Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/vp7oat_yI9lo9kgh40W-8aKM91Y.roa
File: vp7oat_yI9lo9kgh40W-8aKM91Y.roa (raw, json)
Hash identifier: E1Io/6MBnPQGbNWEss7m/CRD5UGKr+Jhn1AZqk+CcYU=
Subject key identifier: BE:9E:E8:6A:DF:F2:23:D9:68:F6:48:21:E3:45:BE:F1:A2:8C:F7:56
Certificate issuer: /CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Certificate serial: 01856F14EB2C02AE00611AA31F6B20BFB317
Authority key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/vp7oat_yI9lo9kgh40W-8aKM91Y.roa
Signing time: Sun 01 Jan 2023 20:45:19 +0000
ROA not before: Sun 01 Jan 2023 20:45:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 185.101.168.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:eb:2c:02:ae:00:61:1a:a3:1f:6b:20:bf:b3:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Validity
Not Before: Jan 1 20:45:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be9ee86adff223d968f64821e345bef1a28cf756
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ef:3c:74:2c:f9:59:c3:d9:3f:79:f5:80:c3:
a4:d2:74:22:59:86:e1:1d:19:d1:49:04:e7:63:0e:
89:c5:97:18:cf:9f:36:f7:f1:8f:c3:54:10:81:be:
dd:85:8e:f1:e5:82:1a:03:ef:5f:3a:22:39:8b:39:
9e:6e:80:7d:d5:ad:14:f5:94:00:2c:81:5b:35:27:
a1:a7:e0:a5:68:22:2d:85:12:09:0c:92:66:41:99:
52:c5:44:bf:bb:94:cb:ae:ea:1b:c3:ff:0e:6d:b4:
9c:ec:05:d2:4b:e7:7b:b5:dc:44:82:07:7b:fe:e4:
0c:d9:c0:4f:0f:05:2e:d1:3b:09:1d:51:88:cf:5c:
62:65:bc:20:3b:23:db:7a:63:ac:e7:61:8c:75:66:
bf:d3:e4:91:2c:52:c1:93:bd:98:87:d6:bd:42:06:
68:45:81:fb:56:48:3c:c5:6f:29:bb:b7:e1:e1:5f:
8a:04:cd:06:ae:a1:f4:b1:79:19:aa:36:e7:d2:11:
f1:aa:39:5d:fe:80:22:53:c4:8f:c8:3d:4f:c3:31:
25:29:ad:b1:d9:e8:3a:de:53:51:e7:7b:f4:c2:67:
78:ca:a4:87:64:83:a1:f8:64:8b:c7:c9:5c:51:c0:
34:ff:dd:d5:94:df:39:09:76:6b:8c:13:79:81:99:
78:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:9E:E8:6A:DF:F2:23:D9:68:F6:48:21:E3:45:BE:F1:A2:8C:F7:56
X509v3 Authority Key Identifier:
keyid:54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/vp7oat_yI9lo9kgh40W-8aKM91Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.168.0/24
Signature Algorithm: sha256WithRSAEncryption
30:2a:ae:95:1a:a2:2d:59:a1:02:fa:d7:21:a1:b7:0f:a7:08:
fd:9e:bf:1e:63:6f:11:dd:f0:18:46:3a:18:de:97:d2:28:73:
d9:27:96:d4:b8:d6:f8:3f:e1:e9:0e:f2:19:9f:62:1e:29:0e:
bb:ec:93:28:2b:e7:e8:d8:30:78:11:e6:f7:4f:b7:4f:58:0d:
99:e3:d5:1a:ad:2f:97:af:c2:31:24:9e:fd:de:62:9b:57:ed:
8f:67:b3:b7:24:35:7b:1c:da:65:7e:eb:b8:6d:b4:b6:29:42:
9e:93:42:8d:7c:4b:fa:f5:99:19:1c:12:5c:51:f7:03:d8:02:
13:97:c8:6a:9b:fe:98:84:c7:6a:5c:c6:10:53:4d:75:4e:88:
f4:70:72:fa:80:be:e0:ac:c4:df:89:68:f3:05:bd:f2:ee:31:
55:22:d4:c8:74:c3:3f:24:e7:0f:ed:ce:33:ff:5c:1f:8e:e0:
08:05:44:48:a1:29:18:84:aa:aa:4c:79:12:f3:3e:8a:7f:69:
67:1a:ff:f8:dc:45:b7:24:46:11:29:02:b2:68:8b:b1:6c:58:
d4:58:3a:13:65:04:c6:4b:ba:48:82:68:fb:69:2d:a1:ef:9d:
cf:f7:92:80:43:2e:b9:c5:67:6a:37:84:74:9a:3e:5b:ae:cd:
90:8c:b1:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:57 2023 by rpki-client on console-fra.rpki-client.org