Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/VMeDPRqYAfaUEx6ZaP7UdutLRhY.roa
File: VMeDPRqYAfaUEx6ZaP7UdutLRhY.roa (raw, json)
Hash identifier: 4zoVUGbzPuslf6R2V0YMswNM0bd+q8BO6gYR8yotydA=
Subject key identifier: 54:C7:83:3D:1A:98:01:F6:94:13:1E:99:68:FE:D4:76:EB:4B:46:16
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 0185714C438B5D6DABC624AFC1FE39EA1728
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/VMeDPRqYAfaUEx6ZaP7UdutLRhY.roa
Signing time: Mon 02 Jan 2023 07:05:01 +0000
ROA not before: Mon 02 Jan 2023 07:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47692
IP address blocks: 188.172.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:43:8b:5d:6d:ab:c6:24:af:c1:fe:39:ea:17:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 2 07:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54c7833d1a9801f694131e9968fed476eb4b4616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0f:67:7f:fe:0a:6d:34:6f:c9:cc:e4:c9:02:
a4:b1:1d:97:e0:bf:bc:a3:e4:80:5d:f7:84:cf:f2:
7d:1e:b9:e2:16:6d:7a:9e:86:0f:d4:9c:f8:cb:34:
a9:36:ee:2b:a2:42:ab:e3:b7:6e:d8:aa:4e:73:51:
e7:02:1d:c8:38:4c:42:be:85:72:42:c5:1b:45:3f:
1b:3f:ae:af:e6:bd:a9:4c:ac:b4:e1:af:b2:b8:ac:
54:01:c2:67:bb:15:c8:86:df:37:29:ad:bb:31:75:
2e:c9:0f:55:ad:5d:b2:f3:e5:c0:b8:8c:92:1b:8f:
ef:00:ed:c3:6d:14:f9:22:17:03:7f:de:bd:9a:5d:
bc:b2:a6:2a:50:41:92:15:b9:8f:ac:c1:97:5a:6c:
e1:e1:7b:11:2a:24:7e:a2:8d:69:ba:70:06:29:50:
1c:09:e8:cf:1c:59:4e:d1:dc:7b:6b:a9:53:9d:2c:
27:be:e9:77:5c:f7:ce:59:48:bd:48:f4:eb:a4:74:
40:2d:0b:99:5b:5d:96:3e:2e:e9:70:cb:ad:6d:77:
c0:00:6d:6a:84:ca:57:7d:5b:64:50:4a:bf:94:f1:
85:d6:f1:91:d9:b8:1a:65:4e:e0:31:96:a1:92:94:
ee:9c:ad:f5:32:fb:96:9b:40:dc:de:07:ee:48:39:
7a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:C7:83:3D:1A:98:01:F6:94:13:1E:99:68:FE:D4:76:EB:4B:46:16
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/VMeDPRqYAfaUEx6ZaP7UdutLRhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.172.196.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:41:bd:bc:87:3c:9d:91:75:a0:75:cc:6f:cb:82:dd:4d:19:
c9:82:9a:99:2b:04:c7:f4:a3:f9:5a:37:4a:ad:a9:bd:9e:84:
fb:aa:ea:db:04:e5:66:b2:dc:6f:78:c5:87:fc:69:82:85:5d:
da:f0:05:48:98:da:05:4f:cf:d1:58:c3:89:50:41:18:86:88:
97:59:9b:59:bd:38:a9:01:9e:ae:6a:0e:ce:30:95:94:38:09:
17:0d:b2:29:47:aa:a2:fa:b2:4a:06:57:7f:f6:7d:63:6a:e3:
36:df:b9:d3:7d:17:ba:33:03:81:6a:6b:a3:ad:00:6c:a4:7a:
09:29:8c:3a:7d:14:44:34:bf:ee:92:37:b9:0c:b2:8c:b7:cc:
51:1b:54:d0:e9:f6:2e:7d:94:b1:b5:8c:f4:42:5f:5a:ad:8b:
ed:27:bd:84:bb:08:92:b3:42:82:04:dd:11:51:0d:3b:6b:99:
43:63:d0:90:08:23:62:c8:e5:5b:33:56:c1:05:47:af:3b:31:
51:9c:43:69:e0:b7:39:e3:cc:c2:53:43:e5:f4:5c:1e:ef:20:
b8:cf:dd:60:b7:9e:e9:a9:a1:91:9f:30:56:1d:03:d1:8c:6b:
58:ef:ba:86:4e:90:38:6c:88:03:cf:78:4f:3a:af:31:7c:b8:
09:31:74:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org