Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/v_2vd8St0NbemEVqd2Ci_GpCTXY.roa
File: v_2vd8St0NbemEVqd2Ci_GpCTXY.roa (raw, json)
Hash identifier: RaUCL3Ove8yXQj+zF/xfIi0lHM1k5XGkSBPTnjXQqyg=
Subject key identifier: BF:FD:AF:77:C4:AD:D0:D6:DE:98:45:6A:77:60:A2:FC:6A:42:4D:76
Certificate issuer: /CN=583d76051017d0afa915fcfb790a00f4667b0a88
Certificate serial: 01857139C7A5F322C83458B9F49CC2CC16AE
Authority key identifier: 58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/v_2vd8St0NbemEVqd2Ci_GpCTXY.roa
Signing time: Mon 02 Jan 2023 06:44:50 +0000
ROA not before: Mon 02 Jan 2023 06:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34592
IP address blocks: 194.225.148.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:c7:a5:f3:22:c8:34:58:b9:f4:9c:c2:cc:16:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=583d76051017d0afa915fcfb790a00f4667b0a88
Validity
Not Before: Jan 2 06:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bffdaf77c4add0d6de98456a7760a2fc6a424d76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:29:23:5d:df:02:ce:17:59:65:b1:4f:6a:68:
b8:4c:f4:23:2f:52:f2:14:8d:b1:89:0e:7e:df:c4:
a2:aa:d6:9e:f9:81:cb:ac:4f:fe:c7:d3:90:7f:b7:
d4:0f:da:ab:9a:36:ed:70:81:1b:0b:bf:78:58:f3:
ca:a7:c7:4e:bf:e4:89:54:8e:89:83:25:9f:9f:84:
21:41:89:69:7a:80:7f:96:40:5c:7a:12:b8:63:07:
1a:04:e3:aa:9e:4b:a1:11:fe:91:86:74:80:fe:e2:
b3:ad:26:09:47:ae:f6:89:46:37:87:b6:ce:96:30:
cd:39:3f:cc:a8:73:61:a1:ab:30:0b:e8:9f:e6:c5:
40:62:08:cf:26:aa:04:e2:e2:1d:54:88:b3:55:47:
9e:99:56:3c:70:96:ec:22:e9:b9:d8:94:40:0d:3c:
58:a2:0d:c0:f3:56:69:67:2b:ee:55:54:e6:b6:ed:
34:a9:a7:0e:bd:30:15:c7:96:2a:ed:00:75:27:ea:
b5:1d:97:54:d4:7e:f1:10:d7:6d:a8:a6:52:c2:85:
a7:63:aa:94:a4:43:c4:36:de:90:37:11:97:f9:ac:
48:4f:23:b5:04:8f:ef:b4:06:9b:f6:93:f9:96:fa:
c9:e2:61:13:b3:12:4e:c6:c9:3f:11:2d:33:10:9b:
2e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:FD:AF:77:C4:AD:D0:D6:DE:98:45:6A:77:60:A2:FC:6A:42:4D:76
X509v3 Authority Key Identifier:
keyid:58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/v_2vd8St0NbemEVqd2Ci_GpCTXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.225.148.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:ea:05:6a:fa:89:02:4a:4e:d1:71:89:47:a4:38:7b:af:6a:
67:8a:74:82:b7:f4:64:4d:32:3d:4d:0f:a0:b4:2c:22:84:91:
84:c7:02:29:4d:6a:2a:3a:36:eb:fc:9b:53:63:df:99:a0:e8:
4d:42:61:e6:f0:01:74:5c:81:71:ca:83:8f:5b:38:81:e5:ff:
29:66:3b:bc:e4:21:9f:62:9b:c5:89:f2:04:5a:b6:91:74:7d:
8b:22:eb:9a:70:47:c2:df:01:ca:d5:b8:2c:da:5f:e4:03:4e:
4b:9d:e4:50:53:34:6c:50:72:ef:33:3b:44:51:c9:5e:27:e7:
a0:f9:cd:b7:d8:23:ec:a9:97:1c:9c:e2:81:34:9c:d9:75:f6:
8c:5c:49:6e:fd:e0:4d:e3:e3:18:f2:b2:9c:47:cd:3d:65:ef:
c2:b5:2e:fa:8f:af:19:eb:35:23:70:5f:13:1e:13:ea:4f:65:
b2:cc:9c:bd:20:a9:e6:d8:db:54:5d:33:3f:4c:20:12:f6:d6:
33:eb:04:cb:e3:5c:d6:d8:13:63:84:f5:d7:23:4c:20:79:ae:
c6:63:ca:a3:72:c3:70:ec:f6:d0:a2:1a:da:7e:33:26:00:2d:
d2:d8:fb:77:45:03:40:eb:d7:e4:14:3e:f5:fc:91:8a:22:06:
bf:10:3e:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:11 2024 by rpki-client on console-ams.rpki-client.org