Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/PVwzB3cpta_Va8hcNbeF-ehfGug.roa
File: PVwzB3cpta_Va8hcNbeF-ehfGug.roa (raw, json)
Hash identifier: vrONS5SzRzMZbN6t+YAMXnHhmU089tFuMGq3K/lOjMM=
Subject key identifier: 3D:5C:33:07:77:29:B5:AF:D5:6B:C8:5C:35:B7:85:F9:E8:5F:1A:E8
Certificate issuer: /CN=215a409d27b9a69346324004694da11beae02dbb
Certificate serial: 018CC3489FF0F8716E10DB9A89D63106E5D2
Authority key identifier: 21:5A:40:9D:27:B9:A6:93:46:32:40:04:69:4D:A1:1B:EA:E0:2D:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVpAnSe5ppNGMkAEaU2hG-rgLbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/PVwzB3cpta_Va8hcNbeF-ehfGug.roa
Signing time: Mon 01 Jan 2024 04:29:25 +0000
ROA not before: Mon 01 Jan 2024 04:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56902
IP address blocks: 185.134.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Feb 2024 20:51:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:9f:f0:f8:71:6e:10:db:9a:89:d6:31:06:e5:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=215a409d27b9a69346324004694da11beae02dbb
Validity
Not Before: Jan 1 04:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d5c33077729b5afd56bc85c35b785f9e85f1ae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d1:a4:93:cb:3f:d1:a8:b1:4e:46:63:57:92:
d6:c9:a5:36:0a:38:81:0d:82:9a:4a:4c:e7:ef:5e:
36:ff:ce:d4:7f:87:1f:e3:f4:7d:10:f3:dc:ac:be:
ff:d8:47:cf:62:c2:10:65:f0:c2:87:2c:71:97:c4:
70:c7:cc:e4:ff:7e:2a:28:29:a9:51:a1:57:16:b7:
10:c0:78:d6:95:a2:d3:65:bc:a9:39:1b:c9:4e:7b:
4d:76:7c:dc:4b:9a:32:b2:2d:a1:b2:4d:08:b6:da:
f5:60:b1:cc:08:95:fe:2b:a6:67:0e:f2:19:7e:2e:
ea:fd:49:1c:10:8e:84:40:d7:a7:40:3c:94:34:c3:
cc:6c:ec:16:cd:09:a7:9f:d9:39:0c:ec:e9:0f:ad:
78:9d:7e:67:64:0c:45:a7:57:f4:4f:9a:0d:4c:f7:
37:2a:64:e3:8b:e7:b6:81:73:95:f5:d6:4f:d6:88:
1d:f0:7e:23:ce:dc:76:2c:36:60:7a:a6:99:cc:78:
bf:bd:23:da:d9:02:b1:ba:ff:d8:e0:54:6e:70:60:
81:22:27:be:e9:79:d2:ab:24:ac:0a:1b:f6:71:d3:
e2:14:df:f6:4f:13:b6:02:bc:9e:21:e1:c3:02:54:
1e:f1:e7:ad:56:d8:03:f3:60:de:63:5b:35:53:c2:
b0:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:5C:33:07:77:29:B5:AF:D5:6B:C8:5C:35:B7:85:F9:E8:5F:1A:E8
X509v3 Authority Key Identifier:
keyid:21:5A:40:9D:27:B9:A6:93:46:32:40:04:69:4D:A1:1B:EA:E0:2D:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVpAnSe5ppNGMkAEaU2hG-rgLbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/PVwzB3cpta_Va8hcNbeF-ehfGug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/IVpAnSe5ppNGMkAEaU2hG-rgLbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.177.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:c6:ba:09:2a:21:aa:ec:eb:3e:99:8c:fa:8f:26:5d:c4:b0:
4f:72:6f:55:22:1d:0b:0e:ec:32:51:c4:7d:f2:d5:1f:97:82:
82:32:c7:09:e1:9b:bc:38:76:95:76:bb:26:73:2e:fb:7e:0c:
08:2d:cc:18:99:4c:5f:b2:4b:0a:0c:14:6a:45:2a:20:d2:2a:
85:5a:b2:fb:6e:fb:7f:60:a3:43:d9:75:d0:48:d5:a0:8f:7b:
8f:d4:30:ef:20:7f:b9:ed:2f:ce:2b:13:2e:75:d3:34:56:f5:
1b:8e:4e:8f:7e:ee:5a:38:a6:1f:d6:d6:70:c3:8f:75:41:ab:
0f:fb:20:65:1a:31:1e:b5:1b:fb:54:90:db:05:24:05:83:73:
8d:f7:a3:9c:e5:0c:cd:45:bc:e4:50:3e:a3:bb:7f:bc:2a:af:
16:b5:30:15:1a:e3:92:84:2f:0d:17:41:01:1b:ea:e4:f6:17:
6f:bb:fa:30:06:84:03:7b:97:7f:35:28:53:3c:49:22:a7:e6:
3f:d9:3f:43:51:b9:6d:9e:c0:8c:9c:37:fa:ee:53:b5:3f:27:
b4:50:26:e8:b6:3a:0a:94:8b:6b:63:c2:7e:4a:8a:e0:f8:b0:
9a:ab:43:c1:62:91:73:ca:59:9e:bd:03:c4:fe:93:7b:b8:84:
9c:62:3f:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 14 22:41:26 2024 by rpki-client on console-ams.rpki-client.org