Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/vqf24xNJez_Scgw8R5VAo384nRU.roa
File: vqf24xNJez_Scgw8R5VAo384nRU.roa (raw, json)
Hash identifier: mOUKqupKxBYgQplic5+Hl0kPsPS+liLWI54zdKKRsKY=
Subject key identifier: BE:A7:F6:E3:13:49:7B:3F:D2:72:0C:3C:47:95:40:A3:7F:38:9D:15
Certificate issuer: /CN=97aaa555a329edd86606cc0e3e296bd478ac73de
Certificate serial: 0185729EF95A5CDB7F16D5486B6DD6DD506C
Authority key identifier: 97:AA:A5:55:A3:29:ED:D8:66:06:CC:0E:3E:29:6B:D4:78:AC:73:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l6qlVaMp7dhmBswOPilr1Hisc94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/vqf24xNJez_Scgw8R5VAo384nRU.roa
Signing time: Mon 02 Jan 2023 13:14:59 +0000
ROA not before: Mon 02 Jan 2023 13:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30848
IP address blocks: 185.249.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:f9:5a:5c:db:7f:16:d5:48:6b:6d:d6:dd:50:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97aaa555a329edd86606cc0e3e296bd478ac73de
Validity
Not Before: Jan 2 13:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bea7f6e313497b3fd2720c3c479540a37f389d15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:30:b4:5d:bf:d4:6c:17:4e:cc:f2:cb:5d:ec:
dd:ec:31:14:02:38:70:0b:97:38:ae:64:d1:58:3e:
59:51:f7:2b:3d:7a:df:06:e9:8c:de:a6:a4:90:b7:
20:56:30:93:b5:52:6a:3e:c0:2e:d3:45:98:f9:fc:
04:a4:9a:72:d0:bc:b2:ee:81:26:a9:85:44:85:94:
1e:a9:07:5e:1e:8c:53:09:9a:1b:e9:88:c5:97:90:
47:f2:42:8e:0e:f9:7a:6f:85:a6:28:09:ff:ce:b2:
32:50:f5:ff:23:05:19:65:5e:e8:30:52:ce:d1:6f:
fa:33:c5:8f:22:19:3f:6a:ce:5d:47:c3:d8:08:0c:
00:91:f2:c7:b4:2c:e8:38:87:46:d7:ac:02:65:0b:
0b:9d:33:82:e8:b1:ff:a2:35:73:ad:a5:ec:cd:31:
3f:dc:ae:ce:30:11:d2:4b:c4:c0:fb:dd:0f:de:9e:
6a:3e:3b:55:41:d6:13:df:1e:dd:3b:e3:9a:56:03:
0e:a0:9e:3c:cc:65:06:76:c8:82:27:83:62:f1:79:
82:8b:13:fc:c9:f1:96:fe:1d:4d:c6:e2:c5:8c:b0:
ee:15:60:c7:83:84:38:78:cf:40:72:5f:1f:86:38:
32:5c:7f:96:38:67:4f:32:48:de:e5:88:70:1e:46:
78:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:A7:F6:E3:13:49:7B:3F:D2:72:0C:3C:47:95:40:A3:7F:38:9D:15
X509v3 Authority Key Identifier:
keyid:97:AA:A5:55:A3:29:ED:D8:66:06:CC:0E:3E:29:6B:D4:78:AC:73:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l6qlVaMp7dhmBswOPilr1Hisc94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/vqf24xNJez_Scgw8R5VAo384nRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/l6qlVaMp7dhmBswOPilr1Hisc94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.17.0/24
Signature Algorithm: sha256WithRSAEncryption
34:24:28:44:5c:77:80:95:6e:87:a6:49:6b:86:4c:c2:e7:7b:
49:36:9c:5e:5d:44:ee:33:8e:c1:0f:74:03:f1:44:80:45:01:
1e:49:f0:4b:10:ea:de:c5:79:75:7f:eb:0b:a8:95:5e:ee:63:
a6:33:db:0e:30:df:14:75:0b:da:f8:65:17:3b:bb:1f:e8:1c:
4e:5c:e8:d7:4b:b8:23:02:c8:9b:a6:4c:ab:b3:49:37:54:8a:
61:bc:54:68:3e:96:99:eb:60:19:6e:44:12:f8:10:5f:5b:90:
e1:ad:60:a1:5a:67:91:a5:c8:61:70:c1:12:2e:90:3c:81:d5:
ed:7f:d1:be:57:d7:a0:a2:5f:60:1c:2a:0d:9d:e9:ec:47:2f:
91:80:54:7a:88:d6:09:a6:3e:c5:2d:09:42:02:a2:a7:33:a7:
ee:e3:8a:9d:a9:2c:2f:03:45:ca:57:59:fa:53:77:82:c9:61:
33:f4:17:02:57:a9:94:f5:a5:cd:9d:3c:e8:50:39:4b:9e:2a:
ed:b5:e7:89:d3:63:d8:6d:57:a8:3f:cc:a3:bc:b0:24:f3:2b:
8b:12:3e:60:42:50:ac:af:cf:bd:d2:28:e8:29:5e:0a:be:12:
0a:60:a5:8a:46:8e:5f:0a:d2:ae:8c:6c:7c:95:64:ca:84:ee:
66:67:2f:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:39 2024 by rpki-client on console-fra.rpki-client.org