Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/bdLcGdyV4G3x99eleFHgTpyVbX4.roa
File: bdLcGdyV4G3x99eleFHgTpyVbX4.roa (raw, json)
Hash identifier: UrkFeNu362I4ay0bz1SDJ7bbkvbXf/XeQzHzMFJUzxw=
Subject key identifier: 6D:D2:DC:19:DC:95:E0:6D:F1:F7:D7:A5:78:51:E0:4E:9C:95:6D:7E
Certificate issuer: /CN=37949ac84d0b86910f4fd3cf5962927d83450aeb
Certificate serial: 018CC50065111864BB3FCF60E552E8F945ED
Authority key identifier: 37:94:9A:C8:4D:0B:86:91:0F:4F:D3:CF:59:62:92:7D:83:45:0A:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N5SayE0LhpEPT9PPWWKSfYNFCus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/bdLcGdyV4G3x99eleFHgTpyVbX4.roa
Signing time: Mon 01 Jan 2024 12:29:46 +0000
ROA not before: Mon 01 Jan 2024 12:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56403
IP address blocks: 185.232.192.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 27 May 2024 14:36:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:65:11:18:64:bb:3f:cf:60:e5:52:e8:f9:45:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37949ac84d0b86910f4fd3cf5962927d83450aeb
Validity
Not Before: Jan 1 12:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6dd2dc19dc95e06df1f7d7a57851e04e9c956d7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b7:63:93:cd:34:2f:13:55:96:d2:d0:0b:9e:
7d:6e:8a:42:bc:b2:a2:a0:26:28:e6:da:96:93:25:
2a:14:d5:dd:03:1d:d8:53:cd:3c:fa:f3:34:53:5f:
c6:7f:a5:99:9f:de:80:48:ff:c7:14:d6:d5:85:28:
20:6e:86:c5:36:6d:d6:52:9c:e2:cc:45:2d:5f:22:
48:3a:4f:a8:25:35:3d:ed:3e:38:71:27:2f:1e:60:
ea:26:ea:00:c1:23:1e:f3:ba:e6:57:23:77:d7:82:
e8:b4:20:b5:99:64:a5:0d:c5:3d:02:03:cc:b2:b1:
c9:83:5a:b1:0b:5b:34:cd:58:aa:ff:93:ff:8a:19:
3d:af:28:5a:6c:1f:1a:22:72:50:ea:1b:c5:fb:e3:
a6:1b:a9:46:74:4f:dd:d0:cc:9c:38:60:6a:64:62:
7f:1d:ec:a8:06:fd:0a:cf:be:c9:05:c0:84:11:2e:
16:4e:42:84:7d:55:c3:93:7a:2b:2c:64:f6:6c:4b:
67:64:d2:cc:5b:12:1a:b1:f3:9d:7f:58:e4:12:1a:
97:3a:b3:bb:77:12:8c:ba:99:15:d9:01:ee:9a:3e:
04:eb:16:08:b3:4a:30:b3:d1:32:9e:e9:7b:9a:f2:
a0:32:24:fa:9b:ed:70:4c:9f:95:a0:83:ff:74:ee:
ab:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:D2:DC:19:DC:95:E0:6D:F1:F7:D7:A5:78:51:E0:4E:9C:95:6D:7E
X509v3 Authority Key Identifier:
keyid:37:94:9A:C8:4D:0B:86:91:0F:4F:D3:CF:59:62:92:7D:83:45:0A:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N5SayE0LhpEPT9PPWWKSfYNFCus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/bdLcGdyV4G3x99eleFHgTpyVbX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/N5SayE0LhpEPT9PPWWKSfYNFCus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.192.0/22
Signature Algorithm: sha256WithRSAEncryption
19:dd:14:c5:b4:46:38:2c:09:2b:65:ae:c4:73:a1:da:19:59:
b2:d5:04:d4:20:dd:fe:7e:4b:a5:99:15:a6:0c:92:29:56:73:
9f:1a:28:d2:ac:09:c3:64:b0:92:e1:db:b4:2a:02:20:89:f5:
c6:3d:c3:8f:5c:ff:62:c6:2f:24:d5:2b:dc:c1:d7:b9:60:a7:
d7:23:6b:ec:13:47:a3:fa:4e:21:5e:71:ce:a8:17:a9:e8:7f:
92:d4:36:6d:b9:89:f8:ca:03:f3:97:16:db:cf:42:90:14:f0:
9f:30:c3:1e:9e:7b:f0:65:7a:7f:13:6d:4e:98:0f:dd:bd:55:
e1:a9:1d:a0:68:ab:ad:bd:3d:d1:02:e6:79:34:16:2c:25:cc:
24:ee:69:42:2b:21:03:89:c3:91:4a:26:3a:f5:67:14:d2:cf:
7f:f9:c6:72:2c:e8:66:ab:16:f2:bb:87:3f:74:72:88:ba:96:
97:9a:55:c2:4f:ba:5e:5a:b7:5a:4d:fd:29:c4:cb:93:17:fa:
77:06:69:40:56:1d:82:30:0d:91:26:a8:e7:4d:2c:86:97:e2:
1b:70:d7:6f:3a:18:54:43:70:69:a0:ee:50:2a:f9:06:22:e5:
69:57:27:5d:d5:7b:1d:a1:2b:1d:aa:f0:a7:7d:a4:7a:03:79:
be:a2:a9:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 18:54:51 2024 by rpki-client on console-fra.rpki-client.org