Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/VqG4qcdjwbkLgnnyQcDO_vhRnGY.roa
File: VqG4qcdjwbkLgnnyQcDO_vhRnGY.roa (raw, json)
Hash identifier: 4SATZwskjWZxeCanych66zimqNo8xt3khxM30y10sts=
Subject key identifier: 56:A1:B8:A9:C7:63:C1:B9:0B:82:79:F2:41:C0:CE:FE:F8:51:9C:66
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 018665C99F2E877736A9D1D58627D553E57D
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/VqG4qcdjwbkLgnnyQcDO_vhRnGY.roa
Signing time: Sat 18 Feb 2023 18:29:17 +0000
ROA not before: Sat 18 Feb 2023 18:29:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201086
IP address blocks: 185.86.80.0/24 maxlen: 24
185.205.19.0/24 maxlen: 24
193.36.63.0/24 maxlen: 24
185.254.94.0/24 maxlen: 24
185.254.95.0/24 maxlen: 24
2a05:b700::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 12 Apr 2023 12:19:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:65:c9:9f:2e:87:77:36:a9:d1:d5:86:27:d5:53:e5:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Feb 18 18:29:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=56a1b8a9c763c1b90b8279f241c0cefef8519c66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e8:0d:70:95:6e:8c:b9:03:b6:f8:47:75:f4:
5d:f1:2a:1d:5b:6a:12:30:23:3d:f7:d3:31:4c:96:
a1:6a:bb:28:93:e0:fb:55:44:14:f9:bc:81:a2:7a:
ca:a9:9c:58:83:67:5b:ac:b4:0a:73:01:2b:01:24:
6e:5e:2e:36:76:c7:90:ac:e0:e2:1f:66:47:15:38:
21:96:88:09:91:c6:00:6c:ac:ec:9e:e7:f8:e9:1d:
13:3b:93:e4:09:bf:1b:36:a2:8a:ea:bd:34:4d:7f:
f6:b7:ad:7a:61:f5:6e:f0:53:b2:78:08:94:81:ad:
da:6e:e2:41:36:f4:01:61:70:58:cb:1d:20:6d:64:
16:34:81:69:c2:de:39:7a:f9:61:b1:c8:10:93:53:
90:1d:d2:fe:96:2e:5c:b8:3d:11:a2:b8:eb:7d:a6:
c2:6f:75:bb:0a:2f:40:14:41:a4:b6:56:c1:4a:a7:
aa:47:11:c8:01:62:f5:64:7d:ab:2f:e4:e3:87:ca:
ea:8e:4c:65:0f:23:2c:71:4e:07:4b:62:72:fd:ae:
79:07:28:83:2e:17:d6:87:ce:df:0b:df:62:c3:93:
ae:e7:e5:f5:af:90:c6:b6:84:1f:3b:03:dc:dd:18:
2d:a8:6f:15:66:c0:3d:10:35:e1:df:28:d3:68:f7:
34:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:A1:B8:A9:C7:63:C1:B9:0B:82:79:F2:41:C0:CE:FE:F8:51:9C:66
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/VqG4qcdjwbkLgnnyQcDO_vhRnGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.80.0/24
185.205.19.0/24
185.254.94.0/23
193.36.63.0/24
IPv6:
2a05:b700::/29
Signature Algorithm: sha256WithRSAEncryption
95:d5:cc:8c:86:1e:73:ad:e8:23:20:33:0b:40:eb:bd:d7:95:
81:f8:3e:02:1c:53:90:d5:ec:3b:30:0e:ab:70:14:f3:a9:49:
c6:b2:19:d6:c3:8f:4f:76:80:6e:98:54:a3:60:f5:81:47:09:
ab:46:96:e2:63:64:c2:e0:24:eb:24:fa:10:72:2a:b0:e0:1d:
1d:e2:83:d1:e9:e7:60:12:a8:19:1c:51:7b:0c:96:f4:13:08:
0e:88:c3:29:d9:ea:e3:b5:64:3d:f9:05:ed:8d:d5:87:61:d6:
f1:f5:7c:47:f2:b0:fa:1c:18:9a:00:cf:c3:1d:cd:53:8f:d8:
f8:33:21:48:67:ce:1a:98:20:d3:25:f4:f3:59:f0:41:c3:8d:
4f:30:c7:e2:2e:3e:f0:5b:0f:56:e8:aa:01:c3:fe:fb:cf:27:
06:e4:61:35:73:2d:27:c3:c9:00:7b:e6:00:09:ec:06:47:1f:
f2:dc:89:66:b6:69:9c:c1:83:1d:89:61:57:07:1e:d0:4a:91:
e8:70:66:69:d1:22:18:bb:ff:06:63:b9:87:30:5c:8c:52:33:
79:69:1a:12:15:72:47:2f:00:32:a4:5c:8e:06:b8:12:3a:4a:
f4:c3:16:ac:88:ff:b6:46:e2:bf:70:3d:1f:6a:f6:85:d8:af:
7a:2e:91:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:52 2024 by rpki-client on console-ams.rpki-client.org