Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/140105-e462-48d2-a58f-a57035792e57/1/vddcJ9wNd3fX8aEDxxvrykFt-cU.roa
File: vddcJ9wNd3fX8aEDxxvrykFt-cU.roa (raw, json)
Hash identifier: JPXYGVOJv5ZYlsOefvVOjoq3x9MkIMQKc9PKABn+zO0=
Subject key identifier: BD:D7:5C:27:DC:0D:77:77:D7:F1:A1:03:C7:1B:EB:CA:41:6D:F9:C5
Certificate issuer: /CN=70f5d9eeefa305aecaee31e6fcb4e22321b2804a
Certificate serial: 018CC500FA731E29AB401283EEED30B3F12D
Authority key identifier: 70:F5:D9:EE:EF:A3:05:AE:CA:EE:31:E6:FC:B4:E2:23:21:B2:80:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPXZ7u-jBa7K7jHm_LTiIyGygEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/140105-e462-48d2-a58f-a57035792e57/1/vddcJ9wNd3fX8aEDxxvrykFt-cU.roa
Signing time: Mon 01 Jan 2024 12:30:24 +0000
ROA not before: Mon 01 Jan 2024 12:30:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48402
IP address blocks: 185.141.128.0/22 maxlen: 22
2a07:2400::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 20 Jun 2024 15:15:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:fa:73:1e:29:ab:40:12:83:ee:ed:30:b3:f1:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f5d9eeefa305aecaee31e6fcb4e22321b2804a
Validity
Not Before: Jan 1 12:30:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bdd75c27dc0d7777d7f1a103c71bebca416df9c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:01:a2:ef:0a:c8:f4:87:62:35:34:4c:4a:9a:
0f:d7:61:bd:c0:b8:ef:90:ac:dc:9e:87:d6:64:d9:
47:bc:6c:df:bf:9e:ce:b5:4a:9b:87:d0:08:79:cc:
15:dc:5f:bb:a1:ec:92:b9:57:00:0e:e1:ab:c4:c6:
12:fe:f6:ab:1b:af:bd:7d:dc:e8:a1:3a:6b:01:dd:
78:10:79:b2:b2:06:09:64:84:0b:79:1e:9b:54:d7:
38:6a:96:c7:35:1b:3d:c7:84:81:51:87:a1:da:6c:
bd:28:6c:ef:40:e5:27:14:ba:34:a1:ef:ac:a8:c9:
71:a0:3f:45:89:58:1c:ef:63:8f:49:5b:34:67:7a:
e0:f3:d2:ca:8e:92:35:7d:53:7b:6d:cb:cf:13:88:
80:a7:5f:74:de:6a:49:f5:99:08:31:06:4f:9b:6b:
02:f3:29:1a:d1:7e:f8:c4:ef:3d:8e:df:5c:d2:68:
cd:fb:97:d7:ea:bc:f6:45:e8:7d:fa:f4:fd:b2:2c:
d1:9d:fb:b6:20:d4:65:a0:aa:24:ee:94:f4:98:d7:
eb:3e:17:97:a3:2d:57:bd:cc:76:2e:7a:9d:22:e2:
2f:5e:8b:4a:71:b6:43:7b:ce:36:03:89:90:75:b1:
d3:c3:4a:e8:2a:2d:03:46:80:8e:40:4c:16:92:aa:
a1:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:D7:5C:27:DC:0D:77:77:D7:F1:A1:03:C7:1B:EB:CA:41:6D:F9:C5
X509v3 Authority Key Identifier:
keyid:70:F5:D9:EE:EF:A3:05:AE:CA:EE:31:E6:FC:B4:E2:23:21:B2:80:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPXZ7u-jBa7K7jHm_LTiIyGygEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/140105-e462-48d2-a58f-a57035792e57/1/vddcJ9wNd3fX8aEDxxvrykFt-cU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/140105-e462-48d2-a58f-a57035792e57/1/cPXZ7u-jBa7K7jHm_LTiIyGygEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.128.0/22
IPv6:
2a07:2400::/29
Signature Algorithm: sha256WithRSAEncryption
3b:77:b4:52:5e:9b:7c:fd:bd:25:51:00:a9:7e:e8:8f:eb:21:
6f:df:20:ed:44:1f:9d:04:6a:ae:37:ae:b7:de:c5:d4:48:94:
2f:13:a8:80:c7:e3:96:75:29:29:76:65:d1:9a:d8:1d:53:5b:
cb:59:32:8c:47:c9:e9:d9:5b:84:60:17:4a:5e:a0:a0:23:63:
7b:43:1c:7f:dc:e6:e2:89:95:0d:95:4c:ee:14:86:3b:b2:8c:
ac:9d:e0:03:39:e4:d4:c9:96:2a:5f:42:96:33:cb:c6:f3:8d:
0e:17:be:e1:4b:29:bd:92:18:2a:f6:10:b9:16:38:b4:07:56:
d0:4a:a4:bb:cb:df:6d:00:5b:84:65:30:f7:82:af:84:e0:9e:
f5:8c:1a:91:e6:b3:83:6d:9f:03:bd:67:83:04:8f:52:eb:f9:
cc:2b:c7:ed:4b:e4:06:8b:5d:ee:ff:49:a9:19:7e:b2:de:4b:
3e:7d:2f:a7:59:3e:0d:e9:5f:2b:7d:45:24:50:c2:bc:3e:4a:
38:60:35:16:7f:42:a4:6b:ff:e5:94:91:67:f0:42:25:9e:df:
a5:c9:7f:27:e8:6c:ec:fe:b9:35:a1:64:77:b8:32:c2:4b:ca:
d4:1b:03:73:5b:ec:9d:49:01:c5:77:22:56:9c:cb:e1:56:32:
b5:c5:f4:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 19:38:34 2024 by rpki-client on console-ams.rpki-client.org