Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/vtz3f5CWbWKhJOVDJAExT2Yu9IY.roa
File: vtz3f5CWbWKhJOVDJAExT2Yu9IY.roa (raw, json)
Hash identifier: JqaWzvLDRyfdjG+MgczMcWMFgJxc2l3Y2/FlsH8MOPY=
Subject key identifier: BE:DC:F7:7F:90:96:6D:62:A1:24:E5:43:24:01:31:4F:66:2E:F4:86
Certificate issuer: /CN=e61bd7dd1f8ac8b4192ba78a592348b5dd0a1a66
Certificate serial: 01915C1BAA53E53CED72E0F8E219CEA61850
Authority key identifier: E6:1B:D7:DD:1F:8A:C8:B4:19:2B:A7:8A:59:23:48:B5:DD:0A:1A:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hvX3R-KyLQZK6eKWSNItd0KGmY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/vtz3f5CWbWKhJOVDJAExT2Yu9IY.roa
Signing time: Fri 16 Aug 2024 16:53:22 +0000
ROA not before: Fri 16 Aug 2024 16:53:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 398465
IP address blocks: 185.129.208.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 04 Oct 2024 16:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5c:1b:aa:53:e5:3c:ed:72:e0:f8:e2:19:ce:a6:18:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e61bd7dd1f8ac8b4192ba78a592348b5dd0a1a66
Validity
Not Before: Aug 16 16:53:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bedcf77f90966d62a124e5432401314f662ef486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:07:02:07:28:07:c7:93:ac:29:be:7b:34:ac:
27:d6:bb:55:84:c2:4a:29:a4:ba:d1:52:ca:2b:3f:
1b:30:38:7d:3b:bc:28:32:03:d1:a8:15:2f:0b:03:
ca:19:5e:97:13:e3:bb:af:b5:07:a3:d6:d6:d5:26:
e8:1a:c9:4a:64:3b:83:28:11:ec:06:fe:8d:28:9e:
54:2e:92:29:76:41:e4:91:c4:24:2c:73:a3:fb:62:
f8:12:31:f8:3e:f2:e5:3f:f9:ce:39:72:5c:ed:7f:
85:73:68:3f:6d:4d:69:52:54:02:1d:4f:ac:44:76:
a9:87:58:09:de:f4:83:a8:bc:00:55:ec:2c:5e:bd:
0b:f9:13:3b:c4:97:f1:a1:0f:e1:19:ad:d9:45:d6:
fa:82:f4:fc:ce:44:99:f0:06:0f:42:8a:0f:12:6a:
79:02:b0:d1:67:98:be:c9:ee:8f:1a:fc:87:8f:83:
67:f7:47:c5:53:95:ed:a2:81:2e:99:67:61:a3:54:
4f:f2:0e:ba:8b:4c:8d:6d:ea:40:7f:6b:f0:31:c9:
f4:7c:f8:67:62:1f:9b:9b:d4:15:b4:6e:b5:44:c7:
23:69:70:f1:4d:2a:e4:b9:d2:ad:9f:c6:3b:93:4f:
07:90:98:4e:75:28:21:05:48:a5:ec:71:d1:ef:a1:
db:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:DC:F7:7F:90:96:6D:62:A1:24:E5:43:24:01:31:4F:66:2E:F4:86
X509v3 Authority Key Identifier:
keyid:E6:1B:D7:DD:1F:8A:C8:B4:19:2B:A7:8A:59:23:48:B5:DD:0A:1A:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hvX3R-KyLQZK6eKWSNItd0KGmY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/vtz3f5CWbWKhJOVDJAExT2Yu9IY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/5hvX3R-KyLQZK6eKWSNItd0KGmY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.208.0/22
Signature Algorithm: sha256WithRSAEncryption
12:8a:07:18:e7:ec:de:16:3a:ed:de:db:52:c8:8a:e6:22:de:
3b:af:99:85:83:40:24:17:3f:7d:59:31:6d:c8:53:84:9a:ee:
6d:6e:59:28:bd:33:84:41:92:a8:8f:bd:c2:af:77:dc:50:ef:
38:34:5c:31:35:9a:fc:5d:39:ae:15:83:b5:a8:8e:b1:60:8f:
67:d1:52:bb:f1:1d:6d:e5:97:81:6a:2d:b0:d2:ac:31:e1:85:
1c:c3:f8:b0:b3:b6:fb:01:99:cc:cd:17:2a:c6:1c:ed:c8:0b:
26:4c:d0:60:2c:09:4f:a2:2b:7a:ae:ba:50:cd:b1:66:69:5a:
32:b5:f3:51:9b:ea:94:2b:a6:e5:d1:14:f7:e1:59:73:ba:59:
31:6d:91:6b:e7:18:b7:aa:06:54:95:2d:72:2f:79:b3:a0:cf:
fd:fc:c2:44:5a:60:2b:8a:58:dd:fa:77:0e:de:c7:d9:06:80:
2e:50:80:b6:69:2d:b0:bf:e8:cd:e0:aa:40:00:08:e9:ee:49:
c0:e0:c3:6d:a4:1b:10:d7:5a:6e:2c:0e:2a:62:7d:33:f5:b0:
e2:4c:4d:9b:57:6a:12:08:f3:48:d6:c8:6d:ad:f7:c3:76:08:
21:21:10:67:c2:54:0c:ba:ae:41:16:5c:b7:eb:38:0a:8c:06:
0e:84:88:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 4 18:58:46 2024 by rpki-client on console-fra.rpki-client.org