Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/voWVSVNEPvK7gSvLzoTtZB9Hc84.roa
File: voWVSVNEPvK7gSvLzoTtZB9Hc84.roa (raw, json)
Hash identifier: eAHA3T5Bm6qeadlw6yKDZbCyVH2GGn7NzoUmPt9Bzq0=
Subject key identifier: BE:85:95:49:53:44:3E:F2:BB:81:2B:CB:CE:84:ED:64:1F:47:73:CE
Certificate issuer: /CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Certificate serial: 018FB8D0CC6329780EED93DCB5489665A420
Authority key identifier: 00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/voWVSVNEPvK7gSvLzoTtZB9Hc84.roa
Signing time: Mon 27 May 2024 06:50:42 +0000
ROA not before: Mon 27 May 2024 06:50:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.148.68.0/24 maxlen: 24
185.148.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 May 2024 06:20:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b8:d0:cc:63:29:78:0e:ed:93:dc:b5:48:96:65:a4:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Validity
Not Before: May 27 06:50:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be85954953443ef2bb812bcbce84ed641f4773ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:3e:5c:cb:1c:6b:b9:5f:7a:bd:24:d4:15:9b:
aa:5b:e0:9d:0b:68:a5:5b:b6:d8:df:8a:d1:57:33:
e1:3a:d4:10:2e:24:cd:fb:19:29:8b:2f:76:6c:68:
92:5d:e2:b6:2b:9b:4f:dd:41:4f:57:4c:5a:9c:9c:
a9:93:3c:b1:91:7c:aa:4c:bd:d0:ed:89:4e:e5:de:
c2:ae:82:4b:7a:ed:54:1d:0b:27:df:a9:94:69:14:
ab:16:97:5d:92:d3:0a:7c:2e:5b:28:44:1d:f4:26:
f1:81:07:ad:fb:a9:ab:fd:e2:2d:83:f6:23:76:fe:
be:c4:04:f8:b7:32:0d:32:18:5c:c3:23:ed:d4:f2:
f7:c7:bf:f7:f9:a1:ea:f3:4d:3a:f3:1d:c4:4f:ca:
c5:57:f3:5b:1e:5c:15:32:b6:29:c8:57:2a:7f:df:
2f:70:11:f2:e5:49:15:4c:68:ac:d5:fe:90:94:12:
45:41:74:2a:f0:8d:7d:ca:41:6b:61:33:e2:a3:fd:
97:0e:c9:7d:d5:01:e4:e7:de:3c:d9:2a:86:66:22:
8a:41:78:fd:9c:d0:fd:cf:90:1d:f8:99:e0:21:8a:
1a:62:5c:3d:c3:f0:eb:fa:b2:c1:7e:bb:67:15:b8:
e4:66:3e:d5:ca:e9:87:58:6b:76:38:20:68:4e:d9:
b0:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:85:95:49:53:44:3E:F2:BB:81:2B:CB:CE:84:ED:64:1F:47:73:CE
X509v3 Authority Key Identifier:
keyid:00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/voWVSVNEPvK7gSvLzoTtZB9Hc84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/ACZHyAH7WPz6rBNbtI9eYf6n5WY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.68.0/23
Signature Algorithm: sha256WithRSAEncryption
25:6b:f7:52:fc:71:61:9a:8f:5f:f8:d3:54:8c:9f:d7:a5:dc:
c2:61:93:c6:4c:b6:01:7b:12:8b:c9:6b:b2:e1:90:26:d2:a6:
8b:1b:c4:3e:b9:6f:e2:c2:8a:a2:c9:ca:20:5f:f2:d1:2c:90:
06:d8:66:5f:cf:ae:55:49:7c:cb:d9:89:9c:db:80:c2:fc:e0:
d8:c7:87:6a:cb:c3:0c:e5:95:c5:7d:53:ed:4b:16:b7:fb:5c:
94:93:5c:4d:03:6a:d8:3f:de:e6:30:f1:1b:da:5c:8f:4c:e8:
5e:cf:a0:cb:fc:40:06:2c:78:65:a2:8f:12:47:3d:1e:93:24:
81:f2:fb:5a:51:07:2f:cd:2b:11:fc:f5:89:94:49:f9:32:59:
7e:0a:ee:bd:79:71:36:94:2c:13:3e:3a:32:31:95:ba:90:f8:
53:cb:fb:72:52:4f:c1:3a:a1:6d:6f:ca:0a:2d:bb:0d:d1:8f:
65:31:e5:04:e2:bd:93:a2:4f:32:77:13:2b:e7:5f:5f:b5:67:
65:b7:e2:1f:b7:e1:f0:d3:42:b3:59:5d:72:a0:af:82:8c:ce:
c1:e1:4c:12:2c:35:02:69:fc:74:e0:55:fc:b2:21:2b:50:24:
28:25:29:e3:33:fc:70:89:a0:5f:89:5d:a8:f1:c9:d3:90:f5:
12:9b:9d:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:37 2024 by rpki-client on console-fra.rpki-client.org