Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/0VePmKDBew4Zqv_6BdpJDoDFf6U.roa
File: 0VePmKDBew4Zqv_6BdpJDoDFf6U.roa (raw, json)
Hash identifier: Q1JRh+WRnJEoqKs0jfEq25TMCmfKB/QU6XuFHw5xBZU=
Subject key identifier: D1:57:8F:98:A0:C1:7B:0E:19:AA:FF:FA:05:DA:49:0E:80:C5:7F:A5
Certificate issuer: /CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Certificate serial: 018CC3B70BA35B80F70006EF56A21450308D
Authority key identifier: CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/0VePmKDBew4Zqv_6BdpJDoDFf6U.roa
Signing time: Mon 01 Jan 2024 06:30:02 +0000
ROA not before: Mon 01 Jan 2024 06:30:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210439
IP address blocks: 185.137.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 10:50:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:0b:a3:5b:80:f7:00:06:ef:56:a2:14:50:30:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Validity
Not Before: Jan 1 06:30:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d1578f98a0c17b0e19aafffa05da490e80c57fa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:db:16:07:1b:93:58:ad:dd:d7:07:06:24:0f:
86:c4:0c:c3:cb:27:70:37:3d:bb:09:40:86:77:e1:
0c:2f:04:68:5c:ee:1a:74:4c:8c:a2:0e:c2:99:e6:
47:d1:fa:97:54:14:76:74:28:93:7d:22:29:fa:67:
c5:00:10:84:9b:b1:46:08:33:fc:3a:25:7c:c9:ef:
e8:bd:70:5f:de:da:7b:91:b9:2f:31:30:1e:0e:c3:
e3:0f:de:be:16:db:9b:27:9a:d6:c9:9d:1f:fd:a2:
6c:86:78:fb:ee:2e:8f:92:12:34:5e:84:3b:d1:90:
65:f0:88:1a:15:66:3a:03:41:19:f5:e6:91:cc:ec:
90:c1:99:41:1d:fa:fc:56:6f:fc:26:1b:e5:fb:1f:
22:e2:43:71:2f:d0:ee:fe:a7:49:b6:e9:fa:f4:a8:
cb:d0:84:8b:09:c3:b3:7d:79:13:25:66:d9:85:45:
3e:ec:44:ab:2b:ec:42:9c:38:3a:67:8b:f9:4d:f6:
b4:20:22:0e:cc:9b:6d:5b:83:0b:8f:67:4c:7b:61:
21:24:69:1a:61:1e:e5:70:24:59:35:2b:44:5c:c5:
fe:d0:a8:03:b7:4a:62:b8:5b:40:e8:a6:b3:f6:6c:
5a:99:9b:33:d8:b0:34:b1:49:a6:73:8b:48:ae:21:
9d:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:57:8F:98:A0:C1:7B:0E:19:AA:FF:FA:05:DA:49:0E:80:C5:7F:A5
X509v3 Authority Key Identifier:
keyid:CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/0VePmKDBew4Zqv_6BdpJDoDFf6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.98.0/24
Signature Algorithm: sha256WithRSAEncryption
47:84:5b:15:db:98:12:72:8f:b6:ae:0a:a1:97:74:9b:5e:a6:
a8:ea:62:f1:41:04:6e:f1:31:ea:f2:dc:65:53:1c:95:63:75:
a6:2b:6c:8a:e9:1f:51:d3:39:35:c0:21:14:0d:b4:82:12:07:
26:2a:5e:63:88:5f:5a:3e:1e:fe:a4:27:95:4f:94:ad:ae:80:
fe:fc:40:ad:4d:e8:06:ec:c8:ee:44:2e:15:54:00:34:f5:9c:
7f:2b:a9:01:1b:2c:07:a7:68:47:7b:a3:e3:70:a4:d5:00:cd:
7a:86:98:83:36:6b:a8:ee:26:68:8f:63:23:5c:76:a8:ee:18:
98:9e:0d:de:72:21:62:4f:34:22:b2:14:2c:3c:94:36:d2:98:
7a:5d:6c:45:ec:ee:48:e4:1c:a2:d3:ca:57:89:b8:54:ee:02:
61:7b:b8:f6:8b:c3:9e:e6:5e:80:d3:63:64:9c:c9:13:06:8e:
76:0a:15:3d:7b:a6:19:b3:27:fc:6f:6d:3a:75:b5:59:12:a0:
64:2d:c2:7c:02:92:2c:1b:b5:f6:38:a1:b9:8d:5f:ed:52:dd:
6d:e2:93:ae:3f:ff:74:7e:3e:a5:a8:6c:21:be:88:32:37:e5:
4e:55:f9:f7:12:7c:85:42:99:ec:3e:29:a7:c2:68:3e:93:cc:
89:83:60:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 7 14:01:47 2024 by rpki-client on console-ams.rpki-client.org