Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/Vd1vhY3mKIqcSZIq3PEnM7wvejo.roa
File: Vd1vhY3mKIqcSZIq3PEnM7wvejo.roa (raw, json)
Hash identifier: 7yh0yWSkT9nT5EF3jOwjB/ra/gxBSd025clkvp3zQUY=
Subject key identifier: 55:DD:6F:85:8D:E6:28:8A:9C:49:92:2A:DC:F1:27:33:BC:2F:7A:3A
Certificate issuer: /CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Certificate serial: 018682982FED4903384F9F34D65C91E2B976
Authority key identifier: BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/Vd1vhY3mKIqcSZIq3PEnM7wvejo.roa
Signing time: Fri 24 Feb 2023 08:44:17 +0000
ROA not before: Fri 24 Feb 2023 08:44:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207456
IP address blocks: 185.239.204.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 11 May 2023 07:21:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:82:98:2f:ed:49:03:38:4f:9f:34:d6:5c:91:e2:b9:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Validity
Not Before: Feb 24 08:44:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55dd6f858de6288a9c49922adcf12733bc2f7a3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:91:7f:00:90:ea:ba:05:18:d5:52:60:2d:36:
18:9e:de:4f:37:64:df:52:c1:71:ae:a4:f4:98:88:
73:dd:4b:bf:59:76:40:a1:cb:2a:ff:89:15:fd:f1:
90:a1:04:dd:91:4e:63:3c:0c:32:20:59:2e:9d:7d:
fa:d6:b4:e3:ea:41:44:8d:d5:c8:5a:0f:97:eb:77:
fd:34:af:07:ea:f7:b7:3c:97:8a:ef:2c:7a:73:0a:
23:bb:82:71:b6:c3:e3:1c:6d:aa:74:28:27:3e:d1:
c3:eb:a2:f0:a6:56:5c:81:74:ef:df:24:ab:3f:af:
d1:2f:ef:71:46:53:0a:8e:50:26:46:7b:18:8c:50:
21:f5:7e:10:93:2a:34:a2:15:23:d8:90:10:7b:b4:
fa:ba:90:ce:76:1e:6d:c3:f0:3d:09:1c:8d:88:21:
33:6c:e6:a0:53:c9:78:46:a4:04:fa:a4:c4:29:91:
74:e5:17:04:10:a5:53:54:27:b8:bb:d8:22:06:41:
4f:17:a8:5e:16:e7:3e:8f:e5:05:b3:8b:22:31:98:
9c:9e:78:92:7d:e8:f8:32:4c:ef:0f:85:97:3f:c3:
f7:a6:88:2d:6d:9c:94:eb:3d:95:90:60:9e:ba:18:
39:eb:1f:ab:0c:c6:7c:fa:e9:8a:62:c8:f6:c0:a9:
3a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:DD:6F:85:8D:E6:28:8A:9C:49:92:2A:DC:F1:27:33:BC:2F:7A:3A
X509v3 Authority Key Identifier:
keyid:BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/Vd1vhY3mKIqcSZIq3PEnM7wvejo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/uw1OhZN7eg8nEFTShhTyk01OpQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.204.0/22
Signature Algorithm: sha256WithRSAEncryption
08:4b:10:5a:d1:53:df:7f:49:52:f3:3d:69:20:37:86:55:2c:
66:78:37:72:a2:69:4d:e4:f9:21:4a:81:e3:f4:40:1a:cf:d9:
b3:9a:f6:49:ba:58:26:06:2a:9b:bd:92:20:17:82:34:84:a8:
65:69:c6:3d:1f:c3:fe:eb:04:f0:4d:dd:ea:ea:5f:74:9a:0e:
0f:01:79:17:a9:5e:a6:4b:68:87:b0:2a:d8:cf:63:c8:d0:1d:
3a:25:c9:f6:1e:8e:be:0c:50:41:88:01:10:e2:58:35:25:3b:
ee:97:ea:01:d4:44:c0:9d:65:fb:19:cd:c6:58:47:d2:66:7f:
71:9f:3c:dc:30:e4:40:42:12:19:f6:fb:4d:8a:ba:df:72:1a:
42:cb:7f:12:64:2c:21:f1:84:e1:32:89:20:27:48:3e:ee:58:
fe:be:a7:cd:14:e6:3d:40:91:a2:e7:07:8b:e0:19:f0:9b:94:
b9:de:5a:29:c7:ba:b4:de:f0:e6:0e:54:5c:ee:fb:c5:d6:ff:
55:79:07:9f:a0:4b:cd:17:dd:58:11:7c:28:0f:53:09:99:fc:
53:98:59:22:1f:df:c9:d6:2d:f5:ee:74:c0:f2:1d:4d:96:a5:
6e:1c:22:b8:df:e9:e9:94:63:2a:1f:76:b0:36:4a:b8:e7:0b:
50:92:96:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:19 2024 by rpki-client on console-fra.rpki-client.org