Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/VB1gf33p6CKzPgt7eL7FJb4Y5QA.roa
File: VB1gf33p6CKzPgt7eL7FJb4Y5QA.roa (raw, json)
Hash identifier: sY+jsbw7i5lR9qO7q0mnq6XChcvE+lagSfux133DKWE=
Subject key identifier: 54:1D:60:7F:7D:E9:E8:22:B3:3E:0B:7B:78:BE:C5:25:BE:18:E5:00
Certificate issuer: /CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Certificate serial: 018CC50091164269F077A8B0DB3661FF4F70
Authority key identifier: 0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/VB1gf33p6CKzPgt7eL7FJb4Y5QA.roa
Signing time: Mon 01 Jan 2024 12:29:57 +0000
ROA not before: Mon 01 Jan 2024 12:29:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200332
IP address blocks: 83.139.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Feb 2024 09:04:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:91:16:42:69:f0:77:a8:b0:db:36:61:ff:4f:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Validity
Not Before: Jan 1 12:29:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=541d607f7de9e822b33e0b7b78bec525be18e500
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:9c:66:a3:f3:21:a2:37:73:f3:b6:3e:16:a4:
4b:1a:69:37:be:fe:f0:db:2a:45:9f:c8:49:ac:c1:
0e:01:18:eb:74:94:56:5a:f6:72:84:ea:03:9c:df:
b6:af:d7:77:82:fd:a5:51:20:aa:79:9d:78:00:c3:
fc:23:84:f9:51:17:08:3f:97:ad:6e:93:a3:22:e0:
6c:42:a8:54:aa:42:87:2c:3d:5e:68:4b:a7:af:ca:
76:8e:70:35:81:ec:70:73:fb:50:71:1b:8d:3c:28:
7e:09:39:28:4c:65:3c:c0:d3:a7:57:f7:75:5d:56:
d3:8e:ee:bb:a4:36:1d:1e:d2:5c:44:8f:4e:c6:1b:
b7:ce:a0:5b:bd:3f:f3:d2:ad:35:d9:5e:b3:46:12:
99:79:16:54:9f:5b:6e:ea:87:6e:36:ae:df:b2:89:
f1:7e:48:e1:81:08:85:b2:30:2f:14:d5:79:a2:9c:
db:ae:1e:3e:c7:6f:c1:da:e6:42:d5:2f:bf:37:9c:
b3:ff:4c:03:fd:29:a0:75:36:16:3d:61:57:ec:74:
6b:43:22:f9:f2:4c:a3:90:16:ed:ec:6d:6e:ad:d2:
a8:76:8a:de:50:3b:12:31:d9:ef:f4:3e:45:a8:65:
ce:08:5f:50:11:bd:ec:ed:5f:32:cf:9c:62:1a:92:
83:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:1D:60:7F:7D:E9:E8:22:B3:3E:0B:7B:78:BE:C5:25:BE:18:E5:00
X509v3 Authority Key Identifier:
keyid:0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/VB1gf33p6CKzPgt7eL7FJb4Y5QA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.139.4.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:9c:64:18:a7:55:19:53:dd:bc:ee:83:be:d1:80:16:95:a2:
c7:ae:0a:5a:f0:35:de:e5:5d:66:96:09:06:de:98:5e:95:78:
5a:43:c1:51:22:b5:12:59:71:47:76:9a:20:dd:c8:b9:ee:67:
48:4b:dc:93:bb:9d:7a:8e:47:45:41:f2:06:5c:85:69:57:8a:
27:44:bb:4c:a3:03:e2:a3:f3:9e:03:4d:3b:59:5e:21:0b:91:
e8:17:ab:83:c5:7f:b0:ec:fb:98:9d:bb:d7:0c:d2:d8:e4:5c:
fc:a6:1f:c1:d0:30:fa:91:11:a2:6b:fd:ca:4b:84:55:81:2b:
09:60:2b:7e:64:96:9a:ab:0e:8a:bf:c7:a5:72:e3:ea:18:f0:
6b:36:c6:91:98:0d:1d:67:48:5d:09:1e:c9:9e:be:f9:89:50:
6e:78:f4:71:e0:1c:9e:fe:72:a3:73:ce:06:1e:5d:1e:11:ea:
51:ae:c6:82:71:6b:e9:bd:95:1d:f0:b8:ca:7b:75:7b:3b:6b:
0a:69:43:60:bb:ce:15:cf:35:26:3d:8c:51:40:90:d3:f8:72:
24:34:9c:8c:db:7a:6c:c6:b7:10:6e:17:f4:34:c0:af:b3:31:
5b:66:62:5f:ca:62:5d:34:5c:1a:84:9b:58:89:48:e8:80:b9:
f3:ea:da:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:32 2024 by rpki-client on console-fra.rpki-client.org