Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/v7KwiA5ho-NWgFw0P6XXd_8udhk.roa
File: v7KwiA5ho-NWgFw0P6XXd_8udhk.roa (raw, json)
Hash identifier: s7uw5VMmUXq9vCW1jTLXrqfN0M7La12OKVp5RPt0wm0=
Subject key identifier: BF:B2:B0:88:0E:61:A3:E3:56:80:5C:34:3F:A5:D7:77:FF:2E:76:19
Certificate issuer: /CN=2f8675457594d7e740aaeef2e7d7efd02239c617
Certificate serial: 01856D787C486F86EA02973B2C246B91CA1F
Authority key identifier: 2F:86:75:45:75:94:D7:E7:40:AA:EE:F2:E7:D7:EF:D0:22:39:C6:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4Z1RXWU1-dAqu7y59fv0CI5xhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/v7KwiA5ho-NWgFw0P6XXd_8udhk.roa
Signing time: Sun 01 Jan 2023 13:14:50 +0000
ROA not before: Sun 01 Jan 2023 13:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204915
IP address blocks: 153.92.0.0/24 maxlen: 24
2a02:4780:dead::/48 maxlen: 48
2a02:4780:bad::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:7c:48:6f:86:ea:02:97:3b:2c:24:6b:91:ca:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f8675457594d7e740aaeef2e7d7efd02239c617
Validity
Not Before: Jan 1 13:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bfb2b0880e61a3e356805c343fa5d777ff2e7619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:00:e6:3c:a9:cb:56:a1:e1:91:38:de:0a:a9:
58:0c:a1:af:21:05:bc:27:05:ab:37:4e:c7:a5:6a:
76:d0:32:7e:b5:84:da:42:8c:fd:f7:4d:0f:2c:14:
fe:c8:6c:2c:b0:4e:ea:62:f6:69:04:f9:d7:ee:59:
27:bf:2a:16:4a:63:cb:dc:34:b0:28:ed:55:16:a9:
24:b7:e8:ce:28:4f:80:c5:e3:d9:14:5e:73:9f:94:
b7:4e:5e:6f:ba:00:7e:fc:f9:f5:58:d5:21:d9:6f:
0c:1c:06:ff:86:d4:88:57:54:92:11:3a:21:fa:d7:
d4:0a:5d:64:fe:34:8f:03:a6:29:df:49:ab:2b:37:
e1:81:75:ad:a8:e5:39:52:10:80:40:6c:f9:cc:4e:
20:98:25:e2:95:a2:03:9c:1e:9c:2f:d7:55:2c:fb:
bd:7e:75:7d:3f:6f:b4:66:c2:c2:7e:55:4f:f7:03:
d6:55:e8:e5:14:50:00:49:10:49:5e:40:76:9e:66:
b6:16:ae:5c:53:49:44:c7:34:32:cb:73:e8:32:2d:
fe:47:28:17:05:8d:8b:aa:ec:2b:e0:00:38:c8:d2:
2b:60:48:d2:5d:c1:c3:aa:dd:d4:40:b9:0d:75:cf:
d4:d8:e2:c3:33:9b:69:a2:ed:a5:27:c4:21:15:9f:
f2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:B2:B0:88:0E:61:A3:E3:56:80:5C:34:3F:A5:D7:77:FF:2E:76:19
X509v3 Authority Key Identifier:
keyid:2F:86:75:45:75:94:D7:E7:40:AA:EE:F2:E7:D7:EF:D0:22:39:C6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4Z1RXWU1-dAqu7y59fv0CI5xhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/v7KwiA5ho-NWgFw0P6XXd_8udhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/L4Z1RXWU1-dAqu7y59fv0CI5xhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
153.92.0.0/24
IPv6:
2a02:4780:bad::/48
2a02:4780:dead::/48
Signature Algorithm: sha256WithRSAEncryption
15:a3:51:b3:f1:55:80:7c:61:7b:3d:01:62:5f:57:24:74:69:
a3:ef:a3:a6:f0:e1:4d:4e:dd:0d:bb:65:b6:5b:0d:5c:9d:5f:
08:4d:ce:76:5f:a2:96:1c:fa:02:54:26:21:9d:a3:ae:87:0f:
cd:ee:24:e4:69:d0:a9:9f:49:e7:25:e9:70:0f:04:15:8f:f7:
5d:aa:a9:d9:c2:b5:ff:8e:99:af:6a:35:61:d0:a6:c8:d7:9c:
1f:f5:03:9e:78:21:ae:b0:be:04:ea:71:52:9d:78:1d:a8:76:
f1:8d:e1:b6:0b:e7:73:c8:a3:09:af:7e:4f:12:f0:92:e9:f0:
3f:02:c5:69:6d:8f:a0:9f:21:f8:d4:c8:00:ce:84:f9:c5:6a:
5d:f6:1b:0d:59:3f:10:22:50:f5:5b:b1:4a:2b:53:a6:f6:4c:
ec:3e:a8:3c:cf:29:b2:0f:a2:df:97:8f:67:39:2e:73:ca:67:
18:c7:14:32:fd:b4:8b:2f:50:bf:a7:75:e5:1e:c8:26:78:c1:
91:0b:53:1a:d2:59:8f:52:4f:cc:fe:e5:20:d2:ce:34:30:c9:
f8:09:5a:03:c1:dd:40:49:53:94:b3:59:fb:93:19:1d:e3:61:
45:7b:b8:6c:87:4b:b9:68:b5:77:b1:7e:90:c7:10:c0:d9:8a:
b9:b5:c2:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:30 2024 by rpki-client on console-fra.rpki-client.org