Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/VGwMFytHnl03_ux8q1aEsjbzdSU.roa
File: VGwMFytHnl03_ux8q1aEsjbzdSU.roa (raw, json)
Hash identifier: Dcp4+zEqd5EpynA8YF9wghADKtjuUyiDLqjOGKxJ/f0=
Subject key identifier: 54:6C:0C:17:2B:47:9E:5D:37:FE:EC:7C:AB:56:84:B2:36:F3:75:25
Certificate issuer: /CN=93db7a342cd9392efa5cd33894741ca8a5b4f42b
Certificate serial: 0185729EE82A8849916DDB3562CD161E3425
Authority key identifier: 93:DB:7A:34:2C:D9:39:2E:FA:5C:D3:38:94:74:1C:A8:A5:B4:F4:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k9t6NCzZOS76XNM4lHQcqKW09Cs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/VGwMFytHnl03_ux8q1aEsjbzdSU.roa
Signing time: Mon 02 Jan 2023 13:14:54 +0000
ROA not before: Mon 02 Jan 2023 13:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210321
IP address blocks: 185.242.248.0/22 maxlen: 24
2a0c:f780::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:e8:2a:88:49:91:6d:db:35:62:cd:16:1e:34:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93db7a342cd9392efa5cd33894741ca8a5b4f42b
Validity
Not Before: Jan 2 13:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=546c0c172b479e5d37feec7cab5684b236f37525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1c:af:2d:13:2c:07:2f:5c:03:df:65:1e:f4:
10:87:51:e1:df:c6:91:26:20:44:1a:05:42:92:b9:
f2:72:db:9c:86:d8:24:3f:f3:c7:24:c8:d4:42:ec:
13:bf:a5:19:0b:e5:2c:bd:e3:40:ef:c7:36:56:46:
4a:8a:8f:65:14:1e:3f:b2:ea:8b:b7:2a:87:2b:55:
09:b4:78:ed:65:68:84:01:13:3c:54:63:27:fe:2c:
73:40:ef:2d:49:1e:ea:65:dd:3b:10:b0:15:6a:42:
aa:ef:7d:1f:40:53:42:08:88:92:58:fa:d2:56:d3:
b1:75:32:b6:62:32:c1:2f:97:aa:1a:59:12:20:19:
c0:f8:e4:37:3e:d7:e3:7f:2e:1c:2a:52:c0:08:3f:
8f:19:eb:55:3e:b0:3a:06:79:20:34:ab:ed:07:d0:
09:ff:86:e6:60:94:e5:f2:0b:79:a0:45:49:3b:51:
cd:43:92:46:41:7f:4b:eb:66:91:55:83:b2:17:4c:
cf:33:18:bc:7a:ab:0f:e6:22:01:85:1d:01:77:8f:
0a:e6:1b:8d:12:32:d8:6c:75:d7:ed:b8:3a:b2:88:
af:85:63:6c:22:ab:85:bb:5d:c7:49:03:a5:2f:db:
c9:e6:a9:15:4f:14:0b:4d:3d:65:ec:8b:64:17:e1:
43:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:6C:0C:17:2B:47:9E:5D:37:FE:EC:7C:AB:56:84:B2:36:F3:75:25
X509v3 Authority Key Identifier:
keyid:93:DB:7A:34:2C:D9:39:2E:FA:5C:D3:38:94:74:1C:A8:A5:B4:F4:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k9t6NCzZOS76XNM4lHQcqKW09Cs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/VGwMFytHnl03_ux8q1aEsjbzdSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.248.0/22
IPv6:
2a0c:f780::/29
Signature Algorithm: sha256WithRSAEncryption
06:7d:69:e1:b8:a7:2f:da:9b:d6:9f:d2:a7:8c:4a:24:e5:fb:
06:c2:d5:5a:2a:d7:0a:ae:08:46:5c:cb:ed:e3:14:26:51:6c:
4a:6c:cb:ad:55:92:34:46:69:99:ab:9d:a7:e9:85:60:b1:f1:
65:bb:25:c0:ce:f5:b5:d2:06:a1:4b:af:a8:4a:e0:0a:0e:f3:
4c:e5:e6:0a:dc:65:78:06:e7:0c:a1:7b:a0:05:12:6e:c0:5b:
b6:08:ca:4c:b8:54:36:59:a4:5d:35:99:ac:19:f1:5c:d1:f1:
50:f0:f6:8b:44:22:78:3a:f2:8e:99:da:75:82:2e:77:cc:c9:
32:13:ba:08:c3:17:c1:aa:98:cc:31:06:d7:a9:fb:a0:2e:59:
dd:0f:27:5b:c0:36:00:62:bc:c8:5d:20:57:eb:e3:a1:7e:c7:
70:db:27:51:da:f5:fc:01:f7:8b:42:5b:3a:a5:47:e1:70:93:
1a:e5:86:07:4b:c9:cd:8d:f7:cc:55:53:21:fd:70:21:5e:2e:
35:98:15:a8:36:97:49:93:d0:8c:90:d5:cc:63:5e:9d:9d:0f:
b1:7f:d4:9c:22:da:86:4c:8a:7d:4f:50:8b:e2:fe:17:4d:ea:
bd:b5:4f:fc:50:ec:4d:f7:24:f4:53:cf:20:70:94:9b:55:ae:
a5:5c:f8:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:53 2024 by rpki-client on console-fra.rpki-client.org