Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/VoGpqB2iREZmofByXdwdv0tXa68.roa
File: VoGpqB2iREZmofByXdwdv0tXa68.roa (raw, json)
Hash identifier: g513VRhNP29n+qWyEcsd0H4YGMJtLLSOLBp8ujabulU=
Subject key identifier: 56:81:A9:A8:1D:A2:44:46:66:A1:F0:72:5D:DC:1D:BF:4B:57:6B:AF
Certificate issuer: /CN=258623ecc8dcb913d10228a9460a86e660cb8fb2
Certificate serial: 0186923CE83269DB472CFEED6EF3D58D09AC
Authority key identifier: 25:86:23:EC:C8:DC:B9:13:D1:02:28:A9:46:0A:86:E6:60:CB:8F:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JYYj7MjcuRPRAiipRgqG5mDLj7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/VoGpqB2iREZmofByXdwdv0tXa68.roa
Signing time: Mon 27 Feb 2023 09:38:30 +0000
ROA not before: Mon 27 Feb 2023 09:38:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20952
IP address blocks: 185.57.76.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:92:3c:e8:32:69:db:47:2c:fe:ed:6e:f3:d5:8d:09:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258623ecc8dcb913d10228a9460a86e660cb8fb2
Validity
Not Before: Feb 27 09:38:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5681a9a81da2444666a1f0725ddc1dbf4b576baf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2a:46:dd:e6:57:99:ca:da:63:24:e0:a0:48:
61:e0:cf:2f:32:a0:6f:31:99:7f:05:60:1c:29:a9:
ff:a5:b4:43:a1:02:80:6a:0a:be:4e:05:33:9f:64:
50:51:f9:10:8f:10:d8:97:d8:47:69:01:df:9b:d7:
25:98:66:00:54:d0:20:21:0f:36:6a:5b:84:00:2d:
47:8f:54:97:7f:c5:91:d4:a0:77:60:bc:2f:e5:54:
93:d6:d9:39:9f:84:46:1a:95:e3:fc:f2:38:31:f2:
cc:2f:94:ec:03:f2:21:9a:10:6c:90:dd:d6:b2:50:
4f:64:c8:7f:eb:d9:82:1a:3b:a4:f8:77:cd:42:60:
82:51:1f:99:36:a7:48:9c:9e:d2:7c:e8:af:77:86:
20:c8:1c:13:85:6a:22:4a:90:67:09:27:a4:3a:04:
7b:00:95:a2:83:af:c1:0f:94:de:a9:c8:ba:1d:d5:
dd:b5:3f:1d:64:5a:bd:60:dc:c1:ec:d5:60:00:b3:
0f:b9:3d:e7:12:17:97:8b:41:00:59:4a:9a:1e:de:
c6:66:6d:d1:e8:87:b6:be:48:39:4e:0e:76:e8:34:
1a:72:60:3b:38:35:31:3f:b5:17:f5:59:ed:52:32:
f1:f1:2e:1d:25:a8:0f:5f:11:74:17:90:94:bd:3f:
bf:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:81:A9:A8:1D:A2:44:46:66:A1:F0:72:5D:DC:1D:BF:4B:57:6B:AF
X509v3 Authority Key Identifier:
keyid:25:86:23:EC:C8:DC:B9:13:D1:02:28:A9:46:0A:86:E6:60:CB:8F:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JYYj7MjcuRPRAiipRgqG5mDLj7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/VoGpqB2iREZmofByXdwdv0tXa68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/JYYj7MjcuRPRAiipRgqG5mDLj7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.76.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:36:17:ed:59:5c:f2:d4:a7:ad:2d:1c:ee:e4:77:b5:16:46:
4c:df:3e:e1:35:8b:71:d0:06:34:5b:02:4b:40:5c:44:08:07:
8f:5f:f6:16:14:c0:90:01:82:1b:8f:42:ed:e2:32:e6:14:9e:
c4:20:32:18:17:56:8b:eb:91:4f:d7:ae:9c:a8:d3:50:22:0b:
d8:11:22:05:32:0b:23:47:4b:1f:c1:f9:01:18:34:b5:4e:c6:
01:d1:e0:e7:3c:91:31:20:f9:1f:cf:68:6e:68:91:78:03:44:
d5:33:9c:12:9c:3d:3d:89:14:d2:c3:a5:91:e9:9d:f4:f1:37:
61:35:43:63:ee:9e:5a:00:4f:8f:dc:fe:22:bc:cb:47:26:14:
76:7e:f8:f0:07:46:0b:27:53:ef:5e:c1:5a:64:b6:7d:5e:e0:
46:7c:3d:7d:43:35:8f:16:5b:c8:85:80:49:a1:02:d6:c8:6d:
78:25:6c:36:91:17:c6:a2:f8:1c:ef:3d:cc:cd:99:36:c5:3e:
1c:c0:f1:69:66:4e:81:fb:89:0c:f3:0c:2c:94:f6:49:1d:2b:
28:7c:ff:61:43:15:bb:6a:a0:65:06:2d:e1:5f:9c:dd:09:d2:
b1:4a:81:bf:87:e1:51:d7:be:2a:d7:1e:6b:ee:bd:47:50:57:
b7:43:0c:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:20:27 2024 by rpki-client on console-fra.rpki-client.org