Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/VrW_HHvUGtGq7tqvFigGTMAwb4g.roa
File: VrW_HHvUGtGq7tqvFigGTMAwb4g.roa (raw, json)
Hash identifier: rgLYtGKN/oInUwaxrtQzJhi8trXae4taaNoRxNIbfq0=
Subject key identifier: 56:B5:BF:1C:7B:D4:1A:D1:AA:EE:DA:AF:16:28:06:4C:C0:30:6F:88
Certificate issuer: /CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Certificate serial: 01909EC8BE9D96EFE2B59047BC281B3C0372
Authority key identifier: 27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/VrW_HHvUGtGq7tqvFigGTMAwb4g.roa
Signing time: Wed 10 Jul 2024 22:34:34 +0000
ROA not before: Wed 10 Jul 2024 22:34:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 91.204.78.0/24 maxlen: 24
195.34.94.0/24 maxlen: 24
195.34.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jul 2024 17:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9e:c8:be:9d:96:ef:e2:b5:90:47:bc:28:1b:3c:03:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Validity
Not Before: Jul 10 22:34:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=56b5bf1c7bd41ad1aaeedaaf1628064cc0306f88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a7:b6:f8:df:57:49:bd:20:4c:24:a5:df:fb:
27:ef:8b:a3:97:6a:e7:57:96:43:77:ce:69:74:9f:
05:9b:18:4f:59:88:94:b6:45:85:5f:f5:60:d8:e9:
f3:35:55:74:cc:61:f8:a8:fd:03:be:a8:ec:7f:75:
26:be:97:75:f3:63:1b:45:c8:66:f6:00:de:ee:8f:
3b:44:54:42:89:ac:9f:6a:96:d7:72:e5:02:a7:10:
64:d1:0d:06:a5:63:33:33:e6:c6:e1:d4:b1:c0:40:
5f:ed:cc:70:83:88:8b:6b:f4:b4:b8:31:66:e5:30:
cb:fd:66:51:1d:95:a3:e0:20:b2:66:2b:a9:b1:a9:
e6:2e:07:5b:ab:3a:07:6f:ab:17:65:8a:be:29:1c:
34:be:1a:8d:ea:aa:37:de:60:82:b5:03:ea:a4:88:
00:e9:37:10:fb:56:f8:69:f4:fc:6e:f6:e8:0a:85:
80:97:f7:09:31:c1:3f:c5:5e:11:f0:06:94:ea:34:
ee:cb:c6:a5:1b:24:89:32:7f:ae:1d:26:27:80:99:
dc:b4:b5:0d:49:b1:20:40:e9:6a:a0:4b:5a:27:d8:
06:8a:ef:7c:08:57:da:ab:8f:c0:9c:91:1a:0c:16:
5c:a4:16:62:47:15:c9:c0:2c:42:4b:59:1a:38:88:
0a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:B5:BF:1C:7B:D4:1A:D1:AA:EE:DA:AF:16:28:06:4C:C0:30:6F:88
X509v3 Authority Key Identifier:
keyid:27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/VrW_HHvUGtGq7tqvFigGTMAwb4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.204.78.0/24
195.34.94.0/23
Signature Algorithm: sha256WithRSAEncryption
90:4b:35:4f:53:99:c0:66:c0:b6:a8:7a:70:55:ad:dd:39:7e:
e7:c7:fd:1a:29:a9:3e:61:e3:62:0b:da:c9:21:46:3f:9b:e2:
e9:9a:16:55:17:0a:34:ab:14:58:ae:0a:51:88:b2:7e:da:c5:
c5:82:f4:3f:1d:1c:5f:d8:2d:cf:95:1f:df:2b:da:15:77:89:
2b:a9:2f:88:74:5e:4c:4f:82:58:a3:80:6b:79:cf:47:bf:f4:
19:dd:30:7a:dc:6b:93:2b:f5:26:1b:45:d7:0b:17:5c:b2:a0:
07:32:de:eb:bd:9b:dc:0a:09:31:92:c6:76:76:65:32:78:3d:
1b:18:8a:e4:5a:be:cf:c6:e8:22:fd:0f:09:99:b2:27:a8:c9:
95:31:a8:7b:b9:99:db:a0:51:96:c8:16:8f:b7:a7:f9:e3:94:
19:fd:82:1f:19:a2:1c:8c:e3:eb:ed:a9:4c:43:9b:08:70:9d:
47:4e:6c:dc:29:84:4d:02:60:e2:54:27:e3:8f:54:f7:54:10:
c3:91:ff:bf:8e:e4:d4:4c:0c:fa:08:c6:dd:c3:09:fc:b5:25:
d5:68:d0:ff:10:41:f9:54:cd:20:87:d9:fe:6d:7d:aa:f5:d7:
e9:6c:5d:00:42:bb:fa:dc:2b:1c:14:c0:9d:cb:27:a4:42:89:
b1:55:d7:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 12 20:12:26 2024 by rpki-client on console-ams.rpki-client.org