Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/aeF9ymGaTySVwUHOZpmvr_9VITE.roa
File: aeF9ymGaTySVwUHOZpmvr_9VITE.roa (raw, json)
Hash identifier: /3HWDuF2aV0qrWK6zGHoSm45v/bGm1I2BVYb2Y9KVOA=
Subject key identifier: 69:E1:7D:CA:61:9A:4F:24:95:C1:41:CE:66:99:AF:AF:FF:55:21:31
Certificate issuer: /CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Certificate serial: 018F14956F78581BE57B4D2C9CD3885AD006
Authority key identifier: 00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/aeF9ymGaTySVwUHOZpmvr_9VITE.roa
Signing time: Thu 25 Apr 2024 09:28:08 +0000
ROA not before: Thu 25 Apr 2024 09:28:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.148.68.0/23 maxlen: 23
185.148.70.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 03 May 2024 10:37:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:14:95:6f:78:58:1b:e5:7b:4d:2c:9c:d3:88:5a:d0:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Validity
Not Before: Apr 25 09:28:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=69e17dca619a4f2495c141ce6699afafff552131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7e:8f:4c:ab:82:8b:d9:c8:92:c9:2d:c1:4e:
ce:f1:2a:84:fe:01:3b:14:33:d5:86:b8:14:7f:49:
b3:24:37:db:d9:a2:16:ea:36:8e:85:07:06:14:ca:
c4:3d:54:1e:a2:c4:9f:4e:54:74:7c:c2:01:54:4f:
f0:15:0d:db:87:54:8a:66:60:3a:9c:dd:c6:54:ac:
25:d8:bf:78:6e:e0:2e:e9:8b:28:fa:66:60:b0:19:
3f:60:ca:52:a4:71:d6:a5:a6:b1:12:73:aa:3f:a3:
31:9d:cb:75:c2:52:5b:ec:f0:13:c5:7d:04:e2:fe:
a3:de:6d:88:c0:e3:e4:33:b4:54:ba:f2:fc:aa:b1:
ef:5d:e2:99:ae:3c:ed:50:3c:3f:88:3d:8f:d6:c3:
c2:f0:21:c0:99:18:c4:26:f4:f1:58:a4:5d:2a:2d:
91:5c:33:e5:fa:bb:42:66:a9:9e:78:f8:ef:cd:ee:
8f:a2:e1:a4:41:9f:27:9d:51:29:bc:a8:3a:8a:88:
3b:50:33:53:6c:63:af:50:07:91:09:de:2e:f6:6a:
26:af:b3:e7:24:f7:0c:f2:0f:0e:57:2a:84:cf:4d:
af:f9:07:e3:05:3e:2a:e9:86:03:b2:20:df:9b:b4:
a7:ed:e6:08:31:5f:ea:5f:bc:f6:bd:dd:fe:b8:cf:
f3:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:E1:7D:CA:61:9A:4F:24:95:C1:41:CE:66:99:AF:AF:FF:55:21:31
X509v3 Authority Key Identifier:
keyid:00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/aeF9ymGaTySVwUHOZpmvr_9VITE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/ACZHyAH7WPz6rBNbtI9eYf6n5WY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.68.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:41:be:dd:cd:43:c8:20:12:3d:ad:4f:e3:e8:38:dc:71:02:
45:1e:25:40:7a:a3:d4:22:8a:94:85:aa:ab:b9:aa:a6:b3:dd:
5f:4a:2a:c2:2e:63:fc:ca:dc:a7:a9:ac:62:73:fe:48:4b:d1:
1b:1f:d3:35:74:82:f4:be:ba:ca:a5:60:6a:75:86:50:c5:66:
1a:f5:3a:ec:9f:d5:4d:8d:33:75:24:ed:68:11:71:ca:18:38:
f7:8e:2c:0e:24:d2:2f:a5:ba:89:15:f8:77:86:0a:99:16:06:
40:0c:cb:77:c1:59:be:27:a1:32:42:e9:f4:d5:9c:c3:3c:8a:
9b:ad:1e:21:6e:3d:c9:f2:7d:c6:2f:42:70:af:eb:00:0e:10:
ed:5d:8f:5e:58:e1:e7:d0:e4:eb:14:2e:a4:25:05:b6:fa:74:
fe:be:47:6d:35:d7:c6:67:90:3a:23:7a:b1:f1:ec:5b:0e:92:
64:b4:f4:aa:0a:8d:14:dc:74:52:0d:0a:9c:46:fd:0c:09:d3:
a4:e9:fb:34:85:ce:af:7c:8e:8c:da:44:e9:6a:8d:71:e7:72:
4f:fc:38:1e:81:3a:77:91:b7:9b:1d:2a:af:49:1d:7f:1a:da:
d4:75:83:1c:a4:35:6c:60:a8:07:09:08:64:f3:0b:01:5b:2b:
46:71:b7:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:37 2024 by rpki-client on console-fra.rpki-client.org