEu-aVitgVJY.roa
File: vhrTruEp1S7UWParEu-aVitgVJY.roa (raw, json)
Hash identifier: CT/oHofzJJLetYBQQUObSaTQn1S1p/k7W1QCqvpzIlQ=
Subject key identifier: BE:1A:D3:AE:E1:29:D5:2E:D4:58:F6:AB:12:EF:9A:56:2B:60:54:96
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0186A5E2CB4C7B563466167D5663E2E4B14C
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/vhrTruEp1S7UWParEu-aVitgVJY.roa
Signing time: Fri 03 Mar 2023 05:12:29 +0000
ROA not before: Fri 03 Mar 2023 05:12:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201949
IP address blocks: 77.81.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Apr 2023 04:08:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a5:e2:cb:4c:7b:56:34:66:16:7d:56:63:e2:e4:b1:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Mar 3 05:12:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be1ad3aee129d52ed458f6ab12ef9a562b605496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c1:f7:22:fe:e2:71:c4:82:e0:2b:b8:6a:39:
61:5b:a7:23:44:03:3f:b7:96:df:c1:d9:a5:8e:05:
34:cb:a2:5c:87:c2:30:b3:82:78:c0:a0:6a:74:29:
b4:90:56:1f:aa:ca:a8:27:0e:4c:7a:28:c2:5a:1d:
9b:71:4a:79:bc:53:25:3d:89:58:67:0c:18:eb:1e:
2d:9a:c5:1b:62:01:ce:5c:7f:d4:40:a5:06:b8:6a:
49:4c:bc:f7:ff:d1:c3:18:59:58:10:50:6f:12:c3:
10:14:19:df:12:b6:61:97:93:92:dd:a6:e2:77:73:
c8:59:2f:ea:8d:b2:f9:72:76:80:f1:92:2e:e7:17:
de:7d:7e:e2:51:9f:2b:48:84:47:5a:dc:74:d0:a0:
4e:9c:df:47:6f:a2:97:c8:d8:a9:85:f3:33:e4:c0:
76:06:45:66:e7:2b:75:93:3c:82:69:b5:92:35:88:
c8:f4:50:05:f4:5c:8e:66:3f:e9:c5:82:45:fd:14:
60:14:0c:db:fa:08:69:74:fc:78:7b:05:60:0f:97:
bd:40:b9:81:bb:43:0d:e8:aa:64:a9:7f:65:4a:0b:
bf:cc:69:db:b5:0b:93:fa:63:bd:36:fb:f6:bc:64:
e3:5b:ff:b8:4d:b0:3f:b0:e2:2e:2a:e8:49:1e:d3:
03:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:1A:D3:AE:E1:29:D5:2E:D4:58:F6:AB:12:EF:9A:56:2B:60:54:96
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/vhrTruEp1S7UWParEu-aVitgVJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.88.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:df:7b:a0:4f:7b:4e:56:0d:cc:9d:fe:48:c2:3c:30:59:de:
4d:7a:14:2d:d7:50:70:15:66:bd:df:dd:c2:7a:3c:fb:5c:ae:
5d:32:1e:d2:85:64:4c:a9:85:53:46:bb:e2:91:2e:5a:4b:ee:
e4:05:19:38:90:65:11:23:39:89:08:d3:63:42:52:87:4f:0c:
c5:ed:89:2f:a3:9a:c1:98:60:5c:f1:fa:01:6a:bc:8d:d4:1c:
d5:ba:a6:69:3b:55:d3:de:65:f4:41:e5:d1:76:69:6b:13:9d:
99:85:45:38:86:e8:8f:8c:fc:dc:cf:c5:16:1d:97:61:42:8c:
6e:45:5a:1b:68:bd:c2:53:e7:bd:da:5f:24:51:02:d3:78:38:
a9:e5:60:e8:ef:c6:3a:36:2c:fc:c3:36:68:0d:41:f2:e5:16:
03:dd:49:6c:ad:09:97:00:b1:52:bd:04:e5:a4:cb:d0:1b:d4:
f1:3b:06:4d:f8:69:a9:18:d8:0b:0e:e9:7c:a1:aa:ac:a1:9f:
fb:23:5f:7e:24:55:a0:e2:89:56:0b:b7:b9:5b:84:c0:80:92:
8e:62:46:34:24:43:b1:15:34:3e:33:66:1f:da:30:ca:3a:d9:
7f:34:74:48:1c:dd:73:68:b8:18:7c:e7:ce:1e:31:b2:77:b1:
99:f2:47:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:11 2024 by rpki-client on console-fra.rpki-client.org