Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vjguTL8T54EDlIXCRENWwHqRKCI.roa
File: vjguTL8T54EDlIXCRENWwHqRKCI.roa (raw, json)
Hash identifier: Z7Jw1WNsJnjSqPitQQhPYWfN+yzEC62hjr087DnLbeE=
Subject key identifier: BE:38:2E:4C:BF:13:E7:81:03:94:85:C2:44:43:56:C0:7A:91:28:22
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0191275B602C9B7F707D664234ED122D0E69
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vjguTL8T54EDlIXCRENWwHqRKCI.roa
Signing time: Tue 06 Aug 2024 11:03:05 +0000
ROA not before: Tue 06 Aug 2024 11:03:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 185.194.177.0/24 maxlen: 24
185.209.38.0/24 maxlen: 24
185.209.73.0/24 maxlen: 24
185.218.20.0/24 maxlen: 24
185.222.29.0/24 maxlen: 24
185.246.112.0/24 maxlen: 24
193.58.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Aug 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:27:5b:60:2c:9b:7f:70:7d:66:42:34:ed:12:2d:0e:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 6 11:03:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be382e4cbf13e781039485c2444356c07a912822
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:56:a3:c6:dc:03:7f:af:e4:93:9a:99:63:71:
4b:a8:43:4e:d2:78:48:00:c3:7e:a1:98:56:94:7c:
46:dc:51:09:37:e7:3c:83:4d:8a:d8:34:ad:33:c5:
08:39:4d:9a:74:1f:d0:24:4c:3b:03:ec:75:e9:4c:
62:3e:a7:ef:54:42:18:7b:a3:9a:6a:bb:aa:d8:19:
14:a0:0f:47:5f:fe:94:8b:6a:2b:ca:37:fa:5d:18:
ee:47:36:b4:85:7d:ff:be:a0:1c:de:40:58:d5:16:
1d:2b:c6:7c:9b:ad:2a:67:e8:b4:2b:6b:a9:01:a8:
8f:c5:06:d8:22:12:dd:72:21:bb:7d:82:00:7e:44:
12:bb:25:38:45:9f:e6:a1:06:bf:e3:bf:c1:c1:d8:
12:eb:37:02:69:ac:80:87:19:45:b4:8b:c7:15:6b:
04:de:93:04:99:da:49:91:b1:ac:12:bd:8d:f8:87:
27:d6:f5:11:64:3a:4d:ce:50:5a:47:11:a5:86:86:
43:48:68:72:8c:ca:79:af:93:2c:49:1a:30:81:68:
bf:06:d7:16:90:bb:ac:09:f0:bc:03:68:39:c7:a9:
57:a1:62:86:db:0c:30:a6:b4:38:dc:19:88:a2:02:
99:ef:30:a1:54:c2:de:68:12:92:64:7c:b5:60:6a:
26:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:38:2E:4C:BF:13:E7:81:03:94:85:C2:44:43:56:C0:7A:91:28:22
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vjguTL8T54EDlIXCRENWwHqRKCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.177.0/24
185.209.38.0/24
185.209.73.0/24
185.218.20.0/24
185.222.29.0/24
185.246.112.0/24
193.58.146.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:f3:57:05:cc:07:11:d6:a2:a4:42:54:58:19:fa:4c:1f:58:
f7:c6:ab:d7:d5:31:ea:4f:79:fc:1c:51:dc:52:50:a3:e8:e2:
b5:0c:8b:cc:22:2e:11:bf:a6:24:15:c8:4d:2d:c9:77:ea:15:
51:e5:67:aa:d7:a2:97:44:fb:25:7f:c7:58:b9:88:f1:be:64:
41:82:2e:44:61:a6:9d:f5:ac:b1:74:17:0d:47:b0:76:24:9f:
6c:5b:43:3d:bf:c3:d9:e7:e5:3e:3e:6b:ca:89:c4:69:53:4f:
5f:10:24:9c:c4:10:f4:2f:a7:c8:e8:96:0c:50:11:8d:5a:c4:
6f:e1:be:cb:38:e2:98:eb:32:bb:36:15:cf:c8:32:8c:78:4f:
b7:ce:08:64:a9:fa:24:cd:0f:86:54:54:a4:09:61:c8:7d:33:
bb:90:15:f4:fd:88:24:f8:86:43:56:1d:07:2e:c3:cb:4f:96:
0b:de:97:68:9f:57:dc:79:42:08:db:1d:a1:63:96:76:8d:d1:
4f:51:45:ae:da:6f:45:70:d4:d5:c1:72:02:96:cb:34:c1:06:
85:50:83:82:6e:76:03:5d:96:95:65:8c:7f:5e:a5:d7:b2:e3:
50:5e:cc:ae:b5:c9:a0:09:66:fe:c7:80:41:f4:03:ad:e6:e1:
15:5c:46:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 7 19:40:56 2024 by rpki-client on console-ams.rpki-client.org