Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/vkUalIyf8EtgHuryBAM2fDnffrw.roa
File: vkUalIyf8EtgHuryBAM2fDnffrw.roa (raw, json)
Hash identifier: PDm7B5RwoxENGwbBN2woY84aydGtbF9fYDxgARlzoPE=
Subject key identifier: BE:45:1A:94:8C:9F:F0:4B:60:1E:EA:F2:04:03:36:7C:39:DF:7E:BC
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 018571BA3530F6005F9E1CBAF26405ADE4BF
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/vkUalIyf8EtgHuryBAM2fDnffrw.roa
Signing time: Mon 02 Jan 2023 09:05:06 +0000
ROA not before: Mon 02 Jan 2023 09:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397423
IP address blocks: 185.22.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:35:30:f6:00:5f:9e:1c:ba:f2:64:05:ad:e4:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Jan 2 09:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be451a948c9ff04b601eeaf20403367c39df7ebc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b1:f8:c7:b3:86:a6:43:43:af:59:ba:83:d1:
b8:84:c9:3e:30:fb:d9:92:f8:7f:3f:e3:50:85:02:
cc:30:13:ef:f2:5f:7b:10:7e:9e:07:70:f0:88:11:
cb:98:1b:21:02:22:5a:b3:4e:78:30:86:a8:a2:9f:
a7:c5:16:d0:08:d8:2e:33:9e:79:77:fd:68:51:fb:
d6:1a:a1:ac:66:9c:87:89:e2:ff:30:61:b1:30:97:
13:cc:23:b6:fe:fe:72:07:01:9d:ee:fd:2a:fc:84:
1f:e8:96:7b:e1:fa:4d:c4:18:6b:ec:f6:bb:c1:28:
ec:24:41:2d:2f:fe:29:26:26:49:23:3d:f6:61:d0:
e4:f0:83:d4:2e:cf:3c:9b:ca:59:e6:74:2e:25:e2:
01:03:8d:d8:6f:7f:b5:c7:66:18:8b:01:97:48:8c:
fe:04:e9:39:80:57:cd:04:26:e7:1a:46:43:5e:d7:
1d:fe:99:43:a6:a5:65:24:5c:e4:d5:e3:33:bc:55:
c7:e3:c5:62:e8:5e:cf:f2:b7:96:b6:65:af:20:19:
da:23:b3:6b:86:a6:c2:42:e7:5b:71:88:23:a6:d1:
d9:58:b6:ac:f4:49:70:92:0b:8b:4a:b6:11:db:c1:
c8:52:ac:8f:d0:78:fd:a0:16:fb:a4:c4:ec:29:67:
2c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:45:1A:94:8C:9F:F0:4B:60:1E:EA:F2:04:03:36:7C:39:DF:7E:BC
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/vkUalIyf8EtgHuryBAM2fDnffrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.59.0/24
Signature Algorithm: sha256WithRSAEncryption
67:f1:18:b7:25:b4:fb:c6:d4:eb:a8:39:08:89:93:e1:ea:2c:
dd:e2:72:d1:62:e0:aa:60:7a:65:3a:80:ed:e6:75:0f:0a:b6:
bc:1c:ef:6b:53:62:9a:8c:94:52:06:5b:c9:e7:4d:d3:80:1d:
70:45:15:b5:98:14:df:31:4d:29:4e:df:32:d6:56:e2:57:3f:
02:73:b0:5b:1b:dd:46:47:8c:4a:85:47:8a:cb:55:3e:55:38:
a9:60:e1:8f:49:f0:da:87:5e:c6:6d:84:c4:21:0f:f6:2c:f7:
0c:7c:23:b9:35:28:ea:69:7f:f5:b3:09:fd:83:a6:8e:ae:95:
20:72:ba:a2:05:a1:88:8b:56:20:b0:e5:17:0a:dc:17:db:25:
dd:08:97:50:55:31:08:6e:e4:c0:ed:ac:ae:a5:e7:d6:2f:86:
49:bf:ec:bc:e0:83:b5:41:0c:c9:eb:e4:b3:31:05:e6:bc:35:
95:1a:7a:d1:f2:dc:8e:3f:f6:3f:ea:97:d3:3d:66:0c:ca:8e:
85:de:bc:fc:e1:ce:16:40:e2:9a:5d:69:f1:94:09:f6:22:7b:
3b:d0:a9:6a:df:73:10:31:5c:74:64:76:62:0f:cb:ce:44:c4:
20:13:f7:03:1c:6b:38:6c:4b:13:5e:96:04:09:b9:3b:62:d1:
e3:71:e0:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-fra.rpki-client.org