Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0fbc2e-fd88-4df2-aae3-9eb40cc5f68b/1/VRAWuId454AXcsW1tgOpinfQgrQ.roa
File: VRAWuId454AXcsW1tgOpinfQgrQ.roa (raw, json)
Hash identifier: QOE80XlMeMfJYyaxVos5QVpR8VgjMY/d5CTN4kJWB8g=
Subject key identifier: 55:10:16:B8:87:78:E7:80:17:72:C5:B5:B6:03:A9:8A:77:D0:82:B4
Certificate issuer: /CN=9295b1f1dcd8fa6ac1ef788278c489e15eacae70
Certificate serial: 0189FEBF69E959922E70D9D08D4C6849A41F
Authority key identifier: 92:95:B1:F1:DC:D8:FA:6A:C1:EF:78:82:78:C4:89:E1:5E:AC:AE:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpWx8dzY-mrB73iCeMSJ4V6srnA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0fbc2e-fd88-4df2-aae3-9eb40cc5f68b/1/VRAWuId454AXcsW1tgOpinfQgrQ.roa
Signing time: Wed 16 Aug 2023 14:28:24 +0000
ROA not before: Wed 16 Aug 2023 14:28:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54548
IP address blocks: 82.165.208.0/21 maxlen: 24
157.97.104.0/24 maxlen: 24
157.97.105.0/24 maxlen: 24
212.227.236.0/22 maxlen: 24
212.227.240.0/22 maxlen: 24
217.160.150.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fe:bf:69:e9:59:92:2e:70:d9:d0:8d:4c:68:49:a4:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9295b1f1dcd8fa6ac1ef788278c489e15eacae70
Validity
Not Before: Aug 16 14:28:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=551016b88778e7801772c5b5b603a98a77d082b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:65:bc:4a:a7:10:d4:e3:fc:5e:92:4e:f4:43:
1c:f4:22:b7:2e:b8:0a:3e:3d:7b:57:c9:d2:ff:c2:
60:2a:cd:b4:39:b0:a8:ef:81:d6:5d:e8:84:0b:b5:
b4:de:de:9b:33:40:3d:6b:32:8f:3a:84:65:59:88:
18:bf:77:2b:a8:9f:1a:da:fc:db:fd:26:15:f0:8a:
68:18:96:ce:18:8e:b9:04:5d:1d:d0:0a:fb:ff:07:
1c:1a:2e:5b:8d:ff:62:61:1b:87:b1:fa:98:c2:db:
1f:db:3c:92:47:9a:c0:f9:98:9b:6d:97:7c:0e:e2:
26:41:26:dc:57:c5:93:65:da:73:11:ee:cc:fc:8e:
92:51:e0:b9:ff:02:64:0f:8d:f5:e4:7d:30:5f:2f:
fb:f8:17:c8:ba:20:b2:d4:a9:5b:b7:55:30:ca:a8:
5a:8f:9b:82:77:4e:84:47:ff:74:c8:e5:69:b9:b2:
bf:1d:af:ce:cb:36:3b:0a:ae:f4:02:80:c5:39:90:
25:25:ea:9f:a4:b9:41:7c:c5:cb:fd:1c:44:b5:7b:
c8:1d:99:34:a4:98:7f:b8:7a:7c:64:5e:22:80:35:
b5:4c:78:60:57:11:37:7e:d2:b9:5f:d2:e4:8b:be:
86:61:b1:d0:72:5a:e1:99:57:98:dd:39:1a:c1:0c:
4d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:10:16:B8:87:78:E7:80:17:72:C5:B5:B6:03:A9:8A:77:D0:82:B4
X509v3 Authority Key Identifier:
keyid:92:95:B1:F1:DC:D8:FA:6A:C1:EF:78:82:78:C4:89:E1:5E:AC:AE:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpWx8dzY-mrB73iCeMSJ4V6srnA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0fbc2e-fd88-4df2-aae3-9eb40cc5f68b/1/VRAWuId454AXcsW1tgOpinfQgrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0fbc2e-fd88-4df2-aae3-9eb40cc5f68b/1/kpWx8dzY-mrB73iCeMSJ4V6srnA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.165.208.0/21
157.97.104.0/23
212.227.236.0-212.227.243.255
217.160.150.0/23
Signature Algorithm: sha256WithRSAEncryption
a7:b7:c2:34:bd:01:dd:d6:e8:ae:2b:0e:c9:31:89:4a:23:b4:
9c:f1:f4:a8:c8:12:d9:b0:80:ee:2b:9b:3c:c0:67:17:16:78:
ce:cd:3a:34:58:96:2f:b4:70:dc:eb:19:27:b4:d9:45:61:4c:
e9:d2:fc:31:7c:d5:df:cb:6c:29:1e:7a:c6:83:eb:a9:ea:18:
47:fe:da:ba:69:3a:35:3e:95:79:a0:e8:fc:b0:54:b2:a1:99:
5f:a6:1f:7f:83:bf:26:e2:08:8e:e7:ce:6a:32:c2:57:df:69:
d1:54:a9:15:8d:a7:32:14:b3:4b:9c:13:fe:84:a0:95:52:f2:
9f:62:d7:3d:4f:e5:1d:c9:92:70:02:cb:e4:da:10:dd:74:4a:
67:98:b5:8b:ba:c3:e6:27:fe:2f:9e:2e:de:0f:e1:ed:f4:c0:
f4:a7:e0:11:05:f6:44:d4:c4:73:95:ac:26:af:58:d6:1a:e6:
3a:04:08:c8:11:af:22:cc:26:d5:95:93:aa:71:87:2b:12:0d:
b4:98:45:1d:6b:5d:9d:c1:af:e3:a6:e4:2c:bc:13:e1:f2:67:
58:a6:31:c1:7d:0d:45:e8:c2:d0:91:94:65:98:64:0c:25:48:
25:56:5b:ea:d4:ee:8e:32:3a:d8:e7:8e:c2:08:de:3e:97:0a:
3a:50:06:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:21 2024 by rpki-client on console-fra.rpki-client.org