Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/VfPxWnhlb9kSwCPAc-l7MI5egrI.roa
File: VfPxWnhlb9kSwCPAc-l7MI5egrI.roa (raw, json)
Hash identifier: lQrJSDLFDbwxPr9tUl1y8wQi+3NHqh9q1ZYXzalkpSs=
Subject key identifier: 55:F3:F1:5A:78:65:6F:D9:12:C0:23:C0:73:E9:7B:30:8E:5E:82:B2
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018A642339B3DF7723CF10040B3421319A3E
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/VfPxWnhlb9kSwCPAc-l7MI5egrI.roa
Signing time: Tue 05 Sep 2023 06:59:04 +0000
ROA not before: Tue 05 Sep 2023 06:59:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 188.64.104.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sat 14 Oct 2023 20:04:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:64:23:39:b3:df:77:23:cf:10:04:0b:34:21:31:9a:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Sep 5 06:59:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55f3f15a78656fd912c023c073e97b308e5e82b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1f:97:be:82:41:90:21:65:51:a1:9e:00:22:
e2:39:c2:0d:d4:71:6a:5a:f0:82:3d:73:2c:e3:e0:
4a:63:25:8b:20:36:66:55:ba:5c:0a:a0:88:00:8a:
65:67:8b:e0:36:bd:99:85:81:a9:f4:eb:7f:13:6b:
4b:ea:9f:7a:0a:f7:56:25:c8:5a:51:83:64:60:d4:
60:c9:0c:db:96:dd:f6:df:1d:15:84:fb:54:c2:0a:
6c:a7:fd:5f:38:33:be:38:aa:ae:b7:70:bc:61:3a:
96:df:c6:ee:95:13:71:3f:b9:f6:ba:54:64:45:aa:
67:7f:73:c3:80:61:b0:f9:76:c0:c5:41:14:e6:11:
72:64:88:41:76:18:0f:75:ed:7f:5d:62:69:91:97:
1e:96:85:9d:42:90:74:e5:3f:97:9a:e4:39:7d:05:
43:d6:66:b7:25:78:c1:c4:34:f3:b7:1e:b9:95:b4:
95:7c:f2:7b:15:51:88:89:8b:75:43:fb:5c:71:54:
e5:54:db:a3:ad:94:bb:6b:a9:de:9b:a5:7a:b2:68:
ce:b6:5c:c6:75:7f:bb:7a:11:97:bd:d2:1d:4e:96:
ee:e3:ab:e0:61:8c:b4:50:8d:03:20:3c:e4:d0:eb:
74:7f:30:e7:3d:d4:0b:d0:05:99:13:0a:cd:37:8c:
db:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:F3:F1:5A:78:65:6F:D9:12:C0:23:C0:73:E9:7B:30:8E:5E:82:B2
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/VfPxWnhlb9kSwCPAc-l7MI5egrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.104.0/22
Signature Algorithm: sha256WithRSAEncryption
23:bd:58:1a:4b:05:e4:63:bc:00:ed:98:c0:96:09:b9:82:58:
e2:b9:48:e0:52:d2:40:93:8f:4f:a0:5d:11:01:c4:5b:b6:03:
8b:e6:0c:99:d7:87:2e:d3:26:67:bf:8b:3d:8f:f6:cc:b2:71:
66:80:fa:96:43:d0:b2:f3:37:60:0c:e0:11:f5:a6:dc:ba:3d:
f3:ec:a0:81:7f:ce:68:67:1a:0d:ce:4d:c8:44:d0:05:e0:47:
9a:ec:7d:1c:86:62:43:db:29:53:03:72:92:e4:27:94:87:0b:
c7:73:c5:35:87:89:c8:cc:e4:f0:86:80:74:e2:a5:8c:de:db:
23:c8:a7:9d:67:ed:71:dd:ed:54:83:d6:5b:09:24:0a:e3:bf:
38:c0:cd:a8:1f:77:6d:ad:a0:f3:8d:d1:b2:b7:9b:5f:04:c6:
70:62:4b:b3:7c:d8:d1:95:f2:fd:e2:83:20:96:84:5c:6f:67:
ef:cc:f3:1f:33:23:15:dd:71:a7:56:8a:1b:f2:71:cc:7d:74:
61:fb:21:f0:5d:49:e1:be:c5:ad:32:67:80:a8:dd:79:4e:31:
c7:93:42:28:64:01:fe:5b:b0:a7:03:64:a5:65:02:3a:b7:9f:
6d:8d:ea:b4:01:2c:91:f7:89:b3:69:4e:0c:89:71:6c:0a:b8:
ce:fe:3b:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org