Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/vGazXs-G2il2r7Muiy1Iw4-SCuk.roa
File: vGazXs-G2il2r7Muiy1Iw4-SCuk.roa (raw, json)
Hash identifier: nP4P0AirFujSdqZsqfSg2VV3Td63hMcWvaXTEPJEEs4=
Subject key identifier: BC:66:B3:5E:CF:86:DA:29:76:AF:B3:2E:8B:2D:48:C3:8F:92:0A:E9
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01856E8B4B8AD1B276C6E7E9D3A146565179
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/vGazXs-G2il2r7Muiy1Iw4-SCuk.roa
Signing time: Sun 01 Jan 2023 18:15:00 +0000
ROA not before: Sun 01 Jan 2023 18:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 85.209.163.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:4b:8a:d1:b2:76:c6:e7:e9:d3:a1:46:56:51:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jan 1 18:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc66b35ecf86da2976afb32e8b2d48c38f920ae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:4e:8f:da:1a:35:4d:aa:96:c7:78:1b:f9:4a:
b1:6b:9b:81:33:43:e8:60:e0:41:43:bc:78:50:bf:
f8:36:23:63:fe:81:83:04:70:65:55:94:1a:3d:7d:
61:8d:ff:9f:27:b3:52:c0:63:91:01:76:69:f9:98:
87:10:74:d2:d1:35:8c:50:0a:40:ce:d6:6b:e2:46:
3d:ab:e7:72:5b:be:ff:54:49:61:c4:43:09:41:a2:
ff:49:12:0b:be:6e:b1:c8:3e:51:0b:48:1b:5e:72:
ec:53:33:96:d0:9f:52:b4:d2:e8:63:a3:db:49:5b:
14:af:3b:82:c9:a8:0d:16:28:a4:12:c1:c0:c5:16:
e6:21:6c:ca:8e:7b:17:9a:91:a0:f4:ad:22:1c:23:
5a:d3:81:10:73:06:ba:fa:18:bf:1a:86:ad:65:d6:
88:45:64:5e:19:e1:00:8e:c0:bb:d0:f1:12:1d:86:
50:6a:db:ab:8a:0d:25:99:2b:0b:d5:1f:f7:f9:58:
36:2c:13:32:30:6e:bb:7d:69:06:bb:b1:e5:62:1e:
f4:99:2d:54:b0:f0:ae:61:14:a9:c7:43:13:28:c7:
e1:45:94:61:dd:eb:0a:d6:21:ea:7f:50:27:dd:ea:
42:0e:c0:ad:bc:fb:70:2c:3d:b2:1a:6b:f0:82:7f:
01:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:66:B3:5E:CF:86:DA:29:76:AF:B3:2E:8B:2D:48:C3:8F:92:0A:E9
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/vGazXs-G2il2r7Muiy1Iw4-SCuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.163.0/24
Signature Algorithm: sha256WithRSAEncryption
26:a2:ab:d6:57:5d:e2:8e:ad:5d:38:e2:e1:65:03:db:77:d0:
64:17:c2:7c:5e:9e:03:40:c6:19:01:e8:96:ba:d9:63:26:65:
a4:27:fe:7e:64:51:e0:42:d3:3d:20:90:0c:df:ae:4c:58:ba:
4f:c1:c4:33:99:e9:a4:a9:a8:c2:ca:40:f0:28:7b:7f:2b:5b:
6d:eb:12:c5:28:5c:a3:9a:8c:d5:d2:3d:12:5a:54:1b:1a:c6:
81:11:cd:75:b0:b9:73:3b:8a:e2:b5:e9:26:db:2e:b4:d9:de:
59:47:e7:ab:66:ed:5e:06:80:f1:67:f9:35:18:0c:d7:83:84:
b8:d8:74:13:cb:4b:50:6d:4f:bc:98:e7:c0:07:be:02:14:38:
53:d4:40:0b:be:bb:c8:d0:79:09:94:cc:67:11:71:72:76:36:
79:58:42:14:b1:59:7a:69:d5:8a:5d:b3:ea:1a:2e:1a:41:61:
d5:29:83:ec:87:c4:4e:40:fe:38:11:af:e7:da:67:30:2a:04:
2c:21:af:c9:e2:2e:1c:63:d6:83:16:e1:8e:5e:28:5b:fa:85:
e0:1d:b1:87:84:b9:10:b9:ee:77:d3:3d:c4:c0:aa:c0:9a:2c:
27:3b:37:fb:33:41:33:22:38:5b:3a:92:82:98:ef:13:44:a1:
58:99:e6:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:23 2023 by rpki-client on console-ams.rpki-client.org