Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/VkhtswbAgkdil8_RvshYpcYDq44.roa
File: VkhtswbAgkdil8_RvshYpcYDq44.roa (raw, json)
Hash identifier: uCbH2zRTqf2J1Mjx3onIKNOqONupQPyb3cF2bMhyfK4=
Subject key identifier: 56:48:6D:B3:06:C0:82:47:62:97:CF:D1:BE:C8:58:A5:C6:03:AB:8E
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018E4114C92E3066F469E1FB0B39CDFCE4BA
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/VkhtswbAgkdil8_RvshYpcYDq44.roa
Signing time: Fri 15 Mar 2024 07:47:45 +0000
ROA not before: Fri 15 Mar 2024 07:47:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15723
IP address blocks: 46.23.100.0/22 maxlen: 22
62.217.129.0/24 maxlen: 24
62.217.131.0/24 maxlen: 24
62.217.134.0/24 maxlen: 24
62.217.138.0/24 maxlen: 24
62.217.141.0/24 maxlen: 24
62.217.142.0/24 maxlen: 24
62.217.146.0/24 maxlen: 24
62.217.147.0/24 maxlen: 24
62.217.148.0/24 maxlen: 24
62.217.149.0/24 maxlen: 24
62.217.151.0/24 maxlen: 24
62.217.156.0/24 maxlen: 24
62.217.157.0/24 maxlen: 24
62.217.158.0/24 maxlen: 24
62.217.159.0/24 maxlen: 24
164.215.97.0/24 maxlen: 24
185.81.217.0/24 maxlen: 24
188.64.8.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sun 07 Apr 2024 18:19:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:41:14:c9:2e:30:66:f4:69:e1:fb:0b:39:cd:fc:e4:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Mar 15 07:47:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=56486db306c082476297cfd1bec858a5c603ab8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b3:32:0c:05:2d:04:dc:ec:a2:36:d7:c7:e8:
7d:fe:8b:c6:84:22:8f:7e:60:94:0c:f8:cf:68:51:
9a:db:96:65:bc:d2:e0:da:14:f7:d2:cf:3d:7e:11:
75:ec:3c:10:d3:8d:dd:11:f6:3c:bb:46:44:01:6e:
8d:12:b6:31:7b:4e:80:d0:a4:7b:e9:13:89:1b:28:
4e:6d:31:6d:7a:6b:0a:14:0b:ef:4d:34:34:46:03:
8a:6a:67:eb:76:0d:5e:a6:51:2e:7f:50:d1:5f:24:
d1:30:f1:4b:1f:bb:70:6e:ce:0f:c4:1c:98:32:af:
1d:a7:5d:31:c7:40:61:10:a1:22:89:bb:29:6a:14:
8e:05:b6:45:65:cf:0e:d5:47:cd:c5:1d:f9:fa:84:
9f:7a:57:55:dd:9e:39:15:01:2d:b9:b9:8f:5b:89:
ce:63:d1:1c:7f:27:15:21:8d:23:cb:3e:5e:ae:8f:
66:a9:27:24:1b:ac:0d:b6:29:c3:53:5b:b5:9b:9c:
21:8f:c3:84:d3:c1:40:0f:cf:e5:1a:5a:55:44:c6:
f7:6c:b6:c6:e8:d9:e2:66:6e:fa:d3:ba:8b:b0:9e:
23:17:7f:a2:4e:89:9d:7e:7e:18:35:fe:ae:e6:83:
cc:b6:6d:3a:cd:1b:e8:ee:8a:d9:6b:8a:57:5f:1f:
5c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:48:6D:B3:06:C0:82:47:62:97:CF:D1:BE:C8:58:A5:C6:03:AB:8E
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/VkhtswbAgkdil8_RvshYpcYDq44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.100.0/22
62.217.129.0/24
62.217.131.0/24
62.217.134.0/24
62.217.138.0/24
62.217.141.0-62.217.142.255
62.217.146.0-62.217.149.255
62.217.151.0/24
62.217.156.0/22
164.215.97.0/24
185.81.217.0/24
188.64.8.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:2e:73:fb:80:ac:36:75:45:06:e7:07:f7:ff:74:19:4c:5c:
5e:f5:fa:c7:72:29:f9:4e:e3:6f:d4:cb:98:90:06:b2:f4:4f:
73:bb:2c:ed:d2:61:3f:e9:e0:09:9f:f3:b9:16:3d:2b:08:8c:
e0:25:56:ae:57:7a:14:66:4a:ec:eb:31:86:c9:58:d5:2e:c4:
94:44:dd:b6:13:13:83:3f:8d:12:40:b3:be:17:40:89:c8:8b:
f6:41:46:3b:12:98:01:ce:a3:b3:07:db:d6:c1:c1:f8:b0:bd:
b9:42:8a:6a:30:57:34:e8:a8:61:b9:f0:13:c2:45:2b:79:d3:
b8:a5:9c:88:a2:f4:b0:b5:d4:95:d3:8f:7b:56:7b:67:34:3d:
5b:fd:51:04:39:37:eb:83:6b:3e:61:f2:43:5e:59:67:68:93:
e4:c6:04:9a:0f:de:c1:99:ac:87:a5:f6:ea:b9:a5:b9:09:60:
c2:63:ac:58:36:ad:8d:48:e1:09:75:9d:9f:ac:8e:93:e5:6f:
3d:90:d0:62:d2:63:5d:cd:ac:b5:df:4e:32:fb:12:a9:11:06:
20:36:e6:12:bf:22:bf:7f:7d:5c:9c:6e:c8:5a:a9:e3:a1:3e:
86:8f:1c:66:50:d4:06:af:a6:dc:79:c7:a7:37:82:9f:10:15:
c7:3d:52:21
-----BEGIN CERTIFICATE-----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Generated at Sun Apr 7 20:53:00 2024 by rpki-client on console-fra.rpki-client.org