Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/3f110b-dedb-490f-9e66-6fad08aa20ee/1/VJlwZGVmU2xv9sTSXaRpq7KhSdg.roa
File: VJlwZGVmU2xv9sTSXaRpq7KhSdg.roa (raw, json)
Hash identifier: QwApKTlGa+kY9GSUREtMvRtfKW8WMsOPwfK4eP2k6VE=
Subject key identifier: 54:99:70:64:65:66:53:6C:6F:F6:C4:D2:5D:A4:69:AB:B2:A1:49:D8
Certificate issuer: /CN=f1bbf9bee531f3dee2d03bbf4e69ef82eedb99af
Certificate serial: 0189DFDAEE52F4219F5C725B5F05AEAFC3F0
Authority key identifier: F1:BB:F9:BE:E5:31:F3:DE:E2:D0:3B:BF:4E:69:EF:82:EE:DB:99:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8bv5vuUx897i0Du_Tmnvgu7bma8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/3f110b-dedb-490f-9e66-6fad08aa20ee/1/VJlwZGVmU2xv9sTSXaRpq7KhSdg.roa
Signing time: Thu 10 Aug 2023 14:30:14 +0000
ROA not before: Thu 10 Aug 2023 14:30:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210839
IP address blocks: 185.224.172.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:df:da:ee:52:f4:21:9f:5c:72:5b:5f:05:ae:af:c3:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1bbf9bee531f3dee2d03bbf4e69ef82eedb99af
Validity
Not Before: Aug 10 14:30:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=549970646566536c6ff6c4d25da469abb2a149d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:2e:81:f1:3f:cf:16:8c:e1:ab:c4:e7:ca:b1:
22:8a:eb:3e:b4:83:2c:36:6d:e8:b7:01:10:5a:43:
b5:b0:d4:51:a9:56:3f:41:8a:74:0d:5b:c0:25:2a:
62:b9:2f:64:82:45:37:f5:7c:1e:d4:78:7f:51:5c:
0e:c4:39:66:70:e9:05:5d:42:24:93:ad:74:c0:46:
f0:dc:ad:ed:f0:ed:1f:be:a7:97:a3:25:65:46:0b:
06:15:55:c8:2c:5a:44:89:f5:7f:71:ec:84:57:a7:
b3:1a:f9:b2:6c:fc:bf:7e:30:e6:b9:7f:c1:7f:9f:
0a:0b:78:3c:90:36:77:18:92:98:11:6f:a8:d7:99:
53:a6:d8:c4:61:54:3e:69:61:7c:a6:ff:64:31:dc:
6e:e9:9f:e9:88:94:b8:90:d4:cd:74:d5:87:9f:56:
c3:af:f2:75:1c:41:f7:51:0a:7d:ec:cf:52:42:9d:
1f:bf:a2:de:94:0c:31:ce:20:5f:28:8e:9d:c9:64:
20:6b:77:94:c2:03:92:fa:87:25:d2:a8:be:4a:6a:
3a:a3:49:0d:ff:a5:3d:bc:d3:f0:c7:41:d8:2a:6d:
81:64:5f:08:0d:31:3a:5a:86:2e:28:ba:7f:36:f8:
26:06:0e:75:d1:68:49:a8:8c:81:53:fa:5a:df:5e:
27:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:99:70:64:65:66:53:6C:6F:F6:C4:D2:5D:A4:69:AB:B2:A1:49:D8
X509v3 Authority Key Identifier:
keyid:F1:BB:F9:BE:E5:31:F3:DE:E2:D0:3B:BF:4E:69:EF:82:EE:DB:99:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8bv5vuUx897i0Du_Tmnvgu7bma8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/3f110b-dedb-490f-9e66-6fad08aa20ee/1/VJlwZGVmU2xv9sTSXaRpq7KhSdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/3f110b-dedb-490f-9e66-6fad08aa20ee/1/8bv5vuUx897i0Du_Tmnvgu7bma8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.224.172.0/24
Signature Algorithm: sha256WithRSAEncryption
65:a9:23:33:ae:68:af:b2:5a:a7:02:e3:59:d6:b5:0d:05:4e:
bc:5a:a2:59:51:71:ab:15:6b:4a:a2:34:20:71:69:a2:9a:0b:
01:d5:1b:a8:f2:b8:3c:f9:02:6c:70:38:46:80:24:7f:60:80:
eb:54:2f:a5:a5:c4:f8:86:5a:2d:40:49:e9:1e:84:0d:15:a2:
23:49:72:37:59:ab:87:ff:ef:23:cf:10:6f:90:e0:2e:ec:0c:
f0:70:91:48:ed:bb:01:e8:3a:1f:f6:c3:ea:d6:9c:35:2e:26:
c9:1b:43:d6:69:7d:88:e6:ff:62:f0:d5:59:2f:ae:45:64:4f:
e1:61:7b:da:15:a4:84:e0:a6:61:b3:e2:1b:cc:3e:82:0f:fc:
02:17:85:e8:46:7c:ef:c7:13:89:91:14:51:d2:f2:09:41:d8:
0e:53:a0:b6:d0:b5:d3:a9:37:4a:98:66:08:00:60:67:b4:89:
3d:e2:78:d2:6d:72:ff:dd:d7:98:86:71:eb:9a:e5:8e:a4:81:
1f:7c:b7:f9:7a:69:af:b4:56:6f:60:5f:86:f6:e7:c1:7c:70:
7b:32:4f:79:8d:05:3f:72:41:8f:97:30:74:ce:61:6d:39:cb:
11:10:6c:ec:ae:01:55:97:95:90:36:d2:69:3c:0d:70:97:03:
27:ab:fc:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:55 2024 by rpki-client on console-fra.rpki-client.org