Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/Vh3SpqKlbUVxvyJJJR_d4W-ctDM.roa
File: Vh3SpqKlbUVxvyJJJR_d4W-ctDM.roa (raw, json)
Hash identifier: 0LaUbWeHwEY1Pkws8DkV6C90qXjhQi9Il8LTvoS8Qlw=
Subject key identifier: 56:1D:D2:A6:A2:A5:6D:45:71:BF:22:49:25:1F:DD:E1:6F:9C:B4:33
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 018A1BE4F7C19465302CA32A17133A90705C
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/Vh3SpqKlbUVxvyJJJR_d4W-ctDM.roa
Signing time: Tue 22 Aug 2023 06:18:25 +0000
ROA not before: Tue 22 Aug 2023 06:18:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36113
IP address blocks: 92.61.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Oct 2023 05:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1b:e4:f7:c1:94:65:30:2c:a3:2a:17:13:3a:90:70:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Aug 22 06:18:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=561dd2a6a2a56d4571bf2249251fdde16f9cb433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:76:fe:33:9a:05:6e:05:f5:bb:83:9a:ed:7a:
e1:23:6c:6a:02:73:1e:de:7c:d3:e0:67:e3:c9:7c:
6e:d0:80:49:5a:1a:58:88:a4:9c:90:9f:28:63:42:
53:2b:4a:67:cc:4a:be:f3:91:72:72:7c:6a:92:aa:
b2:e7:77:d7:3a:2c:31:67:f6:c7:b8:7c:12:76:bb:
1b:19:37:c3:c5:cc:a6:f2:e5:58:aa:50:ed:9c:f1:
58:49:51:47:5c:08:8d:eb:29:18:df:67:30:ff:71:
f4:b7:c5:67:40:4d:64:b0:2b:f1:59:0b:94:0c:92:
19:17:df:b7:80:3e:82:ed:2a:3e:1e:5e:c8:85:3b:
ef:c5:1e:6f:09:24:6c:ad:b2:ab:08:7f:a2:33:6d:
70:84:f4:3b:49:0b:1c:75:44:6c:67:d9:fa:92:74:
33:b8:75:45:0c:13:cc:2a:49:f1:6a:4f:2b:d6:42:
c5:11:2c:55:3b:bc:e9:67:8a:e3:4f:e4:35:2c:ad:
18:dd:b6:d5:b1:fb:af:31:cd:8b:86:d6:5f:d2:a7:
16:c7:2e:4e:30:a1:90:f7:e7:89:34:d9:c1:89:65:
8e:a5:c4:07:0f:81:2f:2d:bb:07:a6:8d:bc:26:58:
6c:ca:14:99:48:8d:5a:a7:cb:8b:50:2a:a6:25:4b:
81:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:1D:D2:A6:A2:A5:6D:45:71:BF:22:49:25:1F:DD:E1:6F:9C:B4:33
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/Vh3SpqKlbUVxvyJJJR_d4W-ctDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.61.97.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:f8:0a:bf:7d:b5:bb:5f:bc:cd:f8:a7:c6:fe:f6:5f:0b:54:
80:a3:a2:2b:81:86:a7:93:34:b4:8d:fe:d1:82:58:27:75:62:
6b:0f:ee:72:74:2d:03:fc:28:70:7c:55:93:a2:87:21:db:10:
ed:6c:78:93:ad:c1:17:21:a9:f2:6c:62:4e:c9:fd:54:08:aa:
32:b2:7a:c8:64:8e:97:96:74:5c:62:e5:fc:39:df:4c:17:db:
d0:81:f3:21:97:9f:7a:99:f3:c8:1d:01:65:6e:06:61:8b:8e:
d9:4a:58:ca:d2:a5:b8:e5:48:21:91:b7:15:93:65:89:2e:ce:
cd:c3:f3:41:c3:02:81:01:1e:3c:d2:6e:5e:51:29:3b:cf:ef:
32:32:6e:05:7d:6e:d3:f9:fe:7a:35:ac:cf:99:7a:7e:f2:46:
5e:25:ce:70:02:97:91:56:0e:fb:a9:14:70:f2:09:23:25:a3:
db:cf:2d:cf:8e:22:80:0b:1c:12:55:95:03:ba:6f:cf:cb:63:
d1:d4:36:b8:d3:13:07:2f:97:ae:c4:2f:ef:54:71:2a:ca:e2:
02:d1:ce:dd:e5:29:e8:55:d3:ca:93:e8:93:e7:f4:94:f4:36:
7b:d1:74:7f:d4:10:f2:4d:a6:cc:36:44:89:d1:d8:3c:68:fe:
47:56:62:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:21 2024 by rpki-client on console-ams.rpki-client.org