Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/VVtZ96Qtqqbok2Rl2wM3_Dx84gU.roa
File: VVtZ96Qtqqbok2Rl2wM3_Dx84gU.roa (raw, json)
Hash identifier: hN93BfPHIuj49xYLigdTgS+/J1PMxGovjDUkNYNo/XU=
Subject key identifier: 55:5B:59:F7:A4:2D:AA:A6:E8:93:64:65:DB:03:37:FC:3C:7C:E2:05
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018A0801B8E0A7990767CA619765F4F6DD17
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/VVtZ96Qtqqbok2Rl2wM3_Dx84gU.roa
Signing time: Fri 18 Aug 2023 09:37:25 +0000
ROA not before: Fri 18 Aug 2023 09:37:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 46.20.216.0/21 maxlen: 24
82.163.60.0/22 maxlen: 24
92.114.44.0/22 maxlen: 24
130.255.64.0/22 maxlen: 24
31.186.176.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Nov 2023 06:56:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:08:01:b8:e0:a7:99:07:67:ca:61:97:65:f4:f6:dd:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Aug 18 09:37:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=555b59f7a42daaa6e8936465db0337fc3c7ce205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:5a:98:1b:91:1f:bc:be:b6:48:6c:49:98:c1:
88:40:11:34:28:d4:f4:e6:d5:d3:f8:1d:44:90:a6:
bb:1e:d7:79:07:28:9c:63:62:e3:45:b2:af:fa:43:
2f:a5:9c:0c:41:89:50:00:94:59:ab:34:e8:f1:a2:
e0:b9:ba:ac:21:46:38:6c:a9:06:c7:b5:79:08:a9:
98:df:d9:72:4b:ef:0d:00:09:39:05:96:13:ec:a1:
be:94:e8:77:c5:ea:8c:45:05:19:fc:72:e0:6c:5b:
2a:0a:ce:3c:c6:f7:38:9b:07:a7:31:ea:8b:f0:b0:
46:09:83:8e:d3:05:cc:1c:5c:19:68:a3:3d:39:cc:
ef:c3:92:b9:d2:fb:f9:18:65:29:a7:ec:85:e6:be:
5f:40:c8:e9:b9:e2:70:ec:06:99:bc:98:c1:73:01:
92:ba:9e:40:83:9f:76:99:f9:9f:b0:e7:9e:51:93:
e8:34:b6:8b:78:8f:9d:f3:63:e1:21:1d:bf:6e:25:
4d:02:e6:eb:ec:15:86:a5:a6:14:e5:e8:f8:83:f5:
82:c8:30:0f:0f:8e:be:e2:e0:17:2a:a5:71:a9:dc:
8e:44:8b:1f:ad:44:56:a8:24:f7:3b:0a:9b:bd:16:
7f:82:63:e2:84:f7:ab:62:eb:84:68:a5:df:60:56:
b6:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:5B:59:F7:A4:2D:AA:A6:E8:93:64:65:DB:03:37:FC:3C:7C:E2:05
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/VVtZ96Qtqqbok2Rl2wM3_Dx84gU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.176.0/22
46.20.216.0/21
82.163.60.0/22
92.114.44.0/22
130.255.64.0/22
Signature Algorithm: sha256WithRSAEncryption
94:91:80:78:1a:cf:8c:93:a1:77:89:11:c4:b2:de:c3:87:49:
e4:59:66:10:b6:da:77:ef:76:26:40:4d:0c:ff:19:1a:e8:b8:
9f:60:fd:cc:e6:30:b7:6a:c8:64:4d:67:74:7f:69:9b:16:3f:
82:f9:46:62:8c:cc:e3:fa:1d:60:86:cc:4f:d0:79:32:f5:37:
e6:01:bc:2b:9e:86:5d:aa:d0:bf:69:b5:59:ee:10:bc:d4:58:
7b:57:04:38:33:db:13:4e:f5:27:1c:30:5e:2f:5e:08:0b:54:
0b:09:eb:16:e0:c5:04:b1:b4:e9:02:04:d5:36:39:40:5e:4e:
a2:dc:08:75:b8:d5:f2:00:4c:7c:6b:33:02:20:5a:89:24:e4:
62:0c:af:f0:d6:9f:9c:cb:0e:9b:29:25:1a:e0:14:16:a4:b1:
ce:31:42:d2:65:09:8e:44:62:57:0b:fd:8c:0c:8e:b7:48:9e:
ee:0f:f5:30:ba:e1:4c:02:23:a0:1e:d4:70:30:7f:e0:8a:78:
25:d0:80:0f:38:46:c2:c8:9b:65:50:1b:6b:a0:aa:e4:fa:c7:
dc:d5:4e:8b:8d:36:cf:de:1a:6d:3b:f7:1e:f1:dd:f5:6a:d5:
00:dd:ca:eb:eb:4d:0c:fd:e5:39:93:00:36:cb:fe:ad:1a:1c:
61:f8:66:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org