Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/vggs05pzhuaXdk9B4DzwB_BLC18.roa
File: vggs05pzhuaXdk9B4DzwB_BLC18.roa (raw, json)
Hash identifier: I1xStJCosKWtqRyTE1Msldf/oIAQEv36gvYjCvAe3ns=
Subject key identifier: BE:08:2C:D3:9A:73:86:E6:97:76:4F:41:E0:3C:F0:07:F0:4B:0B:5F
Certificate issuer: /CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Certificate serial: 0194C86800736774773A9AF602A3EE750337
Authority key identifier: FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/vggs05pzhuaXdk9B4DzwB_BLC18.roa
Signing time: Sun 02 Feb 2025 20:44:06 +0000
ROA not before: Sun 02 Feb 2025 20:44:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 212.87.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 08:21:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c8:68:00:73:67:74:77:3a:9a:f6:02:a3:ee:75:03:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Validity
Not Before: Feb 2 20:44:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=be082cd39a7386e697764f41e03cf007f04b0b5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9d:02:1d:38:61:77:40:31:ac:0e:71:4c:5f:
eb:40:55:6a:25:1a:70:ca:95:dc:13:c3:77:b8:df:
9d:23:52:8f:d0:52:54:de:ba:c0:90:6a:6d:c1:7f:
fa:3f:5d:49:6c:95:53:1e:94:f3:b7:5e:9a:c5:bb:
53:a8:62:7c:d9:9e:d2:eb:30:af:1a:02:62:36:db:
cd:ef:a9:82:37:95:44:16:33:08:a1:8d:53:bb:ca:
a3:f6:c1:91:86:fb:f4:8b:1c:d5:6f:f4:64:cc:7e:
b2:b7:2e:bd:d9:3b:17:ee:b1:95:de:50:de:7c:54:
3e:b6:53:00:39:40:79:68:59:19:86:12:6e:2d:11:
bd:06:fa:c4:bd:fc:af:fe:0c:b8:8f:6a:3f:70:5b:
a2:3e:d6:6a:9e:ee:b8:4c:f2:56:d1:ba:f4:05:13:
30:7f:4c:aa:a5:9e:a3:d5:fb:4d:de:1a:9a:90:b5:
0f:33:65:16:26:13:3b:ee:95:46:28:9a:5e:39:30:
3b:1e:c4:a8:a2:5c:86:83:db:3a:70:59:fc:88:fa:
9f:36:68:8f:54:8a:ec:3e:53:4c:3a:d2:be:bc:29:
2c:96:b2:3c:59:03:52:fd:16:a0:70:d4:ca:d7:5b:
51:b2:eb:ef:03:bd:d4:5b:29:ef:e7:8b:67:72:5b:
87:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:08:2C:D3:9A:73:86:E6:97:76:4F:41:E0:3C:F0:07:F0:4B:0B:5F
X509v3 Authority Key Identifier:
keyid:FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/vggs05pzhuaXdk9B4DzwB_BLC18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.87.200.0/24
Signature Algorithm: sha256WithRSAEncryption
87:5f:76:c8:7c:33:84:d0:21:e2:54:af:f1:b5:22:80:bb:a6:
a1:ef:9d:90:2b:5a:d9:d3:51:5e:d5:58:ef:0b:34:53:1a:59:
0a:7a:94:41:d9:8e:ca:f1:9c:f4:29:41:38:bd:cc:a8:b7:fa:
0b:d2:a5:34:6a:82:91:a9:2f:85:05:07:81:d3:f9:2c:ba:5c:
f1:2e:fe:08:b7:4b:e8:1c:81:d9:5e:7b:5b:c4:1a:25:41:c2:
d3:1f:6b:b1:0d:af:cd:0e:49:2d:2f:ad:fa:0b:84:e4:47:1d:
d7:99:0e:81:ae:3a:2c:a0:6a:1a:1c:89:5e:14:0b:0a:2a:fe:
3d:b2:a8:68:59:49:e6:db:b2:0b:09:a3:13:62:5a:ce:72:a0:
cb:59:63:b6:b3:f7:93:53:bb:91:ee:74:bf:fc:a9:20:5b:24:
36:d3:3f:f9:3a:c5:64:57:72:90:f7:b6:65:42:e2:34:4f:b6:
13:8f:4e:8c:18:d4:15:79:fa:a4:73:22:43:6f:a1:49:71:ea:
ab:b4:c7:f6:d5:89:23:17:1c:c9:02:e3:0f:9c:28:cf:68:bd:
e8:06:97:e9:2d:ba:4e:d7:8a:0f:08:6f:8c:c8:aa:d2:9c:55:
24:5b:d4:6c:1b:b1:a7:05:6f:d0:d4:db:60:0d:b6:10:10:a4:
e0:6a:a1:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:43:31 2025 by rpki-client