Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/VxmOQnHjFkxdZQPjBugQ68xOto4.roa
File: VxmOQnHjFkxdZQPjBugQ68xOto4.roa (raw, json)
Hash identifier: pGofPi7y7PKkhCkQp/hai5lGC0z3AjfkZDvqFg+AIeE=
Subject key identifier: 57:19:8E:42:71:E3:16:4C:5D:65:03:E3:06:E8:10:EB:CC:4E:B6:8E
Certificate issuer: /CN=ed64691c31892cc991ad4e9a9671147759e417ab
Certificate serial: 0189266F893D5B2C40AA9A518C1277B59BEF
Authority key identifier: ED:64:69:1C:31:89:2C:C9:91:AD:4E:9A:96:71:14:77:59:E4:17:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7WRpHDGJLMmRrU6alnEUd1nkF6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/VxmOQnHjFkxdZQPjBugQ68xOto4.roa
Signing time: Wed 05 Jul 2023 14:23:11 +0000
ROA not before: Wed 05 Jul 2023 14:23:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47264
IP address blocks: 185.75.240.0/24 maxlen: 24
2a05:5500::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:26:6f:89:3d:5b:2c:40:aa:9a:51:8c:12:77:b5:9b:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed64691c31892cc991ad4e9a9671147759e417ab
Validity
Not Before: Jul 5 14:23:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57198e4271e3164c5d6503e306e810ebcc4eb68e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:0a:a4:95:75:13:af:f0:fe:07:0a:14:96:31:
19:9a:df:22:63:e6:54:c3:69:84:67:11:61:b3:80:
69:f4:df:0e:42:9c:d4:dc:07:6f:7d:57:08:fa:4f:
ba:f0:f2:cd:29:e5:80:7e:00:86:6b:ae:19:dc:33:
98:85:b5:18:95:4e:54:46:5e:fa:79:0a:21:db:fb:
10:3b:29:47:0d:c4:be:40:c2:95:e3:5f:94:02:34:
b2:2d:77:03:08:c3:31:72:3b:fe:40:68:fa:b4:6d:
94:5a:28:08:58:fc:2e:b7:2f:39:49:98:ef:4b:df:
ca:e9:53:41:3a:cd:a3:4f:27:b9:a9:52:e2:11:c7:
c8:a6:2c:ec:80:f5:36:81:19:db:e4:a7:20:72:47:
53:60:0d:08:5d:a2:fd:e1:81:59:2a:39:f0:f9:a5:
37:eb:fc:42:78:15:9b:db:0a:03:b1:02:dc:30:44:
d6:df:df:5f:ae:24:a2:cc:ce:7e:14:6a:5d:3e:03:
96:6e:76:65:57:9f:aa:27:cf:36:7a:50:a3:e2:e3:
5e:bc:ac:9c:37:91:51:6e:fb:a3:1b:ef:2c:31:8f:
9d:db:7e:15:9e:0d:f2:3a:84:92:56:89:94:5b:58:
64:de:5b:c0:75:af:1f:7f:04:18:74:4e:40:67:08:
92:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:19:8E:42:71:E3:16:4C:5D:65:03:E3:06:E8:10:EB:CC:4E:B6:8E
X509v3 Authority Key Identifier:
keyid:ED:64:69:1C:31:89:2C:C9:91:AD:4E:9A:96:71:14:77:59:E4:17:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7WRpHDGJLMmRrU6alnEUd1nkF6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/VxmOQnHjFkxdZQPjBugQ68xOto4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/7WRpHDGJLMmRrU6alnEUd1nkF6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.240.0/24
IPv6:
2a05:5500::/32
Signature Algorithm: sha256WithRSAEncryption
70:8d:fc:e7:ef:b2:11:d8:fd:bf:22:36:4a:94:72:7f:4d:69:
1b:44:c5:a3:8e:cc:f5:41:b8:a2:32:bd:1d:7a:4a:59:71:4a:
3c:b9:d9:2b:51:26:e0:6c:3c:30:bb:02:9a:22:84:65:10:a2:
23:b0:00:39:d9:bb:30:af:2f:b5:75:a6:70:6b:6a:84:0c:1f:
0f:66:bc:f8:06:30:8d:49:5b:c4:0f:6c:b9:ca:07:a9:d4:3c:
2f:6a:40:97:e3:e4:44:63:e5:69:58:46:7b:37:ce:2b:6e:65:
c1:66:cc:6f:5d:a8:cc:78:da:18:84:23:8c:c3:73:f1:1f:9d:
af:81:7d:9d:de:fb:1b:3f:bf:f7:9b:d1:f0:b8:cd:07:3b:b6:
cf:b7:3e:af:c1:7c:8d:80:fd:8c:0a:c5:73:bc:69:0f:7a:40:
50:0f:d3:b0:e7:b7:b0:78:f5:b3:07:64:84:01:4b:8b:d7:8a:
3f:79:3c:78:15:86:20:f0:88:19:7a:08:80:7a:b9:d6:65:58:
a8:62:82:98:5d:04:10:2c:d5:de:9b:23:19:71:a1:5c:41:6c:
80:24:bb:bb:47:32:bc:51:f4:43:da:d0:c5:52:0e:13:1b:db:
53:19:e3:48:8b:3e:32:12:6c:43:cb:95:16:10:58:40:c1:ac:
da:26:bc:a9
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYkmb4k9WyxAqppRjBJ3tZvvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVkNjQ2OTFjMzE4OTJjYzk5MWFkNGU5YTk2NzExNDc3NTll
NDE3YWIwHhcNMjMwNzA1MTQyMzExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NzE5OGU0MjcxZTMxNjRjNWQ2NTAzZTMwNmU4MTBlYmNjNGViNjhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnQqklXUTr/D+BwoUljEZmt8iY+ZU
w2mEZxFhs4Bp9N8OQpzU3AdvfVcI+k+68PLNKeWAfgCGa64Z3DOYhbUYlU5URl76
eQoh2/sQOylHDcS+QMKV41+UAjSyLXcDCMMxcjv+QGj6tG2UWigIWPwuty85SZjv
S9/K6VNBOs2jTye5qVLiEcfIpizsgPU2gRnb5KcgckdTYA0IXaL94YFZKjnw+aU3
6/xCeBWb2woDsQLcMETW399friSizM5+FGpdPgOWbnZlV5+qJ882elCj4uNevKyc
N5FRbvujG+8sMY+d234Vng3yOoSSVomUW1hk3lvAda8ffwQYdE5AZwiSqQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFFcZjkJx4xZMXWUD4wboEOvMTraOMB8GA1UdIwQY
MBaAFO1kaRwxiSzJka1OmpZxFHdZ5BerMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN1dScEhER0pMTW1SclU2YWxuRVVkMW5rRjZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy9mNjdkMDktODkyMy00MTUyLTk1ZjIt
N2M3ZGIyMTIzMGEzLzEvVnhtT1FuSGpGa3hkWlFQakJ1Z1E2OHhPdG80LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yy9mNjdkMDktODkyMy00MTUyLTk1ZjItN2M3ZGIyMTIzMGEz
LzEvN1dScEhER0pMTW1SclU2YWxuRVVkMW5rRjZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuUvwMA0E
AgACMAcDBQAqBVUAMA0GCSqGSIb3DQEBCwUAA4IBAQBwjfzn77IR2P2/IjZKlHJ/
TWkbRMWjjsz1QbiiMr0dekpZcUo8udkrUSbgbDwwuwKaIoRlEKIjsAA52bswry+1
daZwa2qEDB8PZrz4BjCNSVvED2y5ygep1DwvakCX4+REY+VpWEZ7N84rbmXBZsxv
XajMeNoYhCOMw3PxH52vgX2d3vsbP7/3m9HwuM0HO7bPtz6vwXyNgP2MCsVzvGkP
ekBQD9Ow57ewePWzB2SEAUuL14o/eTx4FYYg8IgZegiAernWZVioYoKYXQQQLNXe
myMZcaFcQWyAJLu7RzK8UfRD2tDFUg4TG9tTGeNIiz4yEmxDy5UWEFhAwazaJryp
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:03 2024 by rpki-client on console-fra.rpki-client.org