Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/579507-0f1c-4482-81f8-23becabee485/1/vceDgNyUieNYc5XQcWH1UFXDR68.roa
File: vceDgNyUieNYc5XQcWH1UFXDR68.roa (raw, json)
Hash identifier: vFanJFKffri6MAjrR132HOJjjOmSo25bhIsLNCITDoU=
Subject key identifier: BD:C7:83:80:DC:94:89:E3:58:73:95:D0:71:61:F5:50:55:C3:47:AF
Certificate issuer: /CN=9e193d6f48067ffb8732cc432697542313dc6783
Certificate serial: 0193AED8F15AD1A9216D55916C45C5254A18
Authority key identifier: 9E:19:3D:6F:48:06:7F:FB:87:32:CC:43:26:97:54:23:13:DC:67:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhk9b0gGf_uHMsxDJpdUIxPcZ4M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/579507-0f1c-4482-81f8-23becabee485/1/vceDgNyUieNYc5XQcWH1UFXDR68.roa
Signing time: Tue 10 Dec 2024 04:34:33 +0000
ROA not before: Tue 10 Dec 2024 04:34:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48955
IP address blocks: 91.217.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:47:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ae:d8:f1:5a:d1:a9:21:6d:55:91:6c:45:c5:25:4a:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e193d6f48067ffb8732cc432697542313dc6783
Validity
Not Before: Dec 10 04:34:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bdc78380dc9489e3587395d07161f55055c347af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:80:aa:84:26:1f:e5:2c:c4:48:9f:4d:9e:d8:
65:34:0e:74:c4:1d:18:14:a2:a9:14:af:06:ad:c2:
ea:f6:c4:f8:ed:ca:f4:0e:8b:bd:f9:ad:0f:ed:db:
d6:30:45:77:8c:bc:82:95:fe:69:0f:57:f0:a4:23:
9f:a4:2d:a6:7a:eb:dc:cd:a0:23:15:9c:48:fe:c7:
11:8b:18:b3:87:da:e0:ab:57:6b:e8:3f:dc:8b:ea:
2f:f7:11:22:57:b8:0f:87:a2:7a:bc:ee:69:a8:bd:
e6:b9:43:5a:9e:36:43:6b:cb:10:8d:67:b8:64:7e:
6e:1d:27:f3:dc:bb:7f:96:9a:36:d7:d5:bf:e4:0f:
c0:cb:b1:d0:08:72:e3:11:7b:63:f4:cb:71:66:7d:
c9:21:37:82:ce:6c:4c:1d:79:24:96:e1:d0:09:90:
e0:e0:24:11:db:3d:a5:45:26:87:a5:83:0b:fe:d0:
b0:a7:bc:f5:e6:bd:7b:0f:99:ec:78:23:ab:65:f9:
df:a7:dd:a0:bc:a4:50:57:9f:ee:48:c7:98:aa:47:
62:49:b8:b7:fd:a4:4b:12:1a:6a:c1:10:5f:fb:65:
92:2b:3b:e6:3a:6c:1e:7f:66:4f:b2:3c:f6:df:24:
68:49:23:f3:08:00:d0:26:62:af:a6:7a:fb:6b:d8:
a8:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:C7:83:80:DC:94:89:E3:58:73:95:D0:71:61:F5:50:55:C3:47:AF
X509v3 Authority Key Identifier:
keyid:9E:19:3D:6F:48:06:7F:FB:87:32:CC:43:26:97:54:23:13:DC:67:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhk9b0gGf_uHMsxDJpdUIxPcZ4M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/579507-0f1c-4482-81f8-23becabee485/1/vceDgNyUieNYc5XQcWH1UFXDR68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/579507-0f1c-4482-81f8-23becabee485/1/nhk9b0gGf_uHMsxDJpdUIxPcZ4M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.226.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:a5:e6:2e:4d:34:5e:af:2f:ec:77:d6:4e:47:53:ec:33:b6:
7f:e3:db:03:5e:82:d7:df:41:bd:75:1e:d0:66:58:ca:d2:46:
6f:c6:86:aa:4c:da:00:25:58:4e:0f:c3:af:c6:ec:f4:46:38:
6c:eb:30:22:3f:7a:30:24:70:de:26:f2:08:63:aa:46:02:ef:
ba:48:2a:5a:fb:90:04:18:6d:4e:32:b2:c6:29:52:e4:f1:4a:
ee:89:8f:cb:df:c5:d0:1f:71:96:b5:ca:be:ba:1d:eb:77:24:
b3:45:c8:e1:97:ea:58:5f:d1:7a:17:7d:22:37:f5:ea:2d:7d:
9c:64:1f:29:c9:ac:b9:b4:04:7a:ee:f2:35:4e:83:4f:4b:fd:
6a:5c:53:eb:ba:99:ee:25:99:e9:45:92:dd:13:e3:c6:ae:11:
7e:d3:34:e6:71:5e:67:41:66:42:8e:0a:08:04:e4:6a:b5:b8:
0f:ae:b9:9f:03:ad:87:cf:50:60:b0:10:c4:26:97:02:ad:52:
22:e1:31:69:33:10:93:36:5a:7f:9b:a2:50:16:53:da:e3:12:
4a:0d:ba:a4:58:e3:7a:d5:73:db:f2:65:01:31:c4:88:7e:14:
0e:0c:b5:04:9c:1e:d3:4a:7c:cd:9b:33:fb:46:3b:6d:b9:f6:
15:57:c2:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 19:21:30 2025 by rpki-client