Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/VanNf7t6vcc7SgIQoBw7vcMSYzc.roa
File: VanNf7t6vcc7SgIQoBw7vcMSYzc.roa (raw, json)
Hash identifier: 0Nz6K2SC2l6NbOqQeCycwT0LQLow6QwtCvmq4vVQKYw=
Subject key identifier: 55:A9:CD:7F:BB:7A:BD:C7:3B:4A:02:10:A0:1C:3B:BD:C3:12:63:37
Certificate issuer: /CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Certificate serial: 019206564004A433BE9EC9E72B85740E8C91
Authority key identifier: D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/VanNf7t6vcc7SgIQoBw7vcMSYzc.roa
Signing time: Wed 18 Sep 2024 18:12:48 +0000
ROA not before: Wed 18 Sep 2024 18:12:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5065
IP address blocks: 147.185.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Oct 2024 17:49:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:06:56:40:04:a4:33:be:9e:c9:e7:2b:85:74:0e:8c:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Validity
Not Before: Sep 18 18:12:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=55a9cd7fbb7abdc73b4a0210a01c3bbdc3126337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e6:ed:9a:1f:d8:a3:4e:0c:80:a9:7b:89:72:
55:0d:0d:4a:38:1b:03:3f:3b:a6:f1:65:2c:97:9e:
f6:07:ce:d9:34:37:41:36:16:bf:be:2b:64:f7:89:
72:f8:58:a4:1d:86:50:01:f7:96:bb:32:12:4e:78:
43:38:15:7b:bf:10:ee:90:82:d0:03:cd:12:be:05:
ae:60:0e:b7:48:33:b1:ab:ee:27:90:68:8e:d1:2a:
54:03:cf:1a:d0:d7:b8:06:68:26:62:df:4d:41:ff:
05:01:b7:32:ad:cd:66:ea:fe:c6:2b:89:07:e6:cf:
f0:e4:b5:37:fb:29:9f:2b:c7:cc:c5:74:ab:c3:c4:
92:6e:b6:ca:ac:a0:c5:dc:43:ce:e4:47:53:be:3c:
c5:48:86:0d:07:3f:67:e3:01:1a:e2:51:d2:70:94:
ef:bc:af:40:5b:8d:e1:da:35:6e:56:75:88:ae:5d:
93:40:c5:d4:53:bb:30:2a:9d:63:20:5a:73:b9:ad:
ac:c1:b3:90:ed:35:87:f2:ac:76:5f:bf:a7:43:60:
cc:73:97:f2:32:9f:ef:37:4d:d6:1d:71:75:01:10:
67:17:2e:08:7f:35:30:4c:f8:28:23:cd:8b:8f:44:
7d:db:35:26:94:95:2b:4b:0f:70:2e:2a:11:b5:29:
06:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A9:CD:7F:BB:7A:BD:C7:3B:4A:02:10:A0:1C:3B:BD:C3:12:63:37
X509v3 Authority Key Identifier:
keyid:D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/VanNf7t6vcc7SgIQoBw7vcMSYzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.185.207.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:36:4c:98:52:0c:94:2c:a1:db:d0:48:41:d9:46:ed:e3:2a:
77:43:f3:45:8f:8c:dc:94:41:26:70:11:41:5c:ed:86:04:64:
c4:74:44:03:55:eb:d5:df:b7:87:f1:63:32:0f:7d:e7:71:ce:
7e:e3:b8:f2:ee:52:fe:bf:03:c4:0d:54:d7:52:7d:f9:42:57:
3a:ec:db:7d:a7:45:96:c0:b4:c1:1b:19:a3:f9:63:b9:c0:c5:
74:a7:00:be:f6:fa:d5:2b:71:dc:51:41:6e:6a:e7:0e:21:83:
39:08:f9:da:63:57:75:9e:69:32:b3:d2:07:d8:d3:9f:c7:fc:
ec:80:4b:6b:ed:6d:5a:80:1b:a3:6e:49:73:5f:9d:d0:81:97:
7e:03:8b:23:2c:0d:e6:00:04:74:68:0f:42:53:2a:64:8d:f0:
01:f9:9d:5a:8a:2f:d0:22:d3:07:b4:07:59:cf:d9:db:a4:a2:
27:94:60:8c:ee:20:f4:94:a8:36:07:c4:84:af:5c:0f:bb:95:
ba:a6:74:b7:24:cb:ae:5a:8b:9e:f1:e2:bc:79:12:55:b9:b4:
1d:66:7a:ec:61:be:65:74:c5:ad:d5:17:25:6c:06:b1:8f:4e:
e7:ea:33:d1:3d:52:4f:07:89:42:e6:1e:d0:0a:a2:78:cc:61:
73:dd:a3:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 29 19:20:08 2024 by rpki-client on console-fra.rpki-client.org