Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/vXTuDSGQYSXuGYf9DylfTiaIBY4.roa
File: vXTuDSGQYSXuGYf9DylfTiaIBY4.roa (raw, json)
Hash identifier: PcbwnOLPfoS14CMG8LeiWkn9WnYEVGe8MywNGvCPQTw=
Subject key identifier: BD:74:EE:0D:21:90:61:25:EE:19:87:FD:0F:29:5F:4E:26:88:05:8E
Certificate issuer: /CN=e61bd7dd1f8ac8b4192ba78a592348b5dd0a1a66
Certificate serial: 018E2D37092DDB8AAECCBE67821F25F322A1
Authority key identifier: E6:1B:D7:DD:1F:8A:C8:B4:19:2B:A7:8A:59:23:48:B5:DD:0A:1A:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hvX3R-KyLQZK6eKWSNItd0KGmY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/vXTuDSGQYSXuGYf9DylfTiaIBY4.roa
Signing time: Mon 11 Mar 2024 11:12:45 +0000
ROA not before: Mon 11 Mar 2024 11:12:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212150
IP address blocks: 185.129.208.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 05 Apr 2024 10:53:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2d:37:09:2d:db:8a:ae:cc:be:67:82:1f:25:f3:22:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e61bd7dd1f8ac8b4192ba78a592348b5dd0a1a66
Validity
Not Before: Mar 11 11:12:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd74ee0d21906125ee1987fd0f295f4e2688058e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:55:3e:00:73:21:81:77:49:43:d0:86:40:1a:
82:76:fd:28:aa:df:3a:a3:f9:dd:bc:f4:07:68:df:
09:65:ea:b1:4d:4b:8c:63:63:38:b8:62:f5:c9:9d:
5a:bc:fa:09:6e:20:6d:93:2c:27:64:fd:e6:1a:7d:
af:a1:17:37:a3:ec:45:83:24:f2:81:18:89:10:30:
5a:ab:34:66:6a:61:34:aa:bf:ee:38:ce:13:cf:08:
ef:bf:f1:6d:99:bd:db:bd:14:33:a8:a3:18:36:71:
70:3b:23:d3:94:5b:58:e6:f3:ed:5c:bc:de:a7:1a:
fe:d7:d9:9a:a0:04:04:0c:48:40:db:d8:52:de:96:
eb:45:03:e6:5d:e3:83:10:2f:b4:52:3f:ec:60:bf:
dc:d8:1e:f9:a0:c2:bb:f0:b3:00:c1:cc:d7:37:33:
87:9e:44:4b:cb:f3:ef:85:de:62:f4:aa:e0:ea:cf:
64:b1:f3:78:94:8c:2f:8e:e7:cc:3c:55:b6:17:58:
a9:8a:9d:38:de:db:1c:fd:d2:2f:0c:ff:e2:05:8b:
f5:8b:c6:8b:ee:60:31:48:29:5b:bb:07:6a:61:37:
f7:2f:81:3c:72:5c:73:88:93:8b:df:6a:96:e4:d2:
47:70:bd:c9:41:e7:22:01:df:07:2c:2c:ac:d2:a5:
ec:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:74:EE:0D:21:90:61:25:EE:19:87:FD:0F:29:5F:4E:26:88:05:8E
X509v3 Authority Key Identifier:
keyid:E6:1B:D7:DD:1F:8A:C8:B4:19:2B:A7:8A:59:23:48:B5:DD:0A:1A:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hvX3R-KyLQZK6eKWSNItd0KGmY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/vXTuDSGQYSXuGYf9DylfTiaIBY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/5hvX3R-KyLQZK6eKWSNItd0KGmY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.208.0/22
Signature Algorithm: sha256WithRSAEncryption
bf:a6:f1:bd:7d:cc:0d:36:61:56:15:51:6a:d7:29:59:a4:09:
85:95:4e:b5:8e:c0:e6:ea:e7:21:dc:9f:21:0f:52:1d:f5:6a:
03:e4:0a:0f:c9:ab:c0:19:c0:cd:6b:5f:57:03:92:2c:f7:ef:
be:a3:94:36:11:d6:02:a5:8b:de:37:d9:8a:4a:75:4c:71:a0:
45:fd:7d:27:b7:a2:01:03:e3:7d:da:cc:09:a1:fb:2e:c8:0e:
1e:ca:c6:9f:86:b4:aa:ab:a0:a2:92:88:19:e8:fc:84:bf:d0:
46:d1:23:42:0a:9e:3c:c5:f8:9f:57:c3:af:f6:9c:76:d5:7a:
81:ad:46:58:e2:31:01:31:1d:17:49:70:95:f5:e5:be:56:f8:
85:c5:47:ce:87:c8:43:1c:40:d1:24:09:02:57:cd:16:f6:c7:
4e:be:73:bc:2d:ba:2e:08:78:10:f7:70:26:be:ce:13:31:32:
87:23:c3:49:19:91:e4:c4:b8:b4:de:71:53:00:e3:b1:64:95:
db:d0:cd:ae:f8:79:44:df:11:63:25:99:5f:60:1c:d3:e8:ea:
5d:fc:1b:73:c9:2c:13:aa:c4:d3:25:9e:a3:6f:95:18:fc:76:
42:1d:41:a4:c5:79:e3:80:39:39:b3:a2:dd:8c:4a:e8:81:df:
38:c5:68:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 5 15:50:53 2024 by rpki-client on console-ams.rpki-client.org