Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/f2a66f-2b4a-4610-8da8-09dd4c28b1e4/1/VyovCQKuplEBj5R7OAg87DD17AM.roa
File: VyovCQKuplEBj5R7OAg87DD17AM.roa (raw, json)
Hash identifier: XeLfB5DlvXxyT/4fdAXLt79einJD919iGSIQ7OLxQBw=
Subject key identifier: 57:2A:2F:09:02:AE:A6:51:01:8F:94:7B:38:08:3C:EC:30:F5:EC:03
Certificate issuer: /CN=5f75203151d3b23ecccb64f520fb42549860cff0
Certificate serial: 018570C2CE7165BE5AE362778DAB261CA78C
Authority key identifier: 5F:75:20:31:51:D3:B2:3E:CC:CB:64:F5:20:FB:42:54:98:60:CF:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X3UgMVHTsj7My2T1IPtCVJhgz_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/f2a66f-2b4a-4610-8da8-09dd4c28b1e4/1/VyovCQKuplEBj5R7OAg87DD17AM.roa
Signing time: Mon 02 Jan 2023 04:34:53 +0000
ROA not before: Mon 02 Jan 2023 04:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43532
IP address blocks: 185.191.48.0/22 maxlen: 22
2a0a:1540::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:ce:71:65:be:5a:e3:62:77:8d:ab:26:1c:a7:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f75203151d3b23ecccb64f520fb42549860cff0
Validity
Not Before: Jan 2 04:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=572a2f0902aea651018f947b38083cec30f5ec03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:90:e0:6a:9e:06:4b:8b:a4:59:64:01:af:63:
a1:a2:aa:83:cd:ad:9a:ee:b2:8b:85:68:5d:6b:e5:
67:39:23:56:fa:41:12:45:4f:3e:5a:5d:89:2f:58:
bd:1f:d4:11:2b:87:3b:ff:67:2d:06:10:52:70:36:
f6:3b:84:42:55:6d:05:dc:83:f2:d9:22:c1:38:01:
ec:8a:16:95:b4:30:3f:52:f4:b4:aa:54:b3:ea:f8:
ef:63:49:cd:eb:50:5c:4b:bb:d8:c5:9a:68:0c:0e:
86:e4:37:54:ba:e9:5e:45:d0:d7:29:20:7d:40:16:
cf:a8:30:80:87:25:ad:7f:36:8a:71:07:10:44:ee:
f6:02:f8:05:88:77:70:bd:be:1e:ae:61:b5:8f:48:
8e:03:69:28:e7:53:01:05:97:24:d3:3a:a3:8f:26:
75:16:11:2a:08:21:a8:c5:8a:44:61:c2:56:c0:23:
1d:21:fd:7b:e8:93:37:7c:73:3f:d4:16:f2:8f:41:
90:dd:21:9e:a7:1d:f2:3d:de:0c:61:92:da:b3:63:
64:a2:c5:65:62:8c:0d:77:33:dc:20:e9:33:f3:25:
80:98:73:a8:15:02:ee:a3:6c:6b:51:24:f5:32:b0:
50:d9:6c:da:63:a0:5e:b2:f5:16:7c:83:1c:54:22:
4e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:2A:2F:09:02:AE:A6:51:01:8F:94:7B:38:08:3C:EC:30:F5:EC:03
X509v3 Authority Key Identifier:
keyid:5F:75:20:31:51:D3:B2:3E:CC:CB:64:F5:20:FB:42:54:98:60:CF:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X3UgMVHTsj7My2T1IPtCVJhgz_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/f2a66f-2b4a-4610-8da8-09dd4c28b1e4/1/VyovCQKuplEBj5R7OAg87DD17AM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/f2a66f-2b4a-4610-8da8-09dd4c28b1e4/1/X3UgMVHTsj7My2T1IPtCVJhgz_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.48.0/22
IPv6:
2a0a:1540::/29
Signature Algorithm: sha256WithRSAEncryption
7d:0d:b6:14:91:e2:9f:de:20:f4:86:a9:0f:f3:a9:b5:40:bf:
2c:18:ba:b6:db:72:7e:f0:91:21:68:e9:ea:7a:6a:a4:92:31:
a2:2e:e3:56:7f:9b:11:d7:e5:21:db:c6:30:bf:fe:48:52:a7:
1c:06:74:14:40:7c:db:b3:26:60:7f:c2:21:c9:3d:ad:09:7d:
ba:7d:19:cd:d4:71:fa:92:41:b5:2b:87:2e:a2:c7:c9:dc:cd:
39:07:9e:f3:4f:3c:5d:0c:c5:dd:89:fd:e6:06:3e:93:ee:79:
6b:c5:e4:06:9f:52:ff:93:ca:50:a9:1e:16:f1:54:76:f4:1c:
4a:56:bc:61:d1:43:77:6a:43:c9:69:ab:09:0c:e7:5b:99:cb:
95:cd:84:1a:3d:47:10:f5:fb:34:7c:81:58:ae:37:32:cf:1e:
04:2e:18:3c:a8:4b:28:0b:17:77:ec:cf:85:07:c8:7a:a3:9e:
54:48:4f:73:2d:04:89:1a:9e:f1:49:73:70:59:09:90:d1:5a:
9e:dc:32:06:7a:54:12:10:6c:2d:51:75:ca:38:f5:4a:cf:9d:
04:e4:a6:f7:25:1b:03:fc:83:c1:f1:24:4b:0c:05:e5:64:73:
ae:a7:a7:11:38:9e:7e:91:b0:85:1a:c1:04:7c:74:57:fd:f1:
4c:be:99:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:42 2024 by rpki-client on console-ams.rpki-client.org