Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/30a309-b18e-4f27-8e7e-e7b372e4c7c5/1/VrpXWE8mOAVT7Uxf6LcJeACYJpA.roa
File: VrpXWE8mOAVT7Uxf6LcJeACYJpA.roa (raw, json)
Hash identifier: d4ABphj9i5SfwzGrsds3E27mlPS5tb3zhasM/oAT7/0=
Subject key identifier: 56:BA:57:58:4F:26:38:05:53:ED:4C:5F:E8:B7:09:78:00:98:26:90
Certificate issuer: /CN=5bc1503610bf82d8687b7aefb879a6578704f32a
Certificate serial: 01857082C4CF61338233B3157CBB3264564A
Authority key identifier: 5B:C1:50:36:10:BF:82:D8:68:7B:7A:EF:B8:79:A6:57:87:04:F3:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W8FQNhC_gthoe3rvuHmmV4cE8yo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/30a309-b18e-4f27-8e7e-e7b372e4c7c5/1/VrpXWE8mOAVT7Uxf6LcJeACYJpA.roa
Signing time: Mon 02 Jan 2023 03:24:56 +0000
ROA not before: Mon 02 Jan 2023 03:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199496
IP address blocks: 185.132.140.0/22 maxlen: 24
2a06:e240::/29 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:c4:cf:61:33:82:33:b3:15:7c:bb:32:64:56:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bc1503610bf82d8687b7aefb879a6578704f32a
Validity
Not Before: Jan 2 03:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=56ba57584f26380553ed4c5fe8b7097800982690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:58:94:d3:c6:15:e6:3f:0d:a4:fe:8a:20:96:
30:2b:66:fa:17:38:ba:8e:a9:5b:8c:60:86:bc:f7:
97:94:ff:af:b3:09:ef:74:78:c4:dc:a2:72:d9:41:
3e:6f:08:26:26:eb:66:37:23:19:44:68:71:d1:84:
ad:70:6f:f7:05:d6:5f:a2:77:e2:c9:ab:83:89:3e:
b5:80:e5:ef:a9:04:b8:3c:50:29:d7:25:c3:3c:39:
28:3e:6f:6b:66:93:a1:97:9a:dd:07:ac:c1:60:21:
da:10:a9:b6:5e:c7:c8:90:27:f5:c3:72:ef:36:c8:
95:ea:e9:46:12:8d:bd:1e:9b:7b:96:19:39:8e:75:
6f:a0:73:9f:f5:7e:d6:a4:63:6e:d0:18:24:20:d3:
6b:7a:41:b3:10:5b:d5:12:b3:44:68:87:c8:ff:69:
3a:13:2e:f4:f7:b2:38:c6:83:46:32:cb:3e:f7:25:
12:33:34:77:43:75:2f:52:38:38:7b:d1:8c:fa:84:
1f:83:73:0f:ff:28:89:eb:90:b3:d1:73:24:5e:eb:
3d:f1:84:f7:20:12:1f:cc:1c:67:44:7a:ea:8d:c1:
54:17:0b:23:94:6c:1e:b5:91:f6:e0:cf:6d:85:eb:
b0:7f:0f:83:25:84:80:c9:d4:17:b4:21:5f:e8:79:
b0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:BA:57:58:4F:26:38:05:53:ED:4C:5F:E8:B7:09:78:00:98:26:90
X509v3 Authority Key Identifier:
keyid:5B:C1:50:36:10:BF:82:D8:68:7B:7A:EF:B8:79:A6:57:87:04:F3:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W8FQNhC_gthoe3rvuHmmV4cE8yo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/30a309-b18e-4f27-8e7e-e7b372e4c7c5/1/VrpXWE8mOAVT7Uxf6LcJeACYJpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/30a309-b18e-4f27-8e7e-e7b372e4c7c5/1/W8FQNhC_gthoe3rvuHmmV4cE8yo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.140.0/22
IPv6:
2a06:e240::/29
Signature Algorithm: sha256WithRSAEncryption
83:d0:bf:64:32:bb:df:c4:ea:cc:a8:e0:11:ee:4d:b5:b8:50:
3b:04:f8:87:99:8f:5e:85:c4:86:a2:35:83:ac:e1:23:43:86:
16:d4:3c:3b:1c:3b:cb:42:48:b1:1c:0d:4e:48:19:95:19:c2:
bf:34:78:df:9b:34:7a:a6:63:69:d7:28:4c:ed:b6:f2:3a:cf:
ea:d8:66:2d:3b:85:12:37:4c:b2:5f:f4:aa:57:1e:9c:b8:99:
45:b1:b7:41:87:e2:22:4b:39:e3:84:82:87:47:cb:0c:a4:80:
75:ce:8f:cc:54:4c:8d:ee:da:72:59:53:ab:7d:4c:96:e6:6f:
d5:9f:23:be:64:cd:76:3b:4c:be:b3:c6:da:29:f2:da:72:2a:
c6:d9:e1:1c:64:2e:e4:9d:5c:36:76:4c:3b:7c:34:2b:97:a8:
0c:3e:80:48:10:3c:c6:1e:94:4e:3a:dd:a4:b9:79:8d:27:c4:
24:73:80:f7:2b:53:36:ac:da:41:b8:e9:52:88:7b:bc:8c:be:
c9:12:62:ca:a0:1c:76:f4:f4:46:74:e1:72:2a:91:ba:6a:aa:
26:9c:f6:a0:ca:2e:48:40:08:fb:43:7f:2e:75:74:3f:46:72:
c4:ca:85:be:4f:d8:ac:d5:1b:d5:d3:5e:d2:96:0e:68:ee:75:
fa:a6:06:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:35 2024 by rpki-client on console-fra.rpki-client.org