Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/voGfWKrB0pMJGWiTYvuHgysWcVk.roa
File: voGfWKrB0pMJGWiTYvuHgysWcVk.roa (raw, json)
Hash identifier: DbWHq336FoM2kpi7oPbzodHtxymPebfA/Q8nvCbtziw=
Subject key identifier: BE:81:9F:58:AA:C1:D2:93:09:19:68:93:62:FB:87:83:2B:16:71:59
Certificate issuer: /CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a
Certificate serial: 018F0655FA458BD00B5E681E7F0221B466BB
Authority key identifier: AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/voGfWKrB0pMJGWiTYvuHgysWcVk.roa
Signing time: Mon 22 Apr 2024 15:04:08 +0000
ROA not before: Mon 22 Apr 2024 15:04:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60540
IP address blocks: 185.155.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 May 2024 14:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:06:55:fa:45:8b:d0:0b:5e:68:1e:7f:02:21:b4:66:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a
Validity
Not Before: Apr 22 15:04:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be819f58aac1d2930919689362fb87832b167159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:84:94:eb:f7:ff:2e:20:97:f4:2b:3c:c8:11:
d0:6f:f1:db:ab:6f:51:16:60:f4:81:f7:24:14:7a:
bc:81:54:04:78:a2:cb:6d:61:6d:86:3a:20:99:c7:
4e:7f:c8:cc:bf:77:9a:32:1b:3f:d5:5a:d8:36:a1:
e9:e8:c9:0a:c4:73:f1:9f:da:9d:14:b9:93:b5:48:
40:ea:0f:35:d4:53:af:bd:b0:fd:cb:b9:b9:31:a2:
04:a1:58:da:34:77:38:10:f4:5f:2e:39:50:d5:8a:
9e:54:9c:c0:f4:5d:99:06:f5:be:c9:a4:93:55:31:
50:bc:e0:37:e1:dc:de:06:79:12:24:09:c3:f9:6a:
45:6d:4a:6d:c5:c4:ff:3d:cb:20:a8:08:b1:94:c3:
03:91:73:b3:e7:e8:48:bc:a0:d2:15:6b:ae:14:b8:
d6:e3:ca:e4:d6:43:ae:dd:9d:ac:0c:28:72:27:6d:
a8:fd:76:9c:10:b1:35:d8:a7:18:63:3f:92:e4:88:
0d:d9:7b:38:51:17:de:53:90:2d:6b:af:a1:94:bb:
72:24:75:7b:71:8a:b5:64:11:11:5a:83:62:20:23:
48:56:8b:00:ee:48:a0:50:a4:86:c0:26:34:59:e2:
25:2c:f8:2f:98:e4:5f:f8:4c:33:66:21:60:65:51:
8b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:81:9F:58:AA:C1:D2:93:09:19:68:93:62:FB:87:83:2B:16:71:59
X509v3 Authority Key Identifier:
keyid:AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/voGfWKrB0pMJGWiTYvuHgysWcVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.157.0/24
Signature Algorithm: sha256WithRSAEncryption
56:b4:d9:09:3e:e5:4c:74:fe:c3:b5:a7:40:68:2b:bf:b5:69:
3a:eb:1c:e1:33:6b:9a:e2:87:f8:ec:18:01:93:7f:16:a1:94:
d8:48:c6:e8:c8:f6:c7:bc:8e:4c:55:c8:04:58:94:19:c5:1e:
9d:0e:86:5b:9c:2e:bd:21:f6:28:d8:7c:8e:c6:50:5a:3b:e6:
9b:22:5e:fb:7d:5b:59:7c:91:b3:02:78:47:d9:f2:ca:42:8e:
16:53:a1:95:1b:0d:0d:4e:55:7d:1b:9b:ae:0b:b7:03:10:80:
a9:79:c2:c2:be:6e:77:f3:87:c3:16:61:23:ee:bb:15:b8:e1:
3a:6b:48:df:97:70:c9:df:98:a0:af:49:d7:cf:a9:83:b7:aa:
01:1e:29:5d:7b:1b:59:60:41:ef:82:2b:87:57:e5:0e:c2:96:
fd:f9:e6:7d:e0:5d:c7:52:c0:55:3d:96:43:98:ba:b6:72:ad:
89:c6:1a:ed:04:ca:1c:69:98:14:e2:90:74:a8:9d:c6:8a:89:
90:bb:50:74:f3:ec:a6:9b:e7:4a:87:b3:00:f3:af:a7:65:23:
a6:cd:4d:6b:cb:1e:42:1c:93:fe:d5:9a:78:d7:91:e6:27:06:
02:13:cd:1c:ee:07:03:c9:54:57:0b:78:58:d3:84:2c:03:7d:
3c:4d:1c:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:00 2024 by rpki-client on console-ams.rpki-client.org