Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/52c448-1cb9-4beb-8fc2-f048a9266fcf/1/vBrAsQVlDe61EJ10O_MNAJUOivg.roa
File: vBrAsQVlDe61EJ10O_MNAJUOivg.roa (raw, json)
Hash identifier: G3DQD6YIQPRglQrHxZp0AOHuQITCr/mJ3G7efbmdWAM=
Subject key identifier: BC:1A:C0:B1:05:65:0D:EE:B5:10:9D:74:3B:F3:0D:00:95:0E:8A:F8
Certificate issuer: /CN=1395a3a8fc8dd34dd6f3c950c661f4b2127175a5
Certificate serial: 01856D9D2D2C37908E9C7894BECBEF7945D9
Authority key identifier: 13:95:A3:A8:FC:8D:D3:4D:D6:F3:C9:50:C6:61:F4:B2:12:71:75:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E5WjqPyN003W88lQxmH0shJxdaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/52c448-1cb9-4beb-8fc2-f048a9266fcf/1/vBrAsQVlDe61EJ10O_MNAJUOivg.roa
Signing time: Sun 01 Jan 2023 13:54:55 +0000
ROA not before: Sun 01 Jan 2023 13:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58253
IP address blocks: 185.150.64.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:2d:2c:37:90:8e:9c:78:94:be:cb:ef:79:45:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1395a3a8fc8dd34dd6f3c950c661f4b2127175a5
Validity
Not Before: Jan 1 13:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc1ac0b105650deeb5109d743bf30d00950e8af8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ec:bd:85:1c:65:67:de:13:b6:6d:95:32:7f:
6b:d3:65:55:59:08:65:38:d2:49:85:f4:0a:fc:f0:
a7:b2:37:a4:0a:17:50:9c:80:a3:60:b6:e8:50:f4:
96:93:c1:76:13:2b:83:5b:25:fb:2d:d2:f6:13:08:
ab:f9:3f:ca:6c:fd:45:fe:10:43:6c:e0:cf:b2:de:
41:cb:1b:ed:f5:99:cc:25:87:18:7a:01:aa:5a:05:
de:0b:54:50:38:94:0d:9b:78:da:84:c5:80:cb:51:
36:05:25:4f:7c:a0:e8:87:50:1b:e8:b9:e5:a7:ed:
dc:ae:2c:e7:1b:08:a8:d6:0e:bc:6d:a3:e4:9b:31:
63:d3:ae:ed:9f:ab:82:19:2e:a0:81:32:cd:d2:4f:
84:d1:15:ec:10:a3:7f:24:66:62:87:05:6d:c7:c3:
7f:0f:c4:44:a9:1e:cb:dc:4b:c7:ee:bc:ed:e8:09:
3a:fb:a5:75:75:08:a2:00:3a:d6:36:30:5e:8e:8f:
22:62:95:d5:00:8e:5d:24:19:d4:85:56:ca:e8:92:
f4:1f:42:d8:15:e2:92:5f:c5:98:99:51:4a:ed:67:
78:07:ec:1d:c4:e3:18:6a:e1:32:00:de:a6:28:a1:
85:30:55:20:73:e7:99:27:10:66:86:da:31:dc:e4:
db:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:1A:C0:B1:05:65:0D:EE:B5:10:9D:74:3B:F3:0D:00:95:0E:8A:F8
X509v3 Authority Key Identifier:
keyid:13:95:A3:A8:FC:8D:D3:4D:D6:F3:C9:50:C6:61:F4:B2:12:71:75:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E5WjqPyN003W88lQxmH0shJxdaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/52c448-1cb9-4beb-8fc2-f048a9266fcf/1/vBrAsQVlDe61EJ10O_MNAJUOivg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/52c448-1cb9-4beb-8fc2-f048a9266fcf/1/E5WjqPyN003W88lQxmH0shJxdaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.64.0/22
Signature Algorithm: sha256WithRSAEncryption
28:48:3b:8a:a7:64:d2:ff:e1:f9:88:8d:d4:9a:d1:12:59:3e:
3f:0c:c4:bd:81:02:15:b6:9a:06:83:23:99:3b:a4:19:10:22:
28:0a:ca:b8:e9:7a:1a:8a:bb:f2:f3:26:99:7a:4c:d1:f8:ea:
bd:d4:47:1b:77:8e:ca:53:93:bb:e9:57:20:97:c1:29:9d:5a:
54:4f:ef:55:32:d2:04:ef:51:34:0d:d0:65:f6:fe:c2:68:94:
93:3a:a0:29:35:3f:8e:d3:b2:a5:ba:86:76:f8:d2:cf:4f:ac:
6c:ea:29:11:be:ef:dd:19:7c:ac:cc:bb:8d:49:a4:a6:db:01:
f3:71:d6:b4:71:fa:94:10:4d:42:c3:6c:fd:6a:95:7e:ae:2f:
5f:fe:6d:7f:3d:14:fd:80:51:98:35:6c:36:bc:d7:c5:6c:cf:
b8:68:f1:02:8a:a1:6d:a8:24:5c:b3:5d:b4:60:9b:d0:20:22:
0b:33:c3:1d:d2:3d:a0:86:db:b8:a2:71:66:6f:d0:85:4c:94:
d7:8e:1f:37:9b:3c:66:d5:a3:22:5b:20:20:f2:e8:0b:8c:e3:
29:2b:f6:dc:fc:f8:b6:c4:2c:de:51:aa:c4:c6:58:f8:1c:84:
90:aa:f7:1b:5e:0e:c4:3b:38:ab:1e:b3:75:6c:ad:b8:f3:08:
ee:6e:af:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:03 2024 by rpki-client on console-fra.rpki-client.org