Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/VKUvImZ0CkfO8MtmE6ADkJ-2svQ.roa
File: VKUvImZ0CkfO8MtmE6ADkJ-2svQ.roa (raw, json)
Hash identifier: ALKNNB3JN4i/yRrh9tc+atg/FvWUHUUlZ9x/4GO8uns=
Subject key identifier: 54:A5:2F:22:66:74:0A:47:CE:F0:CB:66:13:A0:03:90:9F:B6:B2:F4
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 01922986216CC38C612A0DCEE646DC2DA7A7
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/VKUvImZ0CkfO8MtmE6ADkJ-2svQ.roa
Signing time: Wed 25 Sep 2024 14:11:49 +0000
ROA not before: Wed 25 Sep 2024 14:11:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64267
IP address blocks: 80.240.85.0/24 maxlen: 24
217.145.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Oct 2024 12:34:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:29:86:21:6c:c3:8c:61:2a:0d:ce:e6:46:dc:2d:a7:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Sep 25 14:11:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=54a52f2266740a47cef0cb6613a003909fb6b2f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:82:7c:60:bf:a8:a5:2e:67:e1:2e:e6:90:f9:
8c:bd:4c:8a:fc:1e:84:38:3c:bc:b9:4b:a0:8f:89:
46:55:dd:b6:f4:4b:05:5e:5b:3b:38:5d:4c:f9:75:
aa:22:55:1c:c9:d0:cf:de:66:04:20:3d:a4:39:01:
8d:24:68:94:d6:c4:cd:b2:25:7d:da:b0:c5:70:a9:
1e:9d:c2:13:f3:3b:c5:d7:e0:d6:15:64:16:91:7b:
14:49:2b:dc:00:65:d5:b2:96:f6:c1:dd:c0:e6:13:
17:12:d2:f3:9c:77:26:53:d0:d7:6b:15:87:34:6c:
9b:ed:a3:5d:5c:15:cb:e9:28:e8:c7:b6:f7:03:97:
52:1b:44:1d:70:b3:fc:a8:00:b6:57:dc:2a:c5:b8:
25:86:17:73:6e:f9:93:5f:58:e4:c5:7b:2a:bb:10:
cd:60:62:8d:2a:5e:70:59:3a:38:1a:67:42:7a:94:
0b:97:7b:2e:2e:29:79:61:fc:d5:cc:22:15:39:d6:
ad:78:bb:64:26:81:9f:eb:22:6d:73:03:eb:81:af:
e7:69:44:10:36:fc:c4:f7:87:86:09:1c:9f:cf:98:
ec:09:13:e5:ed:20:c6:99:fd:b7:55:44:8d:79:3e:
83:ba:40:a9:c4:af:81:a6:c6:8f:3f:68:d1:83:af:
c2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:A5:2F:22:66:74:0A:47:CE:F0:CB:66:13:A0:03:90:9F:B6:B2:F4
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/VKUvImZ0CkfO8MtmE6ADkJ-2svQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.240.85.0/24
217.145.71.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:22:be:04:cd:5b:68:7d:69:12:de:f8:9a:4a:8f:3c:18:18:
ab:ad:f3:c6:23:46:e3:b1:4a:d5:50:69:f1:3f:c4:66:67:78:
be:9b:f0:d4:8c:bf:b6:9a:7a:cb:f0:eb:69:99:d4:73:34:8d:
e7:96:86:f0:46:69:08:95:b3:a2:4b:1c:55:36:a6:42:8e:a9:
88:de:a2:35:95:ee:45:77:e1:ee:51:67:5c:3e:e2:db:c3:2e:
1f:d2:cc:51:f1:6e:73:29:86:44:5a:e8:09:3e:2a:6c:ba:f2:
cb:de:d4:1d:e1:80:c3:0d:ba:9d:63:b5:b3:6a:c4:f5:59:a1:
7e:86:e8:fe:0b:99:95:78:77:c7:e7:7b:74:11:b9:73:b6:c3:
99:10:4c:72:1d:fe:06:be:42:d9:62:0b:08:5d:b5:37:bd:98:
4b:73:24:7c:06:dd:32:ae:88:34:3f:5b:96:5f:d0:2f:75:06:
ba:ff:cd:49:34:bb:e7:ed:fe:49:27:c3:fe:fa:90:fd:8d:07:
95:c0:4b:c2:0a:d3:a9:ad:ed:91:76:22:0a:75:00:d3:73:3b:
6c:40:9a:75:36:bf:c4:0f:5a:bb:bf:fc:93:fe:96:95:b7:50:
35:1f:50:ff:94:f5:d4:c0:0f:28:55:56:60:14:ab:91:18:29:
41:a3:6e:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:11:01 2025 by rpki-client