Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/686cfd-a02c-4073-99dd-d7f45e0a7736/1/vSkgPrXyS38zERHpq1LwdTQWka0.roa
File: vSkgPrXyS38zERHpq1LwdTQWka0.roa (raw, json)
Hash identifier: r+QeGQoHsqstQr9KW4IOMyhgtBCC3WRClujheMd6U2g=
Subject key identifier: BD:29:20:3E:B5:F2:4B:7F:33:11:11:E9:AB:52:F0:75:34:16:91:AD
Certificate issuer: /CN=0ca4bb69b3f56805140efae243e4dd4b36c0dd1b
Certificate serial: 01856DDD50F791FB6B11D7436328467CA5F8
Authority key identifier: 0C:A4:BB:69:B3:F5:68:05:14:0E:FA:E2:43:E4:DD:4B:36:C0:DD:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DKS7abP1aAUUDvriQ-TdSzbA3Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/686cfd-a02c-4073-99dd-d7f45e0a7736/1/vSkgPrXyS38zERHpq1LwdTQWka0.roa
Signing time: Sun 01 Jan 2023 15:04:58 +0000
ROA not before: Sun 01 Jan 2023 15:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201634
IP address blocks: 185.69.32.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:50:f7:91:fb:6b:11:d7:43:63:28:46:7c:a5:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ca4bb69b3f56805140efae243e4dd4b36c0dd1b
Validity
Not Before: Jan 1 15:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd29203eb5f24b7f331111e9ab52f075341691ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:03:59:49:9a:0f:e4:04:11:ae:7f:4b:d5:2d:
6c:33:54:5f:63:fb:4b:3c:32:12:13:41:c2:98:d4:
3b:c1:d2:0d:eb:4e:88:46:93:1b:a4:85:05:e3:ca:
28:45:9c:e5:83:d8:2d:96:2e:ac:b1:78:a2:17:2e:
5c:1a:9a:3e:ee:0a:c4:90:5e:fa:54:7a:18:9a:d2:
63:77:47:fa:ae:8f:d5:0c:28:bf:3a:67:0a:02:fd:
22:4b:06:2f:1b:01:84:f3:e6:e4:af:b9:f5:79:b8:
9a:63:0a:9d:a8:fd:91:c9:d6:ec:2c:a2:44:e7:73:
c3:e2:1c:89:7c:ee:cd:b8:46:29:e6:c6:99:51:8b:
3d:d1:30:9d:77:dc:76:fd:65:60:a5:70:d3:80:18:
5a:b4:20:35:85:2a:4c:d8:31:81:1a:05:79:c4:4a:
07:1c:bf:9d:75:33:c2:96:b5:60:e0:66:cc:b2:f9:
6b:a7:7e:62:27:71:c2:36:1e:cb:52:3e:23:de:04:
bc:7b:b0:57:55:2c:65:fd:a0:cb:a5:ee:ac:35:ca:
72:29:30:ac:5d:3d:e5:d9:19:59:8c:06:5a:62:16:
d3:3d:95:c9:58:bb:86:a1:c8:72:cb:cc:5e:f9:6c:
86:40:b4:4e:0f:85:9d:fc:59:14:4c:20:fc:b5:50:
3c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:29:20:3E:B5:F2:4B:7F:33:11:11:E9:AB:52:F0:75:34:16:91:AD
X509v3 Authority Key Identifier:
keyid:0C:A4:BB:69:B3:F5:68:05:14:0E:FA:E2:43:E4:DD:4B:36:C0:DD:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DKS7abP1aAUUDvriQ-TdSzbA3Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/686cfd-a02c-4073-99dd-d7f45e0a7736/1/vSkgPrXyS38zERHpq1LwdTQWka0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/686cfd-a02c-4073-99dd-d7f45e0a7736/1/DKS7abP1aAUUDvriQ-TdSzbA3Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.32.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:54:05:9c:59:76:06:da:61:2e:07:ba:1e:3b:60:2b:1e:f0:
87:c9:38:9f:14:02:ee:b8:dc:66:f4:e4:28:fc:ec:75:37:d4:
0e:85:b5:ec:e4:11:f7:e2:2c:0b:d8:f8:56:13:46:cd:c2:19:
97:ff:a7:ed:33:b5:f6:87:f2:e3:ee:e0:25:23:ae:2c:76:bd:
15:2c:10:a7:cd:aa:fb:76:4d:55:57:15:39:1c:b1:a0:8b:3d:
35:e1:e2:3d:08:33:73:32:d3:46:a0:f0:49:ce:05:4e:74:66:
31:16:53:30:a0:31:78:5c:c3:ae:11:dd:ac:08:a5:e5:b9:f9:
44:98:7e:19:f1:af:27:26:97:69:83:3e:0d:05:93:aa:bd:bb:
9b:39:fd:b2:46:ec:98:7a:e7:1b:a1:66:18:7a:69:84:d2:06:
33:ca:e4:98:3d:ad:83:47:e3:f4:8d:d2:11:0a:b8:1f:36:5c:
82:e2:c9:ea:72:eb:6c:f0:b9:d9:0e:91:1d:3c:d1:53:da:66:
f0:a4:09:7a:38:90:02:8f:4d:f5:8b:61:f9:28:a1:df:db:c7:
ea:17:70:71:60:d7:01:4b:b7:4d:c4:c7:5d:96:3b:e1:2f:31:
d6:48:15:51:e6:0a:e5:32:0c:36:c1:f5:57:21:53:f5:d5:64:
a6:7d:e0:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:19:39 2024 by rpki-client on console-fra.rpki-client.org