Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/vigNk39M6ONZIZCqYt1ofY_ksB8.roa
File: vigNk39M6ONZIZCqYt1ofY_ksB8.roa (raw, json)
Hash identifier: fyoU2ifeIfUdkTtyCaN0KLEMGTYCavwH7/yfs7Qinsc=
Subject key identifier: BE:28:0D:93:7F:4C:E8:E3:59:21:90:AA:62:DD:68:7D:8F:E4:B0:1F
Certificate issuer: /CN=87958ba661c435ccd25c2060462ef600d2719ee0
Certificate serial: 0192569A5912DE6CB381028E29E7A1A6DD25
Authority key identifier: 87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/vigNk39M6ONZIZCqYt1ofY_ksB8.roa
Signing time: Fri 04 Oct 2024 08:16:48 +0000
ROA not before: Fri 04 Oct 2024 08:16:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35356
IP address blocks: 80.93.144.0/20 maxlen: 20
80.93.144.0/21 maxlen: 21
80.93.146.0/24 maxlen: 24
80.93.147.0/24 maxlen: 24
80.93.149.0/24 maxlen: 24
80.93.154.0/24 maxlen: 24
80.93.155.0/24 maxlen: 24
80.93.156.0/24 maxlen: 24
80.93.157.0/24 maxlen: 24
80.93.159.0/24 maxlen: 24
83.142.248.0/22 maxlen: 22
83.142.252.0/23 maxlen: 23
83.142.254.0/24 maxlen: 24
83.142.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:47:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:56:9a:59:12:de:6c:b3:81:02:8e:29:e7:a1:a6:dd:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87958ba661c435ccd25c2060462ef600d2719ee0
Validity
Not Before: Oct 4 08:16:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be280d937f4ce8e3592190aa62dd687d8fe4b01f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:7d:b2:14:fe:29:d8:ee:9d:9a:f9:65:b1:de:
99:d4:7e:8b:3a:b4:8a:70:37:c5:75:47:f8:d9:b3:
bd:06:f8:e0:d3:4d:81:98:ed:36:71:65:5b:4e:61:
c5:b1:df:41:54:2e:44:ce:3d:77:c4:f0:5c:a1:7d:
8f:00:70:c0:52:c4:b3:b2:05:b2:56:26:a6:4a:80:
a0:03:28:3b:3c:98:37:05:1d:e3:df:35:ec:28:8f:
76:c7:34:58:6b:b3:07:6e:04:58:d6:98:31:47:5c:
c6:a0:73:af:5e:d8:b1:3d:c5:05:52:b0:8a:0c:a8:
b4:3e:b2:75:79:2d:5f:14:c3:33:0c:24:a8:0c:50:
8b:1c:f7:6f:1c:75:12:46:ad:3e:93:85:1e:d4:88:
c1:3f:fd:a8:23:dd:67:06:a2:f0:71:ef:89:2f:41:
c1:69:1e:8a:f9:92:6c:e8:ca:7c:19:aa:9d:3e:a9:
c1:f1:06:9b:24:19:5b:e6:3c:fa:d4:f1:9d:45:fe:
ff:53:cc:02:10:c1:4f:d6:f1:36:57:93:a2:b8:1c:
de:c7:b0:6f:c9:63:4c:d2:3d:56:e8:22:4e:3a:3d:
db:06:09:60:c0:68:e9:96:e7:03:d7:83:6c:59:93:
77:58:15:ee:f4:ff:78:10:f7:7d:fe:7d:43:2d:ea:
fa:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:28:0D:93:7F:4C:E8:E3:59:21:90:AA:62:DD:68:7D:8F:E4:B0:1F
X509v3 Authority Key Identifier:
keyid:87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/vigNk39M6ONZIZCqYt1ofY_ksB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.93.144.0/20
83.142.248.0/21
Signature Algorithm: sha256WithRSAEncryption
9a:b7:96:87:6c:fe:59:2d:d7:4b:5f:6f:20:c8:20:8a:5b:cc:
14:47:0b:dd:62:cb:83:a6:6c:26:33:c4:36:7c:51:80:51:98:
40:e4:3d:f3:58:9d:75:5d:91:ba:d3:0d:26:16:04:20:32:82:
51:0c:cc:7d:62:d5:35:a7:ed:20:c3:da:57:27:14:05:18:f1:
f6:ac:a2:8e:6e:99:24:bd:2e:e9:dc:e9:48:11:2c:d5:2f:17:
5a:14:82:fd:b5:bd:53:8f:33:49:9f:68:56:a9:fd:d4:f5:e2:
c8:c8:8a:c2:b5:f5:3f:58:47:3f:88:a0:d7:5a:3f:34:44:34:
8b:9e:a2:ce:67:07:54:1d:8c:50:58:6c:5c:2d:70:63:2a:df:
11:1c:31:6f:d7:27:ca:cb:aa:2e:e2:fe:39:28:9a:fc:19:54:
ad:8a:7e:fc:47:73:ca:eb:83:c5:3b:6c:6e:1e:67:b6:51:95:
7e:09:ea:c0:e4:26:c3:48:9e:1b:53:b2:5c:03:15:5c:98:32:
ea:29:22:30:ce:14:d5:83:0e:6c:01:4b:4e:2b:52:96:a4:cf:
eb:90:93:7e:1a:2c:78:4e:dd:58:4e:30:d3:28:13:aa:3f:b8:
db:d9:0b:54:56:4a:4a:9b:b8:5f:8e:09:22:6f:9a:c5:5b:40:
5f:d2:24:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:21 2025 by rpki-client