Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/vfaWzDE4q7siXSV92MD9OctfDQE.roa
File: vfaWzDE4q7siXSV92MD9OctfDQE.roa (raw, json)
Hash identifier: oA2ODHoVwTsAb8rTttv91HSnQ1h1X9kSjmWF25giChE=
Subject key identifier: BD:F6:96:CC:31:38:AB:BB:22:5D:25:7D:D8:C0:FD:39:CB:5F:0D:01
Certificate issuer: /CN=73975d5da9da8a074b33fbcb5c09d503a3b443a1
Certificate serial: 0185988915C50D3196F60793C5E6D3FB632B
Authority key identifier: 73:97:5D:5D:A9:DA:8A:07:4B:33:FB:CB:5C:09:D5:03:A3:B4:43:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c5ddXanaigdLM_vLXAnVA6O0Q6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/vfaWzDE4q7siXSV92MD9OctfDQE.roa
Signing time: Mon 09 Jan 2023 21:56:38 +0000
ROA not before: Mon 09 Jan 2023 21:56:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49192
IP address blocks: 185.86.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:98:89:15:c5:0d:31:96:f6:07:93:c5:e6:d3:fb:63:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73975d5da9da8a074b33fbcb5c09d503a3b443a1
Validity
Not Before: Jan 9 21:56:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdf696cc3138abbb225d257dd8c0fd39cb5f0d01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4b:e7:f4:1b:5f:9f:d8:db:71:77:d8:0c:a1:
ae:0d:46:e2:cc:ac:7a:f5:42:86:59:74:be:e8:27:
87:eb:49:5d:30:9c:bf:d2:90:99:73:30:24:9e:4b:
ce:ec:7d:da:6b:5e:2b:96:44:da:46:fc:1e:f8:20:
f6:a7:1a:ec:e1:9e:46:b3:7b:6f:ce:ed:63:e9:da:
6a:86:d4:cf:b6:6c:64:9a:9f:1f:41:ef:f5:ba:8c:
e5:bc:3f:9f:4a:99:1f:4a:63:65:2a:ea:35:5e:ec:
8b:f2:93:10:ea:13:d8:ba:4c:8c:34:60:b8:54:37:
02:e5:2c:38:0b:ac:fb:c5:e5:33:65:2f:16:f3:2b:
be:be:a3:f2:83:8c:e9:ec:34:d2:36:bf:06:6d:1f:
92:c2:65:6d:80:43:de:84:0a:e0:56:22:fc:2c:36:
84:79:7a:27:c7:9a:7d:f5:48:4e:a2:22:d5:00:70:
9c:16:2a:12:d9:88:56:9c:c5:93:8d:6a:78:c7:46:
37:df:48:07:2b:b1:6c:d4:82:5f:a5:7a:91:b6:75:
6a:81:06:88:34:af:d6:96:e3:41:b7:94:5b:f1:05:
e0:cf:55:f7:c7:6b:d7:32:26:2f:ec:88:6a:9f:83:
bb:4f:71:c1:3f:c1:0d:43:f8:03:cd:2a:e2:ec:f2:
d3:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:F6:96:CC:31:38:AB:BB:22:5D:25:7D:D8:C0:FD:39:CB:5F:0D:01
X509v3 Authority Key Identifier:
keyid:73:97:5D:5D:A9:DA:8A:07:4B:33:FB:CB:5C:09:D5:03:A3:B4:43:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5ddXanaigdLM_vLXAnVA6O0Q6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/vfaWzDE4q7siXSV92MD9OctfDQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f0172e-69c2-422f-8296-9e80d0d87c2d/1/c5ddXanaigdLM_vLXAnVA6O0Q6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.224.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:ac:98:19:a2:ca:a5:a1:61:21:09:cb:ed:2d:4d:6f:8c:b3:
46:7a:ad:d4:f6:5c:92:01:b5:ee:1f:0c:85:9e:ac:e4:d7:f2:
a3:81:17:1b:45:22:ca:d5:c5:df:e1:9a:70:c7:8f:75:02:9b:
76:cb:b2:7b:0d:85:be:17:de:f9:c2:c6:f4:26:d8:8b:76:37:
39:4f:a6:c5:af:96:af:a5:c5:51:a2:e4:23:8d:8d:98:60:73:
17:2a:a4:6f:7b:2b:52:33:b6:03:86:b2:0a:97:f2:40:06:0a:
d9:e5:78:c2:67:a4:b1:1b:c3:10:39:d0:c1:da:e0:a0:9b:e8:
97:91:37:5a:8f:03:0d:85:9c:10:07:50:20:0b:2e:91:40:35:
f6:de:c1:15:25:90:90:33:53:0c:ec:dc:f2:9e:d5:02:c9:16:
12:43:7d:be:91:bc:f2:76:1b:d6:b9:71:e4:0f:ca:bb:b4:5a:
30:72:c4:05:5f:46:f6:a0:e2:d3:bb:75:e9:cd:fe:3d:f5:6d:
06:0b:ad:cd:c3:d6:2c:ac:cc:b9:1e:80:dc:fd:47:b0:bf:17:
18:e6:01:e5:eb:7f:04:54:0d:48:1c:28:01:f4:22:3b:ee:b0:
0f:26:07:b2:2d:34:5b:37:7d:a0:c3:67:36:b1:34:d5:df:e2:
fc:50:ea:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:55 2024 by rpki-client on console-ams.rpki-client.org