Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/vPYosDAeEwHjI4FjJyb6B6D3FfY.roa
File: vPYosDAeEwHjI4FjJyb6B6D3FfY.roa (raw, json)
Hash identifier: IvRhzAI1xnLnUoTY9DWpeyvEj1ivrAHhUQJaCec25Nk=
Subject key identifier: BC:F6:28:B0:30:1E:13:01:E3:23:81:63:27:26:FA:07:A0:F7:15:F6
Certificate issuer: /CN=43af2e987d2b63addaa5adc178f31e90d876aaa7
Certificate serial: 01856F4290BF6E038C2D0FFC6F8117DEA661
Authority key identifier: 43:AF:2E:98:7D:2B:63:AD:DA:A5:AD:C1:78:F3:1E:90:D8:76:AA:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q68umH0rY63apa3BePMekNh2qqc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/vPYosDAeEwHjI4FjJyb6B6D3FfY.roa
Signing time: Sun 01 Jan 2023 21:35:11 +0000
ROA not before: Sun 01 Jan 2023 21:35:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48728
IP address blocks: 185.2.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:90:bf:6e:03:8c:2d:0f:fc:6f:81:17:de:a6:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43af2e987d2b63addaa5adc178f31e90d876aaa7
Validity
Not Before: Jan 1 21:35:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bcf628b0301e1301e32381632726fa07a0f715f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:15:d2:57:d9:19:ed:a8:e6:5f:ce:dd:ac:51:
de:e4:c6:82:a4:4b:28:f5:a7:9a:9e:7a:62:9b:b4:
e4:d8:9c:bf:8c:87:21:39:60:25:bb:93:52:d2:70:
a1:9f:8d:ad:9d:93:99:39:30:f7:ec:bc:47:ff:05:
06:ad:b1:17:97:da:1b:14:59:e6:0b:63:6f:36:19:
16:ca:50:ce:f4:62:12:c2:8b:4f:17:47:48:6b:d2:
51:83:9d:d8:a8:2f:44:ab:24:e1:ca:90:4e:06:8c:
87:a3:aa:8a:7b:2b:d8:00:57:93:06:87:9e:8f:be:
3a:e1:44:6c:b9:d7:23:de:7b:c8:3d:65:73:5f:33:
71:35:e4:ca:83:b3:9e:2f:26:d7:c4:a1:3b:0e:2e:
3e:04:16:12:a8:a7:90:ce:9b:63:a2:28:aa:78:a7:
02:0b:92:9f:57:88:b4:16:bc:8a:8e:95:52:38:40:
8f:f6:6b:19:1d:3b:99:11:a0:17:3e:66:d8:f6:3b:
1f:c4:05:73:5c:b2:af:6a:ef:9f:57:64:d3:32:6d:
9a:b7:52:9b:ad:6c:0f:bd:31:fe:a2:86:8d:42:1c:
4d:05:c9:79:09:4f:a2:61:eb:96:4d:ba:c9:fd:67:
de:62:86:1f:c9:c3:d9:e9:e0:11:dc:4b:9f:8a:bf:
bc:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:F6:28:B0:30:1E:13:01:E3:23:81:63:27:26:FA:07:A0:F7:15:F6
X509v3 Authority Key Identifier:
keyid:43:AF:2E:98:7D:2B:63:AD:DA:A5:AD:C1:78:F3:1E:90:D8:76:AA:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q68umH0rY63apa3BePMekNh2qqc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/vPYosDAeEwHjI4FjJyb6B6D3FfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/Q68umH0rY63apa3BePMekNh2qqc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.2.246.0/24
Signature Algorithm: sha256WithRSAEncryption
82:50:c3:e8:b2:f2:9a:7e:9f:b0:8f:58:80:1c:1d:30:fd:30:
1a:27:8e:99:3b:cd:59:1b:97:e5:2c:db:33:50:0d:2c:47:5c:
95:26:f8:96:10:f0:9e:64:22:69:c9:c9:4e:75:84:51:18:ba:
ff:af:bd:2f:e5:82:e4:a0:c1:f6:71:fb:7a:1e:32:42:43:14:
74:6f:a1:a7:60:1a:63:56:a6:31:f2:ce:5a:d4:78:2a:8b:68:
f7:64:42:af:ab:b4:08:e6:a7:fe:3e:c8:19:fa:13:0a:39:a7:
29:46:ba:38:75:92:80:d0:45:4e:b4:b0:41:6c:11:d7:ca:86:
e6:1c:ec:d7:50:84:0b:bb:bf:85:81:aa:cd:f4:55:64:89:26:
4e:d5:f2:51:a9:a8:a8:0d:24:17:f8:17:8c:ae:0c:29:67:92:
66:ed:05:d4:d4:9d:d3:8a:70:36:eb:9f:37:d7:52:98:b3:dc:
44:3a:cc:1b:82:64:00:86:1e:0c:89:ff:37:3b:aa:6f:45:03:
07:45:bb:d7:48:2b:8c:d0:ac:aa:5f:ce:95:42:eb:8b:00:b7:
f7:ca:39:3b:fb:83:a5:31:6d:64:9c:ed:2f:1c:67:7f:c1:93:
0d:34:ed:3c:96:d1:06:25:29:b8:57:14:b1:c3:0f:9e:f2:f9:
b0:b8:2f:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:30 2024 by rpki-client on console-fra.rpki-client.org