Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/vfIb4JrEDE2XidguIa3DKGAlmLM.roa
File: vfIb4JrEDE2XidguIa3DKGAlmLM.roa (raw, json)
Hash identifier: jauS3uZdU7mKGo4kfXw7ctip4CPi3KToZg5hbZnNFQw=
Subject key identifier: BD:F2:1B:E0:9A:C4:0C:4D:97:89:D8:2E:21:AD:C3:28:60:25:98:B3
Certificate issuer: /CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Certificate serial: 018BCDEC9ACF160F2511A9BEDDD8FD070DE7
Authority key identifier: D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/vfIb4JrEDE2XidguIa3DKGAlmLM.roa
Signing time: Tue 14 Nov 2023 13:01:57 +0000
ROA not before: Tue 14 Nov 2023 13:01:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59692
IP address blocks: 185.9.185.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:cd:ec:9a:cf:16:0f:25:11:a9:be:dd:d8:fd:07:0d:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Validity
Not Before: Nov 14 13:01:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdf21be09ac40c4d9789d82e21adc328602598b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:c9:07:ba:a8:1f:0d:0a:c2:0f:f1:5e:e3:1e:
96:19:a5:98:83:68:a5:6f:f9:19:c8:c8:05:db:3d:
01:45:7f:32:6b:18:e4:51:65:d9:9e:90:21:cb:5d:
c4:b3:4d:a3:49:b6:ba:d0:ef:31:e7:a7:86:72:db:
5f:88:d6:a6:2d:66:31:15:2b:93:43:8e:53:d3:ff:
a2:73:d8:68:03:47:42:23:6a:0b:98:96:54:22:df:
83:a0:e7:48:db:f2:cf:ea:02:f6:c7:7b:3d:96:dd:
f6:60:f9:d4:8a:97:04:6c:75:1f:fb:7c:1a:b7:9d:
55:8c:f5:56:fd:da:e7:23:9f:b6:8b:57:b5:e9:d9:
6c:4c:98:f1:a0:8d:4a:7a:0f:82:ca:5f:8b:16:b1:
36:4e:05:67:19:62:22:b7:61:ad:d3:a8:89:fc:f2:
af:2c:5a:b9:b3:1f:4f:84:69:3d:86:9a:bc:b6:db:
aa:cf:55:c8:28:9d:b3:de:83:f1:58:c1:f8:4d:cc:
37:b9:68:80:43:b8:ce:c5:81:7f:c0:4f:7b:0f:dc:
19:da:43:94:71:4d:48:e7:80:8b:b9:0b:b1:17:16:
b9:a1:c5:22:38:b4:07:0f:67:63:c7:83:27:5f:2a:
2b:d7:11:69:b3:a2:87:10:63:46:b9:e3:c9:ce:6d:
c5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:F2:1B:E0:9A:C4:0C:4D:97:89:D8:2E:21:AD:C3:28:60:25:98:B3
X509v3 Authority Key Identifier:
keyid:D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/vfIb4JrEDE2XidguIa3DKGAlmLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/0-lwM6NqqbzAwvFn5iDXyhSTy-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.9.185.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:43:90:0e:5d:60:0f:24:61:0e:e3:ed:b9:da:b9:5e:47:d6:
3f:d7:5a:d8:9f:37:f0:d7:77:75:82:8d:b9:5c:13:a1:8d:0c:
f8:ef:a9:b5:aa:f1:65:19:72:fa:f2:01:4a:51:46:25:e9:6c:
c1:05:0e:89:ec:1c:52:22:3b:7f:aa:86:9a:d2:db:a1:ac:08:
99:42:8a:03:b9:9b:51:f9:91:1f:2a:e1:ba:52:70:8c:7e:06:
20:bd:a3:d2:4d:00:f7:12:e0:2f:bb:4c:ae:62:f3:36:bb:4c:
38:08:06:3e:21:a9:3d:45:e8:1f:9a:1b:74:ff:72:0b:f8:53:
34:d6:65:73:9f:40:ca:ad:96:7e:f3:6d:fa:df:0a:97:03:16:
53:e5:3a:35:7b:f6:f3:ab:6b:bd:66:2f:b8:38:ba:5a:1b:d4:
c5:ed:4a:00:50:d2:9c:26:64:69:fc:e9:67:9e:fb:2a:e5:a7:
66:63:af:c8:ab:0e:51:6f:1b:b7:80:94:da:27:29:a0:13:57:
4f:1e:25:70:e4:13:d2:38:35:3f:50:94:0b:71:22:36:11:ee:
ec:f2:c4:e2:0c:7a:ca:1d:ec:5a:af:77:89:84:09:95:72:9a:
1d:97:66:d7:2d:2c:b4:3d:0d:8c:79:39:4a:7d:6b:d3:b3:0f:
60:8f:1a:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:44 2024 by rpki-client on console-fra.rpki-client.org