Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/ad050f-a22d-4a77-958c-357a61361dcb/1/VzOhVeBrAg8tYfZ145bQIipJvcg.roa
File: VzOhVeBrAg8tYfZ145bQIipJvcg.roa (raw, json)
Hash identifier: 6Gm1GghOOUb2rmPM8ZyUfDBrY1gMyj16/2HjkBboV04=
Subject key identifier: 57:33:A1:55:E0:6B:02:0F:2D:61:F6:75:E3:96:D0:22:2A:49:BD:C8
Certificate issuer: /CN=33cfbfbf2eccd393aa30c221369965b847192da8
Certificate serial: 01856E2F7E4D2433B79ED8ACA99BD3DF7CF5
Authority key identifier: 33:CF:BF:BF:2E:CC:D3:93:AA:30:C2:21:36:99:65:B8:47:19:2D:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8-_vy7M05OqMMIhNplluEcZLag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/ad050f-a22d-4a77-958c-357a61361dcb/1/VzOhVeBrAg8tYfZ145bQIipJvcg.roa
Signing time: Sun 01 Jan 2023 16:34:44 +0000
ROA not before: Sun 01 Jan 2023 16:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21277
IP address blocks: 185.38.212.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:7e:4d:24:33:b7:9e:d8:ac:a9:9b:d3:df:7c:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33cfbfbf2eccd393aa30c221369965b847192da8
Validity
Not Before: Jan 1 16:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5733a155e06b020f2d61f675e396d0222a49bdc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f8:9f:55:f2:3e:3b:fa:3e:fe:b6:af:4b:4d:
bb:8c:7a:b3:f7:46:8d:8a:ed:9d:ab:16:db:15:e0:
b3:c9:ea:47:63:c6:f0:5d:07:12:76:36:5d:f9:0a:
06:79:d9:ce:91:8b:b9:ee:2e:ea:92:6f:63:40:65:
58:81:0f:0a:2e:86:90:64:0e:d4:13:0c:63:b0:4d:
ab:4f:7e:c1:b3:69:c3:cb:6a:bd:37:75:ed:fc:71:
05:20:97:72:8a:14:b4:9a:e3:8a:0e:bc:93:39:f0:
70:9a:61:d5:8e:e2:4c:a6:6e:13:d8:dc:78:95:06:
d0:ce:3b:f7:f2:f3:79:f1:42:23:b9:b5:45:a7:44:
0d:b3:94:54:f7:36:98:d9:24:7c:0a:99:10:d9:61:
2b:c4:fb:3e:97:2d:95:ab:2a:c0:0f:b1:18:d4:d0:
15:80:2f:24:7d:ca:cc:99:61:8e:a0:25:1d:3c:6b:
5c:3a:2e:5d:85:5b:4f:7e:5d:20:30:a0:f4:d0:a6:
eb:97:b7:bb:01:bc:9a:f4:fc:f2:15:74:cb:a2:b5:
48:9a:ff:e9:3b:f2:bc:c9:dd:e9:9d:1c:09:00:aa:
3c:ef:b8:c9:17:ff:e0:8c:59:d5:c7:95:18:3c:e2:
8f:be:9e:90:87:a9:ca:aa:0a:2d:33:4e:f4:85:70:
09:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:33:A1:55:E0:6B:02:0F:2D:61:F6:75:E3:96:D0:22:2A:49:BD:C8
X509v3 Authority Key Identifier:
keyid:33:CF:BF:BF:2E:CC:D3:93:AA:30:C2:21:36:99:65:B8:47:19:2D:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8-_vy7M05OqMMIhNplluEcZLag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ad050f-a22d-4a77-958c-357a61361dcb/1/VzOhVeBrAg8tYfZ145bQIipJvcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ad050f-a22d-4a77-958c-357a61361dcb/1/M8-_vy7M05OqMMIhNplluEcZLag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.212.0/22
Signature Algorithm: sha256WithRSAEncryption
08:53:43:c6:cf:f6:5a:e7:67:43:81:4e:40:c1:ea:96:72:ad:
a4:ae:c5:c7:2f:ed:b2:c4:9e:3f:1d:b3:19:9d:e8:85:38:a0:
4e:51:5b:2e:11:71:17:8a:82:2b:89:dc:7d:f3:2a:80:38:f1:
f5:30:56:e8:78:de:24:c3:41:82:56:17:3c:47:ad:7f:1f:04:
f4:bc:40:6a:71:26:51:be:e9:b2:9d:1d:38:30:8b:97:61:01:
f1:42:e3:d2:76:6c:3b:cb:6b:ff:ce:4b:13:54:93:08:49:f8:
f0:60:dc:46:f3:56:d8:9e:44:a7:71:0e:a3:e4:8e:c4:f2:c0:
a0:87:77:de:c2:6f:c0:f7:c2:96:9d:a0:ab:85:32:9f:8c:80:
5f:5a:02:e8:db:4e:cd:e0:6e:1a:90:d2:5e:af:7d:a6:07:35:
d6:56:4b:90:09:08:bb:bd:ee:da:8a:fd:3d:13:2b:0e:f2:a2:
74:3c:82:d0:24:29:31:5b:db:ef:b5:72:58:53:df:0b:0c:4f:
5a:04:82:c2:88:7b:62:1d:13:e6:6f:7f:86:b2:37:a9:b0:38:
5a:81:8c:f0:14:0c:24:b3:29:26:7f:3d:42:65:e0:59:6b:91:
ed:89:4d:67:2d:a2:33:69:6d:02:34:37:26:a5:c8:a9:02:fe:
74:10:ee:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:40 2024 by rpki-client on console-ams.rpki-client.org