Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/vns2pgloF7Mk7-xxbx3JUv3Lo8M.roa
File: vns2pgloF7Mk7-xxbx3JUv3Lo8M.roa (raw, json)
Hash identifier: xm29o8dL7PikyXCmnPUAeDohxexDTgqseKR300ECkqU=
Subject key identifier: BE:7B:36:A6:09:68:17:B3:24:EF:EC:71:6F:1D:C9:52:FD:CB:A3:C3
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 018E28EBDD95E88C6A294F92B0B521BC4D9F
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/vns2pgloF7Mk7-xxbx3JUv3Lo8M.roa
Signing time: Sun 10 Mar 2024 15:12:10 +0000
ROA not before: Sun 10 Mar 2024 15:12:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216059
IP address blocks: 80.246.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Apr 2024 19:05:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:28:eb:dd:95:e8:8c:6a:29:4f:92:b0:b5:21:bc:4d:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Mar 10 15:12:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be7b36a6096817b324efec716f1dc952fdcba3c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:19:1a:37:37:05:d2:0a:c0:a0:5e:e7:4d:85:
24:61:4f:3e:12:55:6b:92:2a:21:fb:d9:d8:6a:04:
1f:bb:b2:3f:14:6e:96:ac:91:f2:3b:68:21:8f:77:
27:cc:04:6f:1f:fe:94:2f:4f:82:94:60:fc:89:c2:
5b:e8:16:64:d0:2e:c9:e8:ab:89:93:36:40:5b:f1:
7e:83:cb:95:06:a5:d0:b0:a9:b8:ce:66:6d:c0:1f:
ad:84:ce:bb:f6:ee:8d:a4:59:ae:51:3e:05:bc:91:
ee:a0:b5:bc:78:03:3f:21:a7:49:45:4c:af:f0:d8:
1c:89:1e:38:ec:1b:b8:78:2b:72:d5:ad:d6:86:fa:
15:8b:60:f3:a5:e1:00:76:23:c1:7d:5f:71:36:d1:
f3:98:13:a2:f8:49:5e:83:8d:18:80:df:39:15:28:
46:d1:ba:48:8c:0d:9a:31:8a:50:0d:e2:d8:de:6c:
5a:82:79:f3:4f:6c:67:88:8f:29:7e:6d:2b:a2:41:
20:4b:87:93:2a:c0:3a:2a:d1:e0:bb:8b:e0:26:77:
3d:4b:d8:7b:90:92:8a:90:70:53:e9:c9:e8:96:c9:
0e:cb:ef:10:8b:ec:1e:4d:3c:28:d7:78:ec:05:fb:
4a:7b:e3:be:36:8c:84:19:9a:c3:08:43:d7:b8:fb:
aa:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:7B:36:A6:09:68:17:B3:24:EF:EC:71:6F:1D:C9:52:FD:CB:A3:C3
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/vns2pgloF7Mk7-xxbx3JUv3Lo8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.246.229.0/24
Signature Algorithm: sha256WithRSAEncryption
47:26:3f:40:73:57:2d:7e:c7:d0:81:b0:71:07:05:b7:f1:0b:
9b:ea:11:f1:f8:15:e1:19:3f:59:28:1b:cf:19:56:8b:b8:42:
9a:1e:3b:19:0b:cc:3f:91:d9:2f:00:73:c6:90:5a:eb:c4:ea:
49:19:79:64:d9:fa:d6:65:34:d5:f1:b7:80:f8:ec:41:60:f1:
a5:6a:b6:ed:f7:f6:ec:93:98:e8:dc:17:d0:16:e0:d6:ff:9c:
68:47:f9:53:bf:56:d9:79:ea:57:0a:d4:65:e9:04:d2:cc:7b:
8d:1b:09:72:6e:78:5a:8c:4c:3d:b0:33:c7:03:c5:d1:df:f4:
32:f9:91:a2:b1:cd:8d:29:36:d4:22:7b:74:67:bc:ca:2b:18:
17:6d:70:ad:d0:a4:03:08:ff:32:c8:72:e1:22:b2:74:88:7f:
49:4c:9a:68:c9:9d:fd:95:00:1c:de:b3:3d:e3:45:ea:ad:21:
d3:86:9f:28:6c:70:68:e4:84:cb:e1:dd:17:72:0b:0f:98:8c:
61:5f:3e:cd:39:e4:6a:c2:01:1e:1a:f4:94:88:bd:3b:a0:d5:
e3:c3:51:0b:a9:28:ed:9a:66:aa:b8:cd:c5:ae:cb:fa:0d:c0:
53:26:34:fd:72:36:00:c1:57:ee:57:2f:44:fc:25:e5:db:7e:
1d:3a:06:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 4 22:58:15 2024 by rpki-client on console-fra.rpki-client.org