Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/vWWZiE6PINAXCt5squhjZdBysR8.roa
File: vWWZiE6PINAXCt5squhjZdBysR8.roa (raw, json)
Hash identifier: zh4EFaGT0/2Hrdflr1v3ErierHod3en/pxqbTyEcGcU=
Subject key identifier: BD:65:99:88:4E:8F:20:D0:17:0A:DE:6C:AA:E8:63:65:D0:72:B1:1F
Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Certificate serial: 01857139A8C419A0ED53A862684E5FC7E8FA
Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/vWWZiE6PINAXCt5squhjZdBysR8.roa
Signing time: Mon 02 Jan 2023 06:44:42 +0000
ROA not before: Mon 02 Jan 2023 06:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48481
IP address blocks: 185.32.67.0/24 maxlen: 24
185.50.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:a8:c4:19:a0:ed:53:a8:62:68:4e:5f:c7:e8:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Validity
Not Before: Jan 2 06:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd6599884e8f20d0170ade6caae86365d072b11f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:cd:b6:78:eb:06:25:1e:85:67:67:6c:00:b1:
b1:33:6d:ce:dd:cd:69:9f:de:04:e5:32:70:9a:8f:
2f:9d:d4:bc:e7:5c:9e:61:61:fa:a1:b1:e1:0a:d1:
48:94:b8:ff:2e:d9:4f:d4:8c:b2:d7:08:fa:3d:4c:
5e:c2:19:be:ec:5d:ad:59:26:fa:d1:df:a7:5d:b7:
ec:7e:2c:05:51:df:7c:8a:58:02:72:33:10:54:b1:
43:85:8b:41:ed:05:a5:02:6e:ea:bd:c7:ba:5b:91:
cd:9b:d1:27:3e:34:20:dd:99:e7:89:56:e2:89:f0:
62:76:c7:02:2c:65:d4:9a:f2:63:48:64:13:ec:98:
3e:af:3a:74:67:1b:59:10:46:72:ad:4d:d5:e0:81:
43:81:82:33:eb:34:37:9e:80:27:01:ff:a0:a8:71:
8e:d6:20:55:54:f7:e1:53:09:46:8e:76:88:86:6b:
33:1b:83:f6:c2:62:44:4b:c0:8c:0f:d6:16:2e:cd:
5a:5f:9f:b3:e3:aa:06:52:11:dd:c4:f9:ef:d9:e0:
b2:6f:e3:b8:c8:0f:18:f0:09:12:d6:73:3d:2b:7d:
df:f4:95:8f:9f:9d:7d:cf:c3:31:e4:a6:5a:cf:78:
a0:0b:c7:69:dd:56:e5:bf:bd:d1:64:c8:de:39:b7:
30:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:65:99:88:4E:8F:20:D0:17:0A:DE:6C:AA:E8:63:65:D0:72:B1:1F
X509v3 Authority Key Identifier:
keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/vWWZiE6PINAXCt5squhjZdBysR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.67.0/24
185.50.149.0/24
Signature Algorithm: sha256WithRSAEncryption
29:a8:71:f9:96:71:4c:2a:0d:e3:a3:d5:11:92:75:8f:9b:aa:
7a:b6:f2:0a:01:1d:bd:13:89:1a:cf:30:1d:b3:aa:58:a5:b6:
ad:38:92:97:24:b9:92:b5:ce:04:5e:38:f4:09:60:ac:33:0a:
6c:83:f4:28:68:20:92:d5:d5:37:c8:2c:ef:ed:1a:07:15:cf:
a1:78:ad:b5:2d:5e:f9:6a:c6:b7:24:71:8c:1f:5c:fd:4b:c2:
c8:34:f6:01:4c:b1:c3:4f:51:29:8c:6f:fd:90:03:9b:d0:96:
bf:cf:0a:17:f0:92:a1:c0:2d:af:a6:ac:5f:e5:99:34:29:e2:
79:f8:47:4b:b8:c0:9c:5c:e8:5d:b8:af:d5:e8:2a:a1:c2:46:
e2:04:38:8a:13:48:71:bd:03:7c:83:c3:24:88:f9:92:26:94:
23:97:50:7e:1f:d1:28:5f:be:4f:3e:09:0e:49:16:13:c2:a1:
3c:2f:f0:c5:2e:1c:56:db:68:02:36:39:d1:75:41:fd:80:ce:
02:bf:27:33:21:49:ee:de:31:f3:cc:40:d3:95:d7:de:15:78:
2a:05:3a:14:0b:2d:97:de:2c:79:a8:0f:e7:f5:74:c3:b2:6c:
7b:ae:47:c1:f2:e8:e0:17:82:d7:9e:f7:a6:c4:e1:a7:62:8b:
a9:a6:39:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:34 2024 by rpki-client on console-fra.rpki-client.org