Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/vBggSQWTLNnQhwmBr95WxzYJwVg.roa
File: vBggSQWTLNnQhwmBr95WxzYJwVg.roa (raw, json)
Hash identifier: k/8cjnclTbDv2Sh/E9dHwjEpKkPoYuXQxZ5CgHAiyo4=
Subject key identifier: BC:18:20:49:05:93:2C:D9:D0:87:09:81:AF:DE:56:C7:36:09:C1:58
Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Certificate serial: 0188E74C99FC23AF9170A5D97C1FC3AB74BE
Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/vBggSQWTLNnQhwmBr95WxzYJwVg.roa
Signing time: Fri 23 Jun 2023 08:08:57 +0000
ROA not before: Fri 23 Jun 2023 08:08:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210687
IP address blocks: 5.183.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e7:4c:99:fc:23:af:91:70:a5:d9:7c:1f:c3:ab:74:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Validity
Not Before: Jun 23 08:08:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc18204905932cd9d0870981afde56c73609c158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:46:44:3a:2c:92:2a:83:68:e4:8c:99:01:b7:
93:36:b0:08:d4:c5:1f:94:30:63:d9:73:8a:2f:90:
9a:68:6d:f8:54:19:fe:b2:76:97:71:31:e0:4c:32:
53:a9:7e:dd:6f:f5:d6:db:f4:6f:88:8c:f5:bb:ec:
da:e6:4d:6e:28:c8:85:6d:7a:d4:96:66:44:46:1a:
f8:20:63:85:15:cf:78:eb:f8:73:0a:9f:16:19:fe:
92:60:79:0d:22:7f:ca:5b:0e:d8:2e:5b:5e:ca:19:
d8:aa:b3:74:c0:5f:cb:ba:32:e1:04:c2:b0:ba:76:
a5:b8:43:19:cf:d3:81:88:f7:27:3e:0c:5b:23:2d:
43:46:97:43:da:3b:24:82:6c:59:14:e7:0e:1c:0f:
d9:4b:09:11:c9:6a:72:22:ab:05:ed:fa:99:d6:39:
b8:ec:41:ff:0d:9d:49:f0:65:c8:f2:ee:e5:eb:90:
16:1f:d0:84:f6:70:7d:17:55:c9:4d:2d:08:72:ce:
07:60:ce:3d:61:db:f1:2f:e5:f9:3f:54:21:86:c1:
75:0b:42:28:cf:f9:29:55:ea:1b:7d:d5:c6:79:91:
14:16:de:3f:49:3a:06:4a:0b:d8:d3:ff:56:15:40:
78:ab:7b:7b:1a:eb:a0:d2:2a:1a:c7:96:75:68:4f:
5f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:18:20:49:05:93:2C:D9:D0:87:09:81:AF:DE:56:C7:36:09:C1:58
X509v3 Authority Key Identifier:
keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/vBggSQWTLNnQhwmBr95WxzYJwVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.109.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:e6:b4:11:f5:92:4e:c8:9d:26:97:18:95:66:fb:a1:fb:ec:
c7:a1:25:52:84:fb:15:b0:d5:a4:0d:61:a7:ee:56:3f:b5:2b:
4f:2c:f5:95:16:53:55:c4:f0:c6:8b:1a:87:78:41:99:d0:37:
d0:4e:27:d6:41:dc:ca:f2:6d:ec:e4:44:1a:88:66:00:78:48:
e6:fc:ed:29:99:3b:30:26:07:b8:16:da:3c:7b:a3:14:88:4c:
ac:37:be:6b:d9:37:f6:64:b5:2d:58:af:6a:9d:4d:82:50:06:
4b:e2:74:f4:de:f3:87:4d:97:24:98:d8:ed:1f:51:08:c7:88:
e9:04:4e:9d:fd:47:82:8c:bc:08:eb:b8:f3:63:d5:56:fe:78:
5c:cf:b8:33:76:7d:d9:4f:1e:39:af:b4:cc:24:e4:4e:8a:ee:
d5:ec:58:99:db:20:db:fa:d4:34:5e:2c:7c:44:0d:21:51:f7:
82:a0:7e:c5:ab:59:61:d0:9c:37:58:e3:b3:7c:41:31:33:53:
8b:f9:65:b0:de:c9:bc:c7:62:54:3c:9e:ba:dc:50:13:d5:c6:
a3:22:7b:fc:14:50:40:a7:d3:c6:ba:68:1d:4d:5c:8c:1f:73:
47:c3:c1:5b:45:80:97:6f:64:fc:7a:89:6e:43:23:3a:21:47:
41:75:64:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:14 2024 by rpki-client on console-ams.rpki-client.org