Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/VVxKmlev6QXbBvpg7uqRpAJ2Brw.roa
File: VVxKmlev6QXbBvpg7uqRpAJ2Brw.roa (raw, json)
Hash identifier: Lyuw539WF9+Pf+FRYqcLPrg/w9/02IZ8m5o48mxGS1Q=
Subject key identifier: 55:5C:4A:9A:57:AF:E9:05:DB:06:FA:60:EE:EA:91:A4:02:76:06:BC
Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Certificate serial: 0191563E0095BE6371DE07ADBD25550751AC
Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/VVxKmlev6QXbBvpg7uqRpAJ2Brw.roa
Signing time: Thu 15 Aug 2024 13:33:09 +0000
ROA not before: Thu 15 Aug 2024 13:33:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44620
IP address blocks: 213.182.196.0/24 maxlen: 24
213.182.197.0/24 maxlen: 24
213.182.198.0/24 maxlen: 24
213.182.200.0/24 maxlen: 24
213.182.203.0/24 maxlen: 24
213.182.206.0/24 maxlen: 24
213.182.208.0/24 maxlen: 24
213.182.209.0/24 maxlen: 24
213.182.214.0/24 maxlen: 24
213.182.217.0/24 maxlen: 24
213.182.219.0/24 maxlen: 24
213.182.220.0/24 maxlen: 24
213.182.222.0/24 maxlen: 24
213.182.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Aug 2024 15:07:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:56:3e:00:95:be:63:71:de:07:ad:bd:25:55:07:51:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Validity
Not Before: Aug 15 13:33:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=555c4a9a57afe905db06fa60eeea91a4027606bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8d:df:53:3b:c7:a6:3a:85:eb:1d:87:68:f4:
e6:1d:1f:6c:b8:22:72:88:29:ec:24:26:9b:06:f6:
2e:f3:47:70:6e:c3:9d:f4:2d:26:36:d5:a4:74:0d:
c8:bd:d7:f7:6d:7e:0f:f3:c8:c2:c7:31:1d:83:9a:
f8:cd:a8:e1:38:f8:bf:de:05:0b:00:86:af:94:89:
50:93:10:04:b9:3d:5b:f6:61:4d:8e:62:f5:b3:dc:
88:21:ac:c2:ce:07:55:27:c3:31:33:ca:ad:b8:9e:
e1:e4:29:d3:31:25:3a:b8:e3:a0:b1:0c:01:20:8e:
b2:4f:1c:bb:3b:82:65:59:02:2d:5c:b7:c3:0f:3a:
43:5b:34:9b:df:d5:5b:f2:77:c2:a0:47:61:78:45:
19:b7:d5:f2:bd:b1:5e:d4:36:18:70:1a:74:81:7b:
df:26:11:ac:53:2c:5c:84:46:2a:f4:67:a7:b1:24:
47:ed:81:fd:2d:8c:cc:ab:91:ea:8e:16:1f:1e:a3:
9f:8d:6b:fa:2c:4e:a9:ed:53:ca:2e:8c:d4:23:ed:
80:00:c9:8c:55:42:eb:68:70:61:41:cb:53:4b:51:
97:bd:04:30:d2:23:7d:90:c6:15:10:88:a2:3d:09:
75:2c:6c:9f:5e:4c:63:c2:02:89:67:d7:19:aa:31:
ec:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:5C:4A:9A:57:AF:E9:05:DB:06:FA:60:EE:EA:91:A4:02:76:06:BC
X509v3 Authority Key Identifier:
keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/VVxKmlev6QXbBvpg7uqRpAJ2Brw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.182.196.0-213.182.198.255
213.182.200.0/24
213.182.203.0/24
213.182.206.0/24
213.182.208.0/23
213.182.214.0/24
213.182.217.0/24
213.182.219.0-213.182.220.255
213.182.222.0/23
Signature Algorithm: sha256WithRSAEncryption
47:ec:4f:a8:cf:c2:90:d4:d5:58:dd:7b:dd:80:3f:ac:c8:58:
27:c9:3b:f6:f0:2a:de:9a:66:d6:eb:65:88:1e:21:aa:51:94:
77:c9:55:e8:f1:cd:77:55:3f:26:53:e8:93:45:86:20:82:24:
09:d0:b9:4b:0f:b5:3a:37:15:7f:3f:30:63:0a:ce:6f:0f:fb:
f7:3e:21:76:fa:53:e0:4f:b1:85:01:13:7d:b6:85:9b:dd:9d:
b9:65:80:f5:0b:55:49:82:bd:b6:c8:3b:5b:0f:8e:a4:ea:7b:
99:b0:87:1a:3c:62:7b:69:3d:de:e2:c7:4a:41:71:fb:77:ec:
ba:97:aa:fc:5d:c7:c6:44:4a:a9:e4:f1:8b:52:b6:c6:2a:db:
16:10:e4:a6:87:03:2a:d4:fd:d7:44:ea:db:d0:e4:cf:32:f6:
64:a3:0a:24:cc:fd:11:36:14:69:3b:14:ba:99:92:93:7e:f1:
1d:cd:b4:b0:42:03:9a:1b:f3:68:ff:f0:51:d3:bd:62:b9:84:
d0:45:d8:c6:2a:5b:e6:d6:8a:38:65:1e:28:a4:a3:eb:c1:7f:
bf:fe:d7:24:66:28:ff:f3:95:4c:e6:e2:cd:09:0a:6c:6f:e2:
f1:de:5d:52:cd:f5:8e:b9:8a:f1:c9:bb:f7:b3:fd:12:79:1f:
70:61:6e:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 16 18:53:13 2024 by rpki-client on console-ams.rpki-client.org