Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/VAKtljfEFpUmE6nCEUQBWh3u9fg.roa
File: VAKtljfEFpUmE6nCEUQBWh3u9fg.roa (raw, json)
Hash identifier: zmO2bUtcgYCgD0CozChJeuMSfUP2N16EB+5kAh3LxEg=
Subject key identifier: 54:02:AD:96:37:C4:16:95:26:13:A9:C2:11:44:01:5A:1D:EE:F5:F8
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B62C9B29EC99BE14431D97A2403119
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/VAKtljfEFpUmE6nCEUQBWh3u9fg.roa
Signing time: Mon 02 Jan 2023 09:00:42 +0000
ROA not before: Mon 02 Jan 2023 09:00:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19437
IP address blocks: 185.234.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:2c:9b:29:ec:99:be:14:43:1d:97:a2:40:31:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5402ad9637c416952613a9c21144015a1deef5f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:e4:ec:e7:6e:6a:e5:0f:47:70:61:5f:90:ac:
cd:2a:7f:bf:6c:e0:53:ac:c1:b9:0e:6f:64:0e:3f:
3c:0b:89:c3:63:2f:16:3e:fb:d8:a6:bd:fa:6d:6d:
f6:3b:3f:54:b3:cf:b7:66:4b:88:81:b8:75:8e:89:
b2:15:7a:06:a2:b8:ad:6b:ca:10:3f:fe:13:3d:a4:
31:96:69:26:37:e4:bb:42:18:dc:45:b4:58:21:f8:
62:80:f4:4d:ba:11:54:e5:6d:94:09:a9:f3:e1:bd:
d3:dd:58:d9:d9:60:8f:f3:c9:d0:6f:d4:09:9b:31:
fc:4b:cd:50:3f:84:3f:74:9c:3a:f6:86:25:7d:b3:
e8:03:cf:3a:8e:0d:29:e9:b3:f3:05:04:65:20:96:
55:78:cd:bf:ee:81:c8:3a:fd:38:21:e3:75:ac:24:
48:e4:39:13:0d:6c:97:5d:4c:62:a2:44:56:65:07:
d4:8d:a3:5c:c4:dc:9c:d8:19:0f:d0:da:87:c7:94:
07:0e:7a:71:31:1f:d8:bc:7b:ad:90:bb:62:a8:44:
4e:f6:0b:12:70:16:15:0d:a6:e3:d5:81:95:ae:92:
9b:1a:1d:7c:52:5c:b0:14:3f:82:43:36:91:73:2b:
f0:d3:ff:12:48:2b:70:ab:3b:5e:4c:a5:0f:a8:85:
b7:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:02:AD:96:37:C4:16:95:26:13:A9:C2:11:44:01:5A:1D:EE:F5:F8
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/VAKtljfEFpUmE6nCEUQBWh3u9fg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.20.0/24
Signature Algorithm: sha256WithRSAEncryption
43:a9:6f:16:b0:ae:07:c5:9c:ac:0c:4c:46:56:27:63:bd:19:
4b:02:a0:2e:6a:f3:3a:f9:d5:84:68:1b:17:d5:b2:5c:9e:34:
65:c0:b3:b3:17:37:5d:7d:a4:95:77:2c:18:4f:75:62:fd:84:
54:6a:fc:06:1e:e1:92:84:37:d1:cd:8f:5c:5e:77:68:7e:0b:
c1:f7:13:c3:3b:74:db:b9:13:57:cf:14:25:c0:6c:11:20:cd:
a7:4b:65:d0:1f:ec:84:c5:3d:89:b3:7a:a1:cd:1b:c1:59:09:
c2:72:f5:2e:a2:72:2f:30:1f:6e:4a:9d:3b:78:74:f6:bb:46:
e7:81:ed:e9:95:37:a8:d6:9e:47:dc:a6:f4:e9:77:b4:fb:1d:
da:ca:5a:d7:4b:96:e2:26:1b:b3:3c:24:73:c0:b1:a3:e9:3c:
5f:78:1a:5b:06:6b:f0:28:64:39:c1:80:6e:f0:fa:83:f2:da:
26:c0:62:49:1e:1a:29:52:86:06:c7:4e:5e:90:40:45:7f:b9:
17:a4:4a:29:5f:c0:17:cb:f0:61:4e:d0:33:9f:fc:2b:af:b0:
53:c3:d6:5e:b6:5d:7f:81:27:98:ea:cf:d3:10:9a:e7:e2:e9:
f5:df:28:eb:f7:fa:61:d2:04:87:a9:6e:60:47:f8:20:d6:61:
bb:36:64:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:26 2024 by rpki-client on console-ams.rpki-client.org