Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/VcVFqtLMwH8Nmbw_AnYw0WqSmZw.roa
File: VcVFqtLMwH8Nmbw_AnYw0WqSmZw.roa (raw, json)
Hash identifier: BXZbOR0DxsWfY/gVZ6Vpgv9SDlLK9yHrZdBkQwAVWds=
Subject key identifier: 55:C5:45:AA:D2:CC:C0:7F:0D:99:BC:3F:02:76:30:D1:6A:92:99:9C
Certificate issuer: /CN=81812385b82dda0fd4826abb7aefeb0df3eb8ffd
Certificate serial: 0185CE9267E74BD8A3EEC0B723DDF9083DB8
Authority key identifier: 81:81:23:85:B8:2D:DA:0F:D4:82:6A:BB:7A:EF:EB:0D:F3:EB:8F:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gYEjhbgt2g_Ugmq7eu_rDfPrj_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/VcVFqtLMwH8Nmbw_AnYw0WqSmZw.roa
Signing time: Fri 20 Jan 2023 09:46:19 +0000
ROA not before: Fri 20 Jan 2023 09:46:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209369
IP address blocks: 77.78.90.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Feb 2023 14:54:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ce:92:67:e7:4b:d8:a3:ee:c0:b7:23:dd:f9:08:3d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81812385b82dda0fd4826abb7aefeb0df3eb8ffd
Validity
Not Before: Jan 20 09:46:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55c545aad2ccc07f0d99bc3f027630d16a92999c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:99:8a:37:26:a5:74:ae:ca:38:08:a4:84:3e:
ce:a7:9f:d7:da:60:92:c1:62:e5:30:5a:3d:7f:83:
ea:5d:48:99:bc:ee:94:ac:a2:aa:38:17:a8:94:31:
49:fd:9e:52:c3:54:6c:88:70:c3:65:7f:28:0a:cc:
46:e7:ad:1f:9c:08:fd:93:8a:af:3e:93:2f:e4:d2:
c8:8e:ab:39:f4:f0:f7:2c:1c:9d:1b:e0:98:62:00:
54:c6:08:61:98:89:0a:11:e3:d4:30:a5:31:e6:0d:
ef:72:b8:73:81:8b:eb:b1:31:92:a3:7a:5b:fc:70:
d0:da:69:8c:1a:63:df:69:1a:42:b6:96:03:35:b2:
01:e2:49:3c:4c:f9:46:71:39:f0:7d:37:c0:99:c7:
56:4d:ac:32:fb:c6:b6:14:7e:0a:65:5c:c1:03:6b:
52:00:c4:ff:50:9b:f3:ff:95:ea:c6:90:9f:4b:50:
fb:7c:a4:2b:98:49:ef:7b:57:f1:2c:c1:a5:0c:2a:
2c:ec:6a:0d:eb:66:9a:01:6a:b0:aa:94:b7:16:51:
19:62:25:89:1f:67:70:b9:c7:7e:5e:18:db:ba:60:
4d:e0:e5:d8:08:3a:71:7a:08:63:c5:47:8b:10:75:
e8:e6:6d:8d:82:3b:76:d3:ac:26:5f:ac:09:d2:ff:
9a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:C5:45:AA:D2:CC:C0:7F:0D:99:BC:3F:02:76:30:D1:6A:92:99:9C
X509v3 Authority Key Identifier:
keyid:81:81:23:85:B8:2D:DA:0F:D4:82:6A:BB:7A:EF:EB:0D:F3:EB:8F:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gYEjhbgt2g_Ugmq7eu_rDfPrj_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/VcVFqtLMwH8Nmbw_AnYw0WqSmZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/gYEjhbgt2g_Ugmq7eu_rDfPrj_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.78.90.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:ef:c3:b8:a7:f1:de:73:9c:7e:11:76:fc:bc:45:95:3e:f0:
0d:0e:b5:39:c5:2c:de:5d:75:63:59:32:86:a0:68:27:3c:42:
47:a8:70:12:02:76:0f:80:fb:5d:9c:98:fc:f7:c4:45:52:0f:
80:c5:02:b5:48:24:32:fd:19:e2:ad:5e:5c:e0:ac:45:88:c4:
36:f0:e2:e8:16:36:de:08:ae:28:de:4a:6e:ee:b1:3a:ee:d5:
e5:7c:73:4a:eb:ac:a7:e0:78:f9:56:0a:2b:1f:2c:6d:f9:86:
b7:6d:cd:9d:16:96:ae:0f:10:76:15:69:f3:e0:a5:05:b1:82:
46:a0:89:43:e2:54:77:a7:7a:e5:e2:31:54:1f:9f:91:bf:d4:
b5:43:38:2a:1c:6c:e9:70:16:97:f7:cd:7a:cd:d8:2c:e6:0d:
e7:74:91:19:1b:45:09:ec:15:92:19:23:26:3b:93:08:37:87:
23:9a:10:5f:84:1b:aa:07:e5:06:c3:1f:67:39:4b:f2:7b:58:
52:03:05:51:2a:58:2b:f1:cd:e8:f9:ff:8c:c3:e9:5d:3c:6c:
a6:7f:c1:3b:96:12:19:24:2c:7f:59:f7:c9:00:13:d3:a7:68:
e8:fb:22:f3:8c:ed:d3:32:0b:6d:01:a9:33:68:10:e6:22:34:
64:d5:cc:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:07 2024 by rpki-client on console-fra.rpki-client.org