Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/vuH2bAL-SP6xNCEUkzPPvTBrJss.roa
File: vuH2bAL-SP6xNCEUkzPPvTBrJss.roa (raw, json)
Hash identifier: piCD+HhF2tVX8onNPPzZ4GhBgaxW3hbiquG4H8fP6zE=
Subject key identifier: BE:E1:F6:6C:02:FE:48:FE:B1:34:21:14:93:33:CF:BD:30:6B:26:CB
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018CC56E03C5C86E2F03459E8C43F57D9987
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/vuH2bAL-SP6xNCEUkzPPvTBrJss.roa
Signing time: Mon 01 Jan 2024 14:29:30 +0000
ROA not before: Mon 01 Jan 2024 14:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211432
IP address blocks: 185.232.167.0/24 maxlen: 24
2a0e:2c00::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 04 Apr 2024 13:26:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:03:c5:c8:6e:2f:03:45:9e:8c:43:f5:7d:99:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 1 14:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bee1f66c02fe48feb13421149333cfbd306b26cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7f:95:89:0b:8b:28:8f:aa:ab:26:97:3c:ba:
33:84:55:02:46:a3:a7:b0:1d:ad:c3:36:9a:de:31:
77:9d:e3:22:f1:cf:0d:77:77:be:d2:1e:68:d5:8b:
08:ad:2f:a4:c3:ee:58:d0:0e:fd:cd:e9:e2:a1:4b:
00:99:ed:5d:da:18:10:77:8f:d5:72:0b:be:b6:09:
b2:28:eb:c1:68:a7:23:69:f0:bc:ea:6b:b5:5b:30:
1b:86:1d:a8:11:83:51:68:a3:74:6d:b1:7d:b9:46:
8d:eb:e8:38:03:18:2c:df:99:99:31:b2:11:be:57:
48:5a:47:45:0f:04:55:f2:2b:f2:0f:5c:a0:18:e9:
f1:79:2b:15:ca:eb:ee:13:ca:27:2e:f4:57:0d:9b:
f7:71:3a:71:21:8e:06:d6:f2:a2:c3:c3:82:6a:49:
eb:23:b6:57:bc:cb:a1:41:77:d2:35:79:bd:c1:d9:
27:0a:a4:2d:74:ed:9a:8c:dc:4c:7c:15:18:40:5c:
b2:a3:54:7a:15:2e:a2:2b:2f:bf:8e:f3:e0:4f:3d:
b2:11:42:ad:78:6d:08:d0:66:02:0d:66:65:8b:a7:
5f:6a:96:a6:66:05:7b:04:dd:12:1d:1d:38:4c:9e:
b7:2c:4e:3c:e7:c3:7c:ca:ce:17:23:3e:26:8a:c5:
65:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:E1:F6:6C:02:FE:48:FE:B1:34:21:14:93:33:CF:BD:30:6B:26:CB
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/vuH2bAL-SP6xNCEUkzPPvTBrJss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.167.0/24
IPv6:
2a0e:2c00::/29
Signature Algorithm: sha256WithRSAEncryption
2b:47:c8:dc:d3:cf:c5:b0:57:89:ec:8d:43:d4:7b:56:e7:af:
9a:b5:a5:87:f7:5b:2f:9e:60:41:ac:c2:6d:6b:dc:0b:7e:27:
48:6c:3b:cd:52:a1:3a:80:91:7d:6b:e9:45:86:d0:36:02:36:
1f:f9:38:de:04:17:4f:df:e7:e1:88:00:63:fe:0f:b3:64:d8:
62:ab:bf:1f:ad:a7:99:a6:50:4a:b2:fe:aa:6a:aa:26:f6:2d:
05:3f:95:ca:cc:15:aa:a6:06:80:08:dc:c5:89:f2:21:a4:09:
ab:6d:7a:a0:c0:df:48:d9:c5:93:ca:6a:19:1c:12:36:b5:22:
ca:2e:d0:a8:a9:60:89:14:d9:4f:d7:14:ce:93:d5:eb:27:26:
ff:d6:32:da:d8:ae:44:b4:89:1e:d0:de:f7:2e:51:30:e4:c9:
b6:00:fe:0c:9f:3f:ce:ba:18:b7:8f:f9:55:d3:89:74:91:06:
e9:a5:fb:9d:ea:5c:f3:4f:a4:49:60:c4:36:75:64:ce:99:dd:
d6:1c:d6:ca:7a:73:03:3c:3e:2a:24:a8:9c:d3:64:0b:c2:81:
5b:c1:93:57:ec:69:8b:55:70:2a:15:81:05:8b:68:2a:f3:c9:
34:16:64:7f:71:b9:f5:e4:e2:03:e2:ed:04:39:d7:07:52:c8:
e2:60:c8:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org