Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/vydF28Kk5GoB3IcHUDRXu6AMLl4.roa
File: vydF28Kk5GoB3IcHUDRXu6AMLl4.roa (raw, json)
Hash identifier: 46y82bbMXq9fZlzj1KA7QgZIDyO24CyO3PULmQy5/FM=
Subject key identifier: BF:27:45:DB:C2:A4:E4:6A:01:DC:87:07:50:34:57:BB:A0:0C:2E:5E
Certificate issuer: /CN=5e4f1a32a37e083900aba561708e52ab234e3a38
Certificate serial: 018D3674F776DDFE919151BE9648EA95ABB3
Authority key identifier: 5E:4F:1A:32:A3:7E:08:39:00:AB:A5:61:70:8E:52:AB:23:4E:3A:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/vydF28Kk5GoB3IcHUDRXu6AMLl4.roa
Signing time: Tue 23 Jan 2024 13:14:11 +0000
ROA not before: Tue 23 Jan 2024 13:14:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205032
IP address blocks: 185.100.164.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 24 Jan 2024 19:16:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:36:74:f7:76:dd:fe:91:91:51:be:96:48:ea:95:ab:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e4f1a32a37e083900aba561708e52ab234e3a38
Validity
Not Before: Jan 23 13:14:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bf2745dbc2a4e46a01dc8707503457bba00c2e5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:54:dc:9e:57:5c:b2:2a:de:4c:5a:87:ad:d4:
cf:53:12:c2:9f:48:bd:91:00:a8:ff:20:d8:87:ea:
54:17:69:8e:ce:80:84:a2:05:e2:d4:b0:98:da:2e:
85:d3:a4:48:74:41:94:bd:40:9e:11:2f:6b:3c:90:
96:f6:53:bf:b7:58:83:9e:94:26:0b:15:b6:fc:fd:
3f:0c:ed:12:b0:d7:7a:13:9d:3a:0a:db:b7:da:df:
2f:5a:e2:df:7a:42:ca:d1:77:5a:b6:36:9a:fd:5f:
96:8d:d6:2c:13:ef:3c:d5:63:20:38:d8:24:42:b9:
1e:cd:27:81:d3:14:5a:ca:69:23:8e:b2:70:10:53:
7a:51:48:cd:d2:f2:c0:e9:63:6b:ba:40:65:83:ea:
11:6b:44:b4:67:10:45:e6:5d:59:f6:2a:94:30:85:
d2:1f:f5:f7:c6:b7:c5:3a:0d:b4:60:ec:97:70:d4:
00:f5:e6:8c:80:96:f2:cb:24:fe:70:88:80:35:ee:
a1:70:1c:bd:f6:cf:b3:05:64:5c:e6:f0:b0:e4:4b:
c9:66:0c:b3:08:f8:c9:31:f8:c3:e2:ed:31:be:92:
8d:0a:ea:c8:a7:a9:86:76:af:69:78:64:60:d2:97:
82:72:1d:3a:c5:a4:82:2d:06:ba:96:00:73:28:a2:
6a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:27:45:DB:C2:A4:E4:6A:01:DC:87:07:50:34:57:BB:A0:0C:2E:5E
X509v3 Authority Key Identifier:
keyid:5E:4F:1A:32:A3:7E:08:39:00:AB:A5:61:70:8E:52:AB:23:4E:3A:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/vydF28Kk5GoB3IcHUDRXu6AMLl4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.164.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:ac:c3:56:7e:ac:a7:58:38:43:d3:0f:b7:81:e7:5e:18:9b:
10:9a:d2:ca:50:95:95:98:17:fd:d1:0b:13:43:f7:f8:5a:48:
5c:b3:d3:e4:f2:3a:03:61:e2:4e:58:62:e7:6f:77:a6:cd:1e:
cd:66:bd:8a:aa:36:8c:6a:5e:f1:4c:e7:8e:d7:1a:14:c9:61:
92:a0:f7:46:72:62:35:32:e7:c0:c6:01:3d:06:b2:27:73:d6:
eb:6a:bb:4a:10:42:0e:07:10:43:0a:53:01:5c:e3:a9:1a:8c:
2d:8c:c1:e2:9b:24:2e:8d:3b:f9:c8:d7:e8:eb:53:39:2d:cb:
6f:0b:b5:3d:73:c3:a6:b7:78:e2:29:cc:47:88:99:a3:43:e4:
1d:07:68:fd:04:a4:89:f3:5c:68:03:6e:e7:c2:a4:51:07:58:
cc:b2:27:4d:3f:a0:48:ab:dc:31:f0:da:a9:1c:6a:cb:a3:f0:
ac:e0:f5:eb:b7:ce:f0:4c:df:0a:ef:c4:83:7d:0c:be:12:26:
54:a9:ea:52:90:55:f7:53:6b:a1:bb:58:95:36:b9:44:ff:fa:
f1:8f:9c:04:47:3f:6f:ad:81:84:b4:b3:10:ec:ca:a8:d6:c0:
79:2f:b0:d3:0d:ef:53:c3:fd:7a:70:da:08:00:2f:a5:92:30:
b0:47:08:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:13 2024 by rpki-client on console-fra.rpki-client.org