Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/VRtgveS-l3vXXeqm0tZ-xBAugjU.roa
File: VRtgveS-l3vXXeqm0tZ-xBAugjU.roa (raw, json)
Hash identifier: 7yZEvFDA7J2k8gbTfnYI9wfZudx4aDA9MBRly6IM2D4=
Subject key identifier: 55:1B:60:BD:E4:BE:97:7B:D7:5D:EA:A6:D2:D6:7E:C4:10:2E:82:35
Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd
Certificate serial: 0188C11561BCEEE500BE291A7FCA77B1A114
Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/VRtgveS-l3vXXeqm0tZ-xBAugjU.roa
Signing time: Thu 15 Jun 2023 22:03:03 +0000
ROA not before: Thu 15 Jun 2023 22:03:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46337
IP address blocks: 199.103.58.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c1:15:61:bc:ee:e5:00:be:29:1a:7f:ca:77:b1:a1:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd
Validity
Not Before: Jun 15 22:03:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=551b60bde4be977bd75deaa6d2d67ec4102e8235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:ee:10:9e:ad:a8:0d:f5:e2:96:9d:dc:1d:3c:
e6:c8:02:d0:bf:5c:30:93:ae:28:41:c7:3e:4d:5d:
86:db:56:15:94:cb:59:36:ce:35:b8:96:8d:05:e2:
e3:d5:89:2d:3a:c3:28:ba:d7:e5:63:67:cd:05:28:
81:72:31:04:90:d3:d0:da:0d:de:d4:c3:00:d2:ed:
73:9d:bb:54:21:6d:16:42:59:ac:ef:f6:7e:bb:9c:
64:0c:08:07:47:1e:b0:2d:6e:f0:00:ef:27:e4:83:
07:63:b5:68:0d:c4:c6:97:71:a3:67:0d:91:5c:b1:
a8:d0:0e:a5:da:44:fb:ba:70:41:a0:69:b5:96:6f:
a0:5f:90:76:23:29:b3:e6:f8:c1:eb:dd:85:b3:49:
f1:8f:f3:79:30:4f:a1:a8:3c:62:9f:52:ff:ca:a0:
ce:d5:f1:81:7a:f4:bb:cd:b6:d3:18:5b:ea:49:d1:
73:75:56:75:6e:b2:3e:ba:7c:1d:fc:73:d7:35:62:
e5:60:3e:98:67:ff:6c:df:ab:63:75:74:e9:91:a7:
a6:86:33:c0:2b:a2:d1:1e:05:e3:1a:f7:17:45:86:
4b:93:b4:71:86:11:ca:0e:dd:95:47:7c:91:fd:79:
36:33:e3:f5:a9:0e:1c:41:db:53:e8:e4:4e:72:44:
8a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:1B:60:BD:E4:BE:97:7B:D7:5D:EA:A6:D2:D6:7E:C4:10:2E:82:35
X509v3 Authority Key Identifier:
keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/VRtgveS-l3vXXeqm0tZ-xBAugjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.103.58.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:a9:08:88:97:2a:d4:8c:ca:29:43:9c:38:f4:8a:fa:45:13:
6c:af:7a:06:e2:8f:21:80:cf:48:cb:83:92:c2:ec:3f:58:44:
68:8b:d1:bb:5f:92:6d:74:e0:4d:ce:e0:32:ff:a9:47:6b:59:
1b:87:a6:e0:7e:a0:d9:30:8a:49:16:cd:a0:68:bd:e1:83:e2:
ec:da:f7:d0:4b:c5:19:1d:fd:db:ef:e2:63:16:fd:aa:55:9c:
21:0f:13:a9:dc:8a:4d:54:35:37:ec:a0:48:02:b3:a9:bc:49:
6b:ac:ed:15:ac:9f:54:1a:40:b4:dd:a8:aa:3a:6b:5f:f1:ba:
51:40:0b:9c:59:72:d4:28:d9:fb:cb:5f:5e:06:ff:0e:c3:ba:
69:a2:b7:c0:58:a5:b9:a7:4b:8e:b7:1a:96:38:29:64:ae:ac:
94:bb:f0:0d:c8:67:fd:7e:7e:41:89:49:79:c4:94:96:8b:de:
b5:b1:c6:80:bf:d3:4c:8a:7d:78:b9:84:06:59:2e:80:d1:29:
65:91:b3:d8:33:b8:c6:ff:68:32:e2:20:5c:6e:8b:97:e6:14:
3f:c4:2c:ad:e5:52:b3:18:24:e3:5d:5e:a9:8e:c7:4e:bc:5b:
b2:8f:8b:35:d2:a5:58:34:c9:2f:15:7a:a3:65:06:f8:32:e0:
30:4e:90:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:30 2024 by rpki-client on console-fra.rpki-client.org