Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/vzvjq99JUi3Qhv7Q9LRt_ez1y-0.roa
File: vzvjq99JUi3Qhv7Q9LRt_ez1y-0.roa (raw, json)
Hash identifier: 7BBe65GqifxAYxUJRF9eDmy+qBsEPT1xGNcbC/onMtw=
Subject key identifier: BF:3B:E3:AB:DF:49:52:2D:D0:86:FE:D0:F4:B4:6D:FD:EC:F5:CB:ED
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0192527E689F3A164A27A0098CF0F03ABFC8
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/vzvjq99JUi3Qhv7Q9LRt_ez1y-0.roa
Signing time: Thu 03 Oct 2024 13:07:48 +0000
ROA not before: Thu 03 Oct 2024 13:07:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 83.147.222.0/24 maxlen: 24
83.147.244.0/22 maxlen: 24
83.147.248.0/22 maxlen: 24
91.186.200.0/22 maxlen: 24
91.186.204.0/22 maxlen: 24
91.186.216.0/23 maxlen: 24
94.241.168.0/21 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 23:03:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:52:7e:68:9f:3a:16:4a:27:a0:09:8c:f0:f0:3a:bf:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Oct 3 13:07:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bf3be3abdf49522dd086fed0f4b46dfdecf5cbed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:67:c7:c5:27:2c:39:27:56:79:05:74:e6:ad:
cf:3d:3f:1f:16:e6:2d:19:6e:ef:aa:a6:d2:df:9c:
9b:20:71:ff:22:83:4d:92:19:80:5e:c8:ec:7a:b6:
cd:43:a7:74:35:1e:11:f8:10:42:41:fa:6a:a1:68:
46:88:37:ec:1f:61:85:77:d2:02:b9:4f:86:e3:2c:
01:08:60:70:23:01:e8:b3:5c:ef:80:ab:e2:21:50:
10:0f:35:11:2b:dd:26:ec:bd:ef:92:57:48:c4:93:
ac:2b:30:df:43:3f:bc:0e:8d:72:1e:0d:f8:2d:c6:
e5:99:09:2f:b6:17:b1:19:9b:80:5f:d5:94:c2:77:
ef:3a:be:1c:0d:15:91:0d:37:28:c2:13:43:5d:78:
8b:07:ec:0e:2b:e3:7b:bb:76:d1:0d:9a:13:5b:da:
36:d2:53:8e:7b:02:f6:d7:d6:f7:9b:83:34:84:de:
3c:08:91:ad:38:28:ee:03:57:25:0e:c9:d0:a4:bb:
4f:33:42:9c:8b:50:6b:1c:25:3b:b2:65:ef:a6:53:
b7:59:de:18:b2:72:1c:64:89:5f:af:10:05:a6:89:
c7:ed:15:53:60:d3:6d:3b:c4:09:0e:3d:d5:39:4c:
c7:ad:e2:95:b4:40:21:b9:ea:79:9d:44:ed:37:c6:
24:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:3B:E3:AB:DF:49:52:2D:D0:86:FE:D0:F4:B4:6D:FD:EC:F5:CB:ED
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/vzvjq99JUi3Qhv7Q9LRt_ez1y-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.222.0/24
83.147.244.0-83.147.251.255
91.186.200.0/21
91.186.216.0/23
94.241.168.0/21
Signature Algorithm: sha256WithRSAEncryption
2d:25:b6:49:3f:16:e2:29:00:a7:ae:d0:cc:15:07:8c:87:d0:
94:a2:31:f3:6f:e1:63:48:50:c6:a1:94:c7:b2:e4:ea:71:72:
1c:ac:9b:23:6b:fc:49:7f:fb:4e:a0:da:03:13:72:9a:82:b7:
b9:24:c8:17:64:cd:38:a8:55:bc:62:22:ec:35:27:38:fa:14:
7e:5c:2f:ce:84:d3:2e:da:fc:4c:e8:68:89:c4:96:53:52:e4:
f0:9d:f2:46:fb:ff:01:cc:a0:99:be:c6:d2:b6:5c:57:bc:79:
e0:55:b3:d1:db:9f:4b:d7:92:6c:38:5c:b9:83:58:16:d0:8a:
4b:9c:df:41:17:03:f0:d4:16:d9:4a:b4:96:69:33:5e:99:dd:
96:29:99:a3:f1:59:c5:94:19:8a:b5:04:a6:07:54:a8:c4:e1:
35:b7:89:44:41:e2:2e:cc:4a:92:2c:45:72:df:96:2b:c9:d1:
80:70:ca:02:68:a9:f2:04:b0:f2:66:29:42:2f:ff:34:d0:40:
0e:b6:10:63:8b:06:ce:91:19:22:04:59:ab:7a:ff:25:4a:db:
94:09:41:ac:0a:de:6c:aa:bd:ae:32:f9:5c:48:7e:86:89:fa:
a5:b3:0b:6c:e6:cc:80:28:59:5e:0d:9e:59:92:1b:7d:9a:fc:
e0:5e:ed:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 4 01:29:29 2024 by rpki-client on console-fra.rpki-client.org