Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/2wVQhQOD-eP8CyBszCgjqkEjZY0.roa
File: 2wVQhQOD-eP8CyBszCgjqkEjZY0.roa (raw, json)
Hash identifier: IKWBsCOpwL/Ihlsx2q1V+K9uuyJatiWaSpRy13uta+M=
Subject key identifier: DB:05:50:85:03:83:F9:E3:FC:0B:20:6C:CC:28:23:AA:41:23:65:8D
Certificate issuer: /CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Certificate serial: 019006394334A9E58B9F285545A7158A105C
Authority key identifier: 00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/2wVQhQOD-eP8CyBszCgjqkEjZY0.roa
Signing time: Tue 11 Jun 2024 07:35:34 +0000
ROA not before: Tue 11 Jun 2024 07:35:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.131.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Jun 2024 06:56:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:06:39:43:34:a9:e5:8b:9f:28:55:45:a7:15:8a:10:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Validity
Not Before: Jun 11 07:35:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db0550850383f9e3fc0b206ccc2823aa4123658d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f4:52:6f:4e:73:19:ad:3f:71:ea:21:fe:68:
1c:93:e8:cd:fd:e9:71:fa:a1:e5:b6:06:67:a3:d5:
71:6f:06:41:60:5c:62:16:8b:eb:44:c0:75:ff:a9:
fe:03:63:91:a6:75:e5:f0:24:ee:3d:1d:67:25:b7:
b1:f6:e1:38:cd:e6:b9:8a:f6:5c:7f:ed:be:83:46:
94:7d:12:8e:ba:bf:91:a6:66:ba:25:ac:bb:cd:52:
e3:9f:11:d2:01:be:22:92:f5:39:03:2e:3f:72:e7:
8b:11:78:3b:56:08:3c:01:0b:e9:f9:04:3a:f0:fd:
3b:4c:9f:97:53:4e:c1:80:7d:23:2f:aa:47:07:87:
c3:02:9e:14:d9:91:7e:c0:5e:87:99:b9:1f:c5:7b:
35:4d:17:f5:98:7b:d3:35:98:d9:8b:91:18:f0:b3:
49:38:82:c3:3d:69:2d:85:ae:80:38:9b:b9:c8:cf:
57:2a:8b:d1:ef:80:17:ea:e2:e4:e6:57:b7:16:14:
79:f3:92:62:c7:19:5a:ea:90:72:55:9c:71:0c:f4:
e1:6f:73:06:9c:36:cf:28:b0:a6:f7:b5:e2:3b:e9:
d2:3f:6d:cb:26:89:62:fc:56:50:5b:07:5a:35:b7:
8a:b5:c8:84:3b:45:5a:10:f6:8b:36:42:c3:1e:07:
6a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:05:50:85:03:83:F9:E3:FC:0B:20:6C:CC:28:23:AA:41:23:65:8D
X509v3 Authority Key Identifier:
keyid:00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/2wVQhQOD-eP8CyBszCgjqkEjZY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/ACZHyAH7WPz6rBNbtI9eYf6n5WY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.131.207.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:bf:97:34:21:1e:b1:59:c7:50:83:bf:0e:d8:49:39:44:3e:
84:26:3d:10:26:1b:28:52:27:eb:0f:86:15:a8:f2:bd:b9:6b:
ee:d5:bd:15:5d:01:df:e9:69:48:7f:0c:c7:85:be:f0:80:23:
f6:50:7d:39:4a:c4:ab:62:3a:5a:6f:17:ac:68:cc:74:eb:2f:
f3:5b:e4:f9:aa:04:d2:b4:08:1a:8c:a3:9a:70:94:a0:c6:d3:
db:77:b0:6d:7f:f2:42:af:e8:38:84:ea:24:43:bd:88:34:90:
d3:50:e0:e1:48:27:1f:f7:f4:71:23:a5:df:ae:51:84:70:09:
e1:a8:a2:67:98:9f:1c:e6:65:72:f6:8a:1b:c3:d7:f2:35:8d:
51:22:aa:be:55:3e:2b:15:29:6a:2a:c6:10:47:b9:24:df:e3:
eb:e8:26:7c:c7:e2:23:31:d3:58:61:d8:47:30:d3:06:7a:f9:
74:c4:bd:8a:75:19:98:d7:05:61:d8:94:2d:20:8e:b5:a0:24:
e5:ea:82:33:37:e5:a2:78:c9:92:f3:11:4f:3d:1d:10:72:46:
07:46:11:4b:41:d9:18:be:05:f1:c4:0d:55:ff:8a:43:7e:02:
99:43:0e:e8:34:94:bc:47:76:e0:fb:66:b4:6e:e3:4c:6f:95:
c9:df:2d:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 12 10:56:00 2024 by rpki-client on console-ams.rpki-client.org