Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/VLUnyPpT0xIVduRzS8EhH19kfIg.roa
File: VLUnyPpT0xIVduRzS8EhH19kfIg.roa (raw, json)
Hash identifier: dA+wj28Stsy8zS8SZGzGaEg420bVe0w3J/UVbm+Hg5M=
Subject key identifier: 54:B5:27:C8:FA:53:D3:12:15:76:E4:73:4B:C1:21:1F:5F:64:7C:88
Certificate issuer: /CN=d79785de62dcf9e7930babd7b1d39c5853d1944f
Certificate serial: 01857169AA33B73C47EFAD5A92DB6CECB686
Authority key identifier: D7:97:85:DE:62:DC:F9:E7:93:0B:AB:D7:B1:D3:9C:58:53:D1:94:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15eF3mLc-eeTC6vXsdOcWFPRlE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/VLUnyPpT0xIVduRzS8EhH19kfIg.roa
Signing time: Mon 02 Jan 2023 07:37:08 +0000
ROA not before: Mon 02 Jan 2023 07:37:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212689
IP address blocks: 37.10.8.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:aa:33:b7:3c:47:ef:ad:5a:92:db:6c:ec:b6:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d79785de62dcf9e7930babd7b1d39c5853d1944f
Validity
Not Before: Jan 2 07:37:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54b527c8fa53d3121576e4734bc1211f5f647c88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c5:ed:e8:83:cf:e2:15:d0:9f:d4:09:fa:b0:
62:b9:50:5e:29:60:65:e8:12:9e:a3:6b:be:40:33:
a1:6a:8c:d8:ce:be:c0:47:40:46:3b:8a:bc:58:4b:
61:d4:c4:20:6b:1e:e5:e7:b7:0f:2a:96:cf:b0:57:
91:f3:b7:15:9b:8c:1b:78:33:96:60:6b:95:bf:84:
f3:6e:f7:5f:b4:4d:ae:ad:21:93:cc:29:eb:35:9d:
88:60:0f:db:d7:62:40:03:bc:09:2b:b3:27:ee:a5:
1a:c1:bd:07:d6:ed:d7:b8:43:0e:18:e2:e0:ba:c2:
69:64:be:5e:77:19:dd:2f:ba:2e:42:1f:80:44:bb:
ff:10:07:fc:52:68:ac:bd:42:0d:61:ab:8c:5d:3f:
92:bf:ac:b2:e2:1a:77:89:0f:fd:3c:a5:fb:57:e2:
71:ee:4c:74:7c:34:9e:87:75:3c:45:7e:d3:f1:36:
f6:a4:c4:4e:91:17:df:c9:4d:63:56:1b:a7:90:ba:
83:73:a1:26:d4:0c:a5:27:b6:86:83:a5:2e:3c:20:
27:29:14:32:8e:c7:56:0c:9c:4c:46:f0:12:38:6f:
31:cc:39:73:96:d0:90:f2:21:e8:0c:97:e5:1d:91:
9f:a5:b2:34:c9:1a:4d:c9:ef:91:ef:fa:17:01:37:
a3:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:B5:27:C8:FA:53:D3:12:15:76:E4:73:4B:C1:21:1F:5F:64:7C:88
X509v3 Authority Key Identifier:
keyid:D7:97:85:DE:62:DC:F9:E7:93:0B:AB:D7:B1:D3:9C:58:53:D1:94:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15eF3mLc-eeTC6vXsdOcWFPRlE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/VLUnyPpT0xIVduRzS8EhH19kfIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/15eF3mLc-eeTC6vXsdOcWFPRlE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.10.8.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:a6:d4:5a:5a:e8:16:22:cd:bf:b6:30:ae:d1:ef:c8:cd:cb:
ca:14:e0:5a:93:10:2d:db:d6:9b:13:ba:60:6c:fc:ad:fd:39:
60:72:82:56:d4:6c:5d:02:be:08:0c:2d:7f:0c:30:d2:57:30:
f2:34:7e:43:96:7e:4e:be:7b:52:85:74:0f:8e:f9:be:69:2b:
d5:0f:02:43:13:d7:96:b6:3c:d4:ac:bc:66:ee:3f:2f:68:0e:
a2:5c:cf:31:2a:07:24:80:e4:9f:4f:a8:ba:bb:e9:1b:38:e5:
52:e6:5b:15:e6:c8:83:80:63:f5:57:8b:9e:f4:99:02:23:77:
f2:72:3e:f8:11:a9:e7:ec:23:0f:7c:a5:00:30:3b:a6:a0:a3:
83:a7:0a:bb:94:59:10:34:73:34:40:14:2d:52:b7:4c:e3:42:
fc:55:c1:54:43:30:c8:e0:42:9b:fa:72:33:da:3e:05:90:f5:
b3:31:d4:a4:1e:42:89:97:d6:06:23:8c:5e:21:da:df:05:52:
68:e4:66:d0:f6:10:b3:00:12:47:b6:6c:64:82:78:ca:35:71:
33:c2:11:b4:cc:f5:b0:3e:b7:07:09:07:09:8e:bb:f8:b6:5d:
81:60:f3:29:98:4e:1d:05:84:a5:47:59:47:cc:3b:29:1e:99:
87:2d:df:f1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxaaoztzxH761aktts7LaGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3OTc4NWRlNjJkY2Y5ZTc5MzBiYWJkN2IxZDM5YzU4NTNk
MTk0NGYwHhcNMjMwMTAyMDczNzA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NGI1MjdjOGZhNTNkMzEyMTU3NmU0NzM0YmMxMjExZjVmNjQ3Yzg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnsXt6IPP4hXQn9QJ+rBiuVBeKWBl
6BKeo2u+QDOhaozYzr7AR0BGO4q8WEth1MQgax7l57cPKpbPsFeR87cVm4wbeDOW
YGuVv4TzbvdftE2urSGTzCnrNZ2IYA/b12JAA7wJK7Mn7qUawb0H1u3XuEMOGOLg
usJpZL5edxndL7ouQh+ARLv/EAf8UmisvUINYauMXT+Sv6yy4hp3iQ/9PKX7V+Jx
7kx0fDSeh3U8RX7T8Tb2pMROkRffyU1jVhunkLqDc6Em1AylJ7aGg6UuPCAnKRQy
jsdWDJxMRvASOG8xzDlzltCQ8iHoDJflHZGfpbI0yRpNye+R7/oXATejdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFS1J8j6U9MSFXbkc0vBIR9fZHyIMB8GA1UdIwQY
MBaAFNeXhd5i3Pnnkwur17HTnFhT0ZRPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTVlRjNtTGMtZWVUQzZ2WHNkT2NXRlBSbEU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi83Zjk3MjgtOTU1OS00MjYzLWJjZmEt
NzU4NTVkYjcxNTFmLzEvVkxVbnlQcFQweElWZHVSelM4RWhIMTlrZklnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi83Zjk3MjgtOTU1OS00MjYzLWJjZmEtNzU4NTVkYjcxNTFm
LzEvMTVlRjNtTGMtZWVUQzZ2WHNkT2NXRlBSbEU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCJQoIMA0G
CSqGSIb3DQEBCwUAA4IBAQB8ptRaWugWIs2/tjCu0e/IzcvKFOBakxAt29abE7pg
bPyt/TlgcoJW1GxdAr4IDC1/DDDSVzDyNH5Dln5OvntShXQPjvm+aSvVDwJDE9eW
tjzUrLxm7j8vaA6iXM8xKgckgOSfT6i6u+kbOOVS5lsV5siDgGP1V4ue9JkCI3fy
cj74Eann7CMPfKUAMDumoKODpwq7lFkQNHM0QBQtUrdM40L8VcFUQzDI4EKb+nIz
2j4FkPWzMdSkHkKJl9YGI4xeIdrfBVJo5GbQ9hCzABJHtmxkgnjKNXEzwhG0zPWw
PrcHCQcJjrv4tl2BYPMpmE4dBYSlR1lHzDspHpmHLd/x
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:51 2024 by rpki-client on console-fra.rpki-client.org