Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/vSMvsetIohPDCw363B9NIPU6eGE.roa
File: vSMvsetIohPDCw363B9NIPU6eGE.roa (raw, json)
Hash identifier: FVV8/zmisNVylvXgSzNkhBfn3YGqDsMCLh2dqQ/jxtM=
Subject key identifier: BD:23:2F:B1:EB:48:A2:13:C3:0B:0D:FA:DC:1F:4D:20:F5:3A:78:61
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018571030BA6E255ECAC1AF8F0049558253D
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/vSMvsetIohPDCw363B9NIPU6eGE.roa
Signing time: Mon 02 Jan 2023 05:45:03 +0000
ROA not before: Mon 02 Jan 2023 05:45:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49321
IP address blocks: 185.192.17.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:03:0b:a6:e2:55:ec:ac:1a:f8:f0:04:95:58:25:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 2 05:45:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd232fb1eb48a213c30b0dfadc1f4d20f53a7861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b6:ce:f3:11:09:fc:4f:6d:94:22:c2:5b:59:
35:c9:f4:1d:f0:b2:7b:91:e0:e6:63:63:8e:82:33:
9e:6c:52:ed:29:e4:b3:57:25:38:64:54:f9:67:d9:
14:33:4f:5b:20:3f:d6:35:cc:58:d9:81:2d:1e:f2:
8e:53:4e:11:84:4c:43:cc:fd:e6:cf:96:76:6c:77:
c0:79:0f:6e:8a:99:01:fb:18:51:e9:46:f6:7c:d9:
5e:9a:4b:11:cb:d1:55:34:73:4d:66:12:af:07:56:
97:36:fa:31:48:41:49:89:c8:30:8c:c2:d9:80:8b:
cb:c1:f5:b0:60:c0:87:16:73:c1:c8:1b:5d:82:fd:
b8:96:da:91:6f:35:97:31:f8:d5:f2:4a:9e:d5:ef:
fe:45:df:76:b6:14:79:e2:2d:34:61:96:56:72:1f:
c8:bb:27:83:7a:cd:53:ce:a9:a8:74:5e:7c:d7:e4:
ab:98:0b:68:cc:9f:0f:f8:64:67:29:2b:9c:9e:a1:
e1:ab:25:51:a2:a8:ff:c5:d3:29:b0:58:af:a1:a2:
27:60:ed:f7:0c:ec:20:2c:37:22:32:29:09:c5:32:
76:4a:d6:e3:20:83:43:a9:37:4c:5c:17:37:3b:92:
e7:3f:8a:ae:c5:b8:20:fc:8c:37:f0:99:e5:c3:d4:
8d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:23:2F:B1:EB:48:A2:13:C3:0B:0D:FA:DC:1F:4D:20:F5:3A:78:61
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/vSMvsetIohPDCw363B9NIPU6eGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.17.0/24
Signature Algorithm: sha256WithRSAEncryption
10:d0:cd:95:c6:44:e7:b3:d1:0f:51:cb:61:7c:d9:ca:13:c7:
b4:30:ba:de:45:98:62:56:79:61:11:74:25:82:9e:10:95:b0:
d8:6c:28:7a:59:12:b2:0f:5f:f5:a9:62:3f:b3:f6:6c:cf:42:
a0:52:1e:b5:aa:20:c5:2e:61:10:5b:0a:04:d2:45:1a:71:d3:
6f:15:e8:6c:f3:d3:1e:63:33:9c:c9:b6:d7:81:24:0e:f2:fb:
6c:da:cf:b9:fa:3e:4c:34:c4:89:00:95:8b:ef:cd:f7:1f:d9:
84:85:d6:64:7d:b8:47:37:eb:2d:20:12:d7:ad:4b:bc:fa:80:
8a:61:b0:7e:dc:58:9c:0f:b7:72:73:8f:93:04:eb:99:a6:55:
ed:5e:2f:d2:04:69:7d:e9:ec:98:8e:c3:a8:12:f7:75:5d:c1:
a6:f8:0a:52:7c:af:88:4e:6a:a5:62:b0:a9:17:fa:0b:5f:85:
7b:61:0e:9d:45:a3:0d:e6:ec:ab:69:82:ad:24:3c:e4:5d:45:
be:22:cf:7d:41:3c:5a:fa:2c:0b:78:5c:cc:9e:a4:f7:82:8e:
37:ab:49:2f:07:fa:8c:00:8a:fa:5f:67:59:bd:5e:fd:2c:f0:
d8:83:4d:ca:a1:66:ff:ef:84:e8:9c:e7:72:64:21:ad:78:e3:
3b:98:40:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:28 2024 by rpki-client on console-fra.rpki-client.org