Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/V1YXLC-I7BHJjz0FUkeFvx8vmrU.roa
File: V1YXLC-I7BHJjz0FUkeFvx8vmrU.roa (raw, json)
Hash identifier: xziVXhGjoG9S9m8TswU+s8e8gAjzzT9lvLEMpZw1sMI=
Subject key identifier: 57:56:17:2C:2F:88:EC:11:C9:8F:3D:05:52:47:85:BF:1F:2F:9A:B5
Certificate issuer: /CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Certificate serial: 018570D52AFFBE9C98890D5AE6EA92A9B783
Authority key identifier: 76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/V1YXLC-I7BHJjz0FUkeFvx8vmrU.roa
Signing time: Mon 02 Jan 2023 04:54:56 +0000
ROA not before: Mon 02 Jan 2023 04:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200069
IP address blocks: 185.211.120.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:2a:ff:be:9c:98:89:0d:5a:e6:ea:92:a9:b7:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Validity
Not Before: Jan 2 04:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5756172c2f88ec11c98f3d05524785bf1f2f9ab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:b7:30:9c:60:bb:e3:55:c3:9e:dd:67:f4:02:
7a:c3:bd:c3:39:7c:8e:0b:9a:14:7e:7c:0a:9e:9e:
23:5e:25:c3:76:cb:4b:76:1a:1f:4c:38:b6:39:db:
c5:02:1c:f5:d4:12:a4:45:a7:fc:f6:2c:30:3d:2e:
33:5d:6a:52:83:62:e4:31:29:7e:9f:f8:ce:f4:fe:
71:6f:7c:52:48:17:29:b9:67:11:fc:c4:8c:2e:6b:
d2:d5:be:91:5d:26:a6:f5:ca:55:a1:97:0f:d7:bf:
e4:c6:ad:76:67:2a:4b:ab:ab:bb:6c:66:c4:cb:94:
08:c4:5e:a5:c2:02:17:4f:0d:97:ce:a5:89:62:92:
3c:a8:02:c4:fa:71:70:cd:88:7e:49:5f:ab:a6:c5:
5a:94:c2:ca:2e:f7:0a:24:4c:4f:ff:88:b6:4f:7d:
a6:37:f0:1d:0d:40:16:1d:f3:7a:db:b5:c3:4f:f3:
72:a3:c3:b6:e3:54:1f:50:21:32:6b:06:26:3f:89:
16:d1:71:87:9d:a8:14:99:28:4b:b2:d5:98:a5:cf:
4f:a4:bc:21:6f:d2:0b:1c:7f:ca:28:56:ca:9f:4e:
df:b6:fc:73:b6:4c:f8:1c:00:96:5a:cc:a9:b3:2c:
95:0a:0b:4a:ce:1f:f1:ca:94:a2:56:38:99:de:f3:
1b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:56:17:2C:2F:88:EC:11:C9:8F:3D:05:52:47:85:BF:1F:2F:9A:B5
X509v3 Authority Key Identifier:
keyid:76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/V1YXLC-I7BHJjz0FUkeFvx8vmrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.120.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:5f:ca:f0:8c:63:26:25:ef:7b:63:9c:f1:9d:3c:b0:81:47:
cf:95:60:4f:0b:c2:32:df:84:a5:73:4e:c7:20:71:1d:34:3d:
40:fd:b6:70:b2:58:63:c8:9c:7c:56:49:03:e1:76:ac:df:99:
59:e6:bb:b9:6b:3f:5e:d4:0f:01:fd:4f:70:a4:a4:c1:82:e3:
38:c0:70:76:1f:72:c3:bf:1c:e8:98:63:f8:ac:a6:0a:ef:81:
45:ba:39:83:61:f0:55:df:01:e2:2c:0d:73:cc:0a:2e:ed:98:
31:b4:fc:0b:bf:0a:8c:da:51:40:1d:bf:c6:a7:f8:ec:f4:63:
37:51:87:70:4c:a6:e9:16:73:3d:e9:b0:58:76:b0:e8:f9:cd:
24:af:f6:70:b4:f4:84:d5:7e:d9:55:3d:bf:e3:90:64:b7:4e:
03:0c:11:13:61:95:5e:7b:86:8f:da:a4:e9:af:31:73:2a:56:
fb:0e:31:ba:4a:41:64:3c:e8:f1:47:6d:63:bc:16:9d:63:d7:
3c:fb:04:99:cf:f4:9f:92:6e:01:1c:07:91:3f:55:84:26:3e:
4b:5a:c4:f6:78:51:ea:e0:db:dc:00:98:f4:f4:f8:f2:e8:ed:
2e:60:4e:09:ab:2f:70:2b:aa:a4:63:04:6f:a7:c8:9e:cb:8e:
06:83:07:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:11 2024 by rpki-client on console-ams.rpki-client.org