Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/5db8eb-cccc-498a-81cb-65ae58a9bee8/1/VajZYy9CqjFwbRSy66QP9E-rLLo.roa
File: VajZYy9CqjFwbRSy66QP9E-rLLo.roa (raw, json)
Hash identifier: IlagvGVdhz9lLL+I2CPndaXCrO2UN+2TQZa5HRHTynA=
Subject key identifier: 55:A8:D9:63:2F:42:AA:31:70:6D:14:B2:EB:A4:0F:F4:4F:AB:2C:BA
Certificate issuer: /CN=be6c497ff4d4a8bb5a24bdd2051575b49a083c75
Certificate serial: 01856C9CBB49C5C30E05F672CF8B1086C262
Authority key identifier: BE:6C:49:7F:F4:D4:A8:BB:5A:24:BD:D2:05:15:75:B4:9A:08:3C:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vmxJf_TUqLtaJL3SBRV1tJoIPHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/5db8eb-cccc-498a-81cb-65ae58a9bee8/1/VajZYy9CqjFwbRSy66QP9E-rLLo.roa
Signing time: Sun 01 Jan 2023 09:14:48 +0000
ROA not before: Sun 01 Jan 2023 09:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 185.194.232.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:bb:49:c5:c3:0e:05:f6:72:cf:8b:10:86:c2:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be6c497ff4d4a8bb5a24bdd2051575b49a083c75
Validity
Not Before: Jan 1 09:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55a8d9632f42aa31706d14b2eba40ff44fab2cba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:9a:57:1f:c2:36:79:b2:2f:3f:0f:2a:86:28:
00:13:3b:ed:60:36:bc:88:00:86:7a:ac:7e:79:d7:
b1:b4:02:c6:58:f5:bf:13:fc:67:31:7e:ed:40:c6:
9b:54:9a:02:30:c9:b4:cb:01:72:fc:30:17:68:56:
56:f1:fd:68:e6:bc:ff:61:87:56:7e:24:34:0c:09:
25:f6:8f:8d:e4:71:25:fa:55:7e:ac:e7:6c:fb:96:
0f:a1:fd:69:75:73:d4:f2:01:19:54:73:70:ee:08:
56:36:6d:b1:5a:2e:9e:79:0c:b2:75:bf:1f:86:58:
f3:7e:7c:03:c3:5f:d1:fe:0e:56:9e:b0:4c:2c:e2:
e8:f3:41:88:2f:ed:e9:07:e1:1d:36:74:d1:0a:e2:
34:35:1d:11:c1:1b:0f:87:36:57:37:07:76:0a:6f:
62:f8:4c:d4:fc:30:3c:67:47:92:dd:42:24:85:9e:
54:52:e4:1c:bb:c1:32:66:dc:03:fa:0b:ec:70:a3:
34:8b:e8:4c:a6:d4:85:67:d0:4f:27:3b:ee:2d:36:
98:a0:d2:c8:d5:e1:f7:62:ab:53:27:62:0a:e5:1c:
41:ba:9f:24:02:28:69:c7:17:e8:b1:16:6e:d4:f9:
d0:a3:e9:0d:4d:dd:1f:87:73:fb:6b:d8:e5:71:0e:
eb:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A8:D9:63:2F:42:AA:31:70:6D:14:B2:EB:A4:0F:F4:4F:AB:2C:BA
X509v3 Authority Key Identifier:
keyid:BE:6C:49:7F:F4:D4:A8:BB:5A:24:BD:D2:05:15:75:B4:9A:08:3C:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vmxJf_TUqLtaJL3SBRV1tJoIPHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/5db8eb-cccc-498a-81cb-65ae58a9bee8/1/VajZYy9CqjFwbRSy66QP9E-rLLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/5db8eb-cccc-498a-81cb-65ae58a9bee8/1/vmxJf_TUqLtaJL3SBRV1tJoIPHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.232.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:b3:52:1f:38:52:ab:78:e0:38:3e:fe:89:32:a3:fa:b6:37:
52:cc:26:80:6c:b5:83:f9:12:dd:74:9d:16:91:ad:70:08:4e:
78:dd:16:97:c7:24:4f:1f:b7:58:ad:74:a9:8d:c4:e4:29:95:
c3:5d:1c:49:6c:d8:2c:ae:4f:82:5f:43:88:c5:2a:c6:15:9f:
11:37:95:30:7e:1d:d2:80:a6:59:06:d9:00:ed:b4:77:47:74:
29:da:4e:c8:c1:c0:b7:48:a2:93:0c:d2:bd:be:3d:90:49:e0:
79:23:d8:55:d1:d0:4f:d6:49:3e:5e:be:70:2a:1b:7c:d8:7b:
e1:5c:70:13:8d:d6:64:c6:01:2e:ae:85:c8:95:5f:9e:50:d6:
9a:bc:fd:8d:d5:12:ef:69:e7:89:ff:dc:d8:17:e1:ce:55:a4:
85:aa:c1:5d:72:cc:d4:85:de:68:1d:1d:60:79:77:9b:18:1b:
77:53:be:4d:32:21:96:8d:38:e8:a1:cc:1e:e8:6b:86:38:c8:
24:c7:f3:5f:ce:16:f2:dc:c8:a0:be:af:6c:16:86:c7:b4:0e:
47:0e:6b:41:01:db:c9:73:28:73:17:46:24:33:8e:56:38:cc:
f7:57:2e:19:94:12:85:89:27:bd:63:7c:23:53:f6:00:2d:fc:
66:a3:7c:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:00 2024 by rpki-client on console-fra.rpki-client.org