Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/VGWWVbNNrWQPbj10bXQjp_pjFts.roa
File: VGWWVbNNrWQPbj10bXQjp_pjFts.roa (raw, json)
Hash identifier: c3bRrd1WWUngrh7mJ+sU1jfzGxkVSglLN09sIFGT4TI=
Subject key identifier: 54:65:96:55:B3:4D:AD:64:0F:6E:3D:74:6D:74:23:A7:FA:63:16:DB
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 018CCA2872A676239644D5524E96238DD6E1
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/VGWWVbNNrWQPbj10bXQjp_pjFts.roa
Signing time: Tue 02 Jan 2024 12:31:37 +0000
ROA not before: Tue 02 Jan 2024 12:31:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60631
IP address blocks: 185.243.48.0/24 maxlen: 24
178.239.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Apr 2024 12:27:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:28:72:a6:76:23:96:44:d5:52:4e:96:23:8d:d6:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Jan 2 12:31:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=54659655b34dad640f6e3d746d7423a7fa6316db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:16:7e:c5:ab:5f:ce:de:82:80:32:1e:e1:58:
d0:b2:ce:85:8f:ee:f7:6d:2d:72:9c:cb:72:a0:fb:
5d:1f:31:e6:cb:a8:57:62:08:47:13:a9:da:d1:53:
cb:23:e8:5c:0f:6f:da:cf:c3:63:0a:da:4c:c7:1f:
90:c3:2f:b3:65:ad:7b:60:98:30:3b:ea:b8:ba:44:
4f:bb:cb:15:de:03:d5:95:9b:b4:02:4d:bf:fd:a4:
3f:fa:2f:e1:df:18:77:fe:c4:e3:82:c7:fd:4e:96:
d3:c8:9a:9c:88:14:84:13:d7:7e:c0:d6:2a:9b:36:
72:ce:5b:c5:6d:12:18:70:5c:68:ac:de:f9:30:1a:
08:94:88:08:ac:53:af:67:c5:0f:0c:8f:9a:22:9a:
9d:d9:40:4e:74:98:3a:a5:6d:df:ef:fd:1d:c7:35:
a1:83:1a:c1:1d:2a:2b:58:ef:87:06:07:6f:4b:15:
2b:0e:d8:09:b0:e8:56:4a:f1:0b:e2:d1:81:b1:cd:
67:ff:8d:72:aa:c3:00:41:46:95:49:b7:80:76:88:
67:96:25:13:ed:a1:88:da:74:09:6c:7d:35:dd:38:
40:b3:fb:88:11:27:ce:aa:dd:92:a3:7e:b6:72:2e:
4b:0f:92:3f:c9:9a:d0:6f:6f:70:00:2f:a0:01:ad:
d1:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:65:96:55:B3:4D:AD:64:0F:6E:3D:74:6D:74:23:A7:FA:63:16:DB
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/VGWWVbNNrWQPbj10bXQjp_pjFts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.158.0/24
185.243.48.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:f2:c8:10:a0:a6:8f:f4:e8:b2:fd:da:e3:5b:ed:99:83:e1:
71:a5:b4:1f:75:32:d6:db:d4:36:56:b5:2c:ab:aa:32:c7:c4:
48:fd:94:ba:3e:36:0d:8e:d3:34:37:ea:26:03:a7:c4:0f:b8:
e8:d8:b2:43:ee:82:34:43:21:7e:be:34:b1:ea:88:c1:ba:96:
8f:7c:f9:3d:b0:c6:8f:77:d0:a3:6b:87:b7:fd:5e:49:2d:16:
ce:ce:ed:26:52:92:87:30:d6:c2:6d:8b:e5:a8:2f:a1:0d:dd:
dc:3a:0e:5c:01:18:64:47:84:e7:23:2b:18:8c:e9:68:21:64:
f6:11:20:92:7c:61:13:36:b5:71:cc:02:cc:b0:0c:2e:8f:68:
76:cc:77:e3:93:f1:e0:2e:b4:5e:d6:4c:fe:0d:d4:f8:13:1f:
1b:c6:fa:87:33:25:26:1e:7a:27:3e:4a:67:34:48:4e:19:3e:
df:f1:83:60:c9:7f:4d:9a:e6:e3:59:73:dc:3d:75:a7:3c:9b:
34:35:ee:f7:4b:ea:0d:15:21:b5:6c:cb:eb:da:43:67:a3:9c:
0b:af:72:db:12:61:b7:c7:f4:4c:7f:05:21:a0:88:ce:da:bb:
88:80:e8:12:e9:2c:74:ba:16:3d:1d:3a:7a:75:1f:93:98:6e:
00:30:b6:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:54 2025 by rpki-client