Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/vsbBbNGTELcwJHBIcQjqGyIfeag.roa
File: vsbBbNGTELcwJHBIcQjqGyIfeag.roa (raw, json)
Hash identifier: LUh23ONzAEoo7kK0N+nfod7g0UucHXlTDPo/Ih9br/E=
Subject key identifier: BE:C6:C1:6C:D1:93:10:B7:30:24:70:48:71:08:EA:1B:22:1F:79:A8
Certificate issuer: /CN=52a5c90ca928313bc70d2683bb0f64d632b273a1
Certificate serial: 0187B11B3273567645E30E9D52E5994644BD
Authority key identifier: 52:A5:C9:0C:A9:28:31:3B:C7:0D:26:83:BB:0F:64:D6:32:B2:73:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqXJDKkoMTvHDSaDuw9k1jKyc6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/vsbBbNGTELcwJHBIcQjqGyIfeag.roa
Signing time: Mon 24 Apr 2023 02:32:42 +0000
ROA not before: Mon 24 Apr 2023 02:32:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.76.40.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 18 Aug 2023 01:32:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b1:1b:32:73:56:76:45:e3:0e:9d:52:e5:99:46:44:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a5c90ca928313bc70d2683bb0f64d632b273a1
Validity
Not Before: Apr 24 02:32:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bec6c16cd19310b7302470487108ea1b221f79a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6a:71:4f:ec:b7:80:46:92:03:82:25:3c:66:
f5:aa:4b:60:f4:62:d2:f7:b6:dd:28:d1:0a:5c:52:
b8:8a:eb:c0:a5:e2:6f:c1:95:d1:67:1d:23:63:b4:
ff:66:f8:a9:dd:50:56:8d:d0:16:8e:ec:96:3d:61:
63:69:70:71:1f:a3:3a:2c:e2:e0:05:c6:b1:d0:35:
ad:47:88:b0:6f:21:15:b8:6d:19:56:69:22:b3:93:
6d:47:a2:11:7a:7a:c1:30:99:8e:14:7a:22:e9:dc:
0d:85:ce:7c:27:9c:6f:c3:96:70:7e:b9:43:d8:4c:
eb:83:fa:92:ab:b1:1b:28:03:08:b8:0e:33:fe:2a:
85:3e:a2:1e:68:30:e9:cd:6a:56:9b:dd:bc:0c:41:
3e:f3:8c:4b:67:9f:42:00:07:d7:60:63:a7:fb:79:
20:09:2a:6a:4f:32:86:68:7b:dd:89:46:a2:69:50:
f7:54:bb:00:19:9a:39:75:39:40:b6:3c:c7:91:0a:
2b:f1:b7:c3:5f:21:f0:56:ef:ef:0b:e9:be:5c:ed:
5e:f0:6e:55:39:87:74:3d:c9:65:52:42:d0:1c:da:
f0:e5:bb:92:f1:ec:49:eb:8f:db:38:37:3c:da:9e:
ae:68:90:e5:45:a3:19:d4:fa:f1:47:8f:3a:d1:7d:
53:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C6:C1:6C:D1:93:10:B7:30:24:70:48:71:08:EA:1B:22:1F:79:A8
X509v3 Authority Key Identifier:
keyid:52:A5:C9:0C:A9:28:31:3B:C7:0D:26:83:BB:0F:64:D6:32:B2:73:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqXJDKkoMTvHDSaDuw9k1jKyc6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/vsbBbNGTELcwJHBIcQjqGyIfeag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/UqXJDKkoMTvHDSaDuw9k1jKyc6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.40.0/22
Signature Algorithm: sha256WithRSAEncryption
46:2a:a9:35:b0:62:00:db:59:b2:73:67:6c:64:b1:02:5e:33:
ba:0a:8c:cd:26:da:95:b5:12:46:6c:b2:bc:39:a4:4d:3b:3b:
65:81:88:4e:02:b1:d4:2b:93:63:c5:40:d2:dc:90:d7:13:80:
e8:e4:d2:f6:0a:42:fc:2b:fd:06:70:38:a6:3a:be:0d:8d:c6:
7f:88:2b:14:9f:41:06:7a:96:29:70:4f:fa:4d:c0:ad:f0:0e:
eb:b6:de:a1:c0:b7:3b:47:83:7b:a5:67:94:ca:f2:31:83:34:
61:45:a5:9a:ab:6d:a2:4c:c2:53:50:2a:aa:e0:84:c5:b4:1a:
11:2d:ab:93:7f:85:68:59:2d:63:10:12:13:ea:65:00:c9:b1:
8c:27:ae:23:b8:e3:82:c3:8f:68:22:1e:64:f3:b3:d5:54:b7:
41:b3:a7:77:e6:20:9e:b5:b7:fe:b4:d7:28:1e:04:51:d6:11:
40:a8:f2:99:c5:94:f5:4c:84:ce:3c:b2:42:24:5a:18:d0:c3:
ed:3d:fa:77:a3:ec:66:21:b5:09:66:54:ec:e0:70:6f:93:1a:
f2:1e:b9:4d:94:fe:0e:d0:6c:57:fd:59:98:6a:f8:a5:1e:5c:
1f:f5:d9:5e:24:fe:27:47:e2:a1:4c:de:eb:11:c0:a1:1e:14:
e3:44:ca:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:59 2024 by rpki-client on console-ams.rpki-client.org