Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/VSmY-FyCZibUl8sgUTdaAW4CaBs.roa
File: VSmY-FyCZibUl8sgUTdaAW4CaBs.roa (raw, json)
Hash identifier: 8hrBEiFx0UiUJyuuFO1LO6fL1RYtl8HGpZup2Gv3wJw=
Subject key identifier: 55:29:98:F8:5C:82:66:26:D4:97:CB:20:51:37:5A:01:6E:02:68:1B
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 01856ECB7D795E78AF6034506C5837821A55
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/VSmY-FyCZibUl8sgUTdaAW4CaBs.roa
Signing time: Sun 01 Jan 2023 19:25:07 +0000
ROA not before: Sun 01 Jan 2023 19:25:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60781
IP address blocks: 185.101.107.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:7d:79:5e:78:af:60:34:50:6c:58:37:82:1a:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jan 1 19:25:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=552998f85c826626d497cb2051375a016e02681b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d1:74:20:14:bc:bd:2b:5d:dd:c0:a9:f8:25:
8d:3c:e9:4a:38:88:ce:f2:97:2e:4e:f8:ac:b1:46:
3a:40:d6:19:2a:d5:a7:a9:b3:f3:fd:79:2f:19:5b:
3f:11:a1:27:dd:43:89:4c:d2:76:96:00:11:db:41:
80:c5:00:c8:4c:8e:e3:92:a1:e2:9b:fc:cc:5e:38:
37:77:83:f8:81:a7:d0:52:00:c9:86:df:a9:b9:62:
ce:16:70:e5:33:38:a9:f8:62:a7:5f:05:1d:54:b5:
d1:e2:23:80:5c:58:15:d5:7c:ca:9e:03:d1:28:24:
79:94:c5:9a:08:f1:0d:a8:76:5d:dc:2e:62:69:db:
0d:1c:ac:a4:ec:05:1b:61:a5:cb:f7:ec:92:b5:97:
96:8f:f8:7e:02:b5:2e:81:32:dd:be:d0:92:c1:31:
b5:77:f3:b7:15:28:34:30:b5:25:0e:8e:06:f6:7a:
d1:aa:c0:a4:2f:78:02:d2:89:ae:68:83:62:93:e4:
8d:bb:5c:1b:68:3a:62:7b:ca:8a:4e:10:21:21:de:
b0:7b:6b:72:3a:1f:aa:e7:59:85:64:cd:d0:92:25:
5e:ce:e5:68:62:0a:7b:1b:6f:f7:d2:09:6c:ea:06:
22:30:e6:96:97:be:7e:47:c2:d1:8c:ab:cc:60:01:
2b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:29:98:F8:5C:82:66:26:D4:97:CB:20:51:37:5A:01:6E:02:68:1B
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/VSmY-FyCZibUl8sgUTdaAW4CaBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.107.0/24
Signature Algorithm: sha256WithRSAEncryption
73:b5:9e:31:e5:c6:10:8e:64:f4:d2:dc:15:c0:f1:71:fa:58:
6e:2f:74:d2:44:6f:e4:bb:4d:56:b3:16:12:e8:88:ca:d1:09:
4a:40:6b:66:15:2e:55:6a:73:c7:d6:64:49:22:39:7d:4b:f8:
0a:26:a1:71:1e:4b:15:0e:ee:25:20:ac:5e:fe:f5:ce:4d:bf:
30:b8:77:14:a8:49:b5:cb:2e:c8:be:ef:4b:28:86:fb:b6:c9:
53:12:86:00:4c:d0:31:6d:ba:a2:ac:d8:5f:e7:b3:4e:5a:6b:
b7:0b:1d:ae:12:c3:62:a9:ad:87:f7:0c:78:20:5d:0f:5a:4f:
e9:ae:0e:7f:12:46:a3:0e:38:7d:e9:cb:79:a6:d1:63:a2:55:
93:04:f6:be:7f:9c:ca:f1:ab:42:98:c0:d6:a3:57:ac:d0:e9:
e6:93:57:eb:61:ea:ad:ad:83:7a:da:18:9f:b8:dd:33:5c:1c:
87:57:b9:8d:5f:4a:98:91:27:67:f1:86:02:e4:12:c7:c5:7d:
65:84:27:54:2f:6a:e7:4c:19:0d:10:3e:ec:ee:5a:88:0f:c1:
63:6c:29:60:1e:f1:1a:d6:11:13:45:1f:65:67:d2:05:9c:30:
8e:68:96:66:66:ee:93:f3:8a:d7:0c:84:55:88:01:01:47:8f:
91:1e:fe:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:54:12 2024 by rpki-client on console-ams.rpki-client.org