Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/r1Vsg_3rR_y9p7MqaxM84QgxsZo.roa
File: r1Vsg_3rR_y9p7MqaxM84QgxsZo.roa (raw, json)
Hash identifier: atNLK3Pu0uUURuV0uWf4E6eGHf2sXAfVOZvFOvlP5hQ=
Subject key identifier: AF:55:6C:83:FD:EB:47:FC:BD:A7:B3:2A:6B:13:3C:E1:08:31:B1:9A
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018CAC21635B1634B008A5AABB065F89D80E
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/r1Vsg_3rR_y9p7MqaxM84QgxsZo.roa
Signing time: Wed 27 Dec 2023 16:35:18 +0000
ROA not before: Wed 27 Dec 2023 16:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 395839
IP address blocks: 185.209.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ac:21:63:5b:16:34:b0:08:a5:aa:bb:06:5f:89:d8:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Dec 27 16:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af556c83fdeb47fcbda7b32a6b133ce10831b19a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e6:22:f2:7a:bd:c4:34:b7:ed:78:d3:ab:10:
98:28:7f:ef:c6:ce:30:4e:83:84:07:37:6a:58:af:
91:3f:06:82:6f:87:a7:7f:b2:8a:e2:02:31:6f:1e:
0e:27:c1:20:95:a6:fe:92:65:88:d9:48:72:c4:e4:
8e:91:fe:d7:0f:ef:75:a3:61:31:36:ca:a9:ac:f2:
79:b1:d1:95:8c:ca:aa:d1:26:bf:b4:77:f4:d5:ee:
af:ea:49:ad:1c:f1:f3:34:09:9b:9a:14:cb:94:53:
30:02:88:ff:7e:d2:f2:90:89:e8:79:70:0c:83:39:
e6:80:9b:6a:8b:60:a9:7e:31:e8:12:e8:4b:97:e5:
db:96:f7:5c:7f:07:a9:26:ed:1f:07:36:ec:bf:a5:
05:c5:17:c2:80:52:0d:a6:91:a6:1d:54:e9:f8:c3:
0b:f2:58:42:ba:2e:42:74:65:a8:71:26:41:bb:df:
cc:ca:4e:b7:82:41:1b:04:20:81:68:e1:7f:fe:d7:
be:0a:ce:b0:fc:c7:f5:0c:7f:2a:f8:87:0f:27:d8:
fa:be:08:3b:21:8f:0e:fe:85:86:83:13:d2:29:e8:
d9:09:64:53:4f:9b:91:24:6a:01:33:1c:76:12:06:
44:1b:fe:4e:fd:55:5d:e9:7a:f9:d9:1e:4a:b0:26:
68:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:55:6C:83:FD:EB:47:FC:BD:A7:B3:2A:6B:13:3C:E1:08:31:B1:9A
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/r1Vsg_3rR_y9p7MqaxM84QgxsZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.38.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:a0:67:6f:5c:28:1f:93:09:95:be:68:00:00:19:44:09:f0:
a7:7a:21:e5:01:f7:14:15:cc:13:6d:51:ae:6d:c3:15:0a:f5:
06:dd:94:57:df:94:44:53:89:50:0a:31:19:84:81:07:83:67:
44:7d:ba:46:e2:e6:6d:a5:c9:da:04:a9:af:24:3e:a0:8b:69:
7b:54:dc:9d:14:6b:ac:8d:0d:84:34:9f:05:5e:0a:94:85:99:
5d:1e:5e:bf:02:9a:5b:23:dc:64:15:4d:26:4b:c4:e1:9f:30:
00:5c:2d:bf:71:26:5f:be:e3:d9:16:34:3f:28:84:b4:ce:25:
03:63:b1:7f:d7:05:3d:db:86:1e:21:4e:04:6b:ce:2d:3c:db:
f6:c6:06:75:13:83:73:7e:fb:01:90:f6:0f:89:39:80:42:0e:
cb:ec:54:bc:5f:f9:39:52:be:86:76:1c:46:3a:2f:52:da:af:
1e:d8:2d:0f:43:87:4c:08:31:e7:e4:40:8b:72:86:cb:5e:05:
8b:c3:69:1b:87:7e:5f:6a:00:93:2e:cf:66:bf:12:67:31:61:
39:2a:c6:91:59:24:27:48:ae:80:82:4d:e8:ec:ea:c5:b4:4d:
8a:62:d7:23:fe:4c:44:2a:08:c4:2d:69:11:ee:f3:8b:cf:80:
84:17:44:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:29 2024 by rpki-client on console-ams.rpki-client.org