Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/958a2c-cef0-4bcc-99c2-321c9d66c847/1/9vD5ZbqjT75L6h4Fz5sfiG_vrKc.roa
File: 9vD5ZbqjT75L6h4Fz5sfiG_vrKc.roa (raw, json)
Hash identifier: Oxk/EEq909sBAOcg+tE+S+3U9mgh8oXEm1kF3izLK0k=
Subject key identifier: F6:F0:F9:65:BA:A3:4F:BE:4B:EA:1E:05:CF:9B:1F:88:6F:EF:AC:A7
Certificate issuer: /CN=83a062525292a29e97fe6a055b9bd6084a771977
Certificate serial: 01856F4B48541AEFA117E1E924EBA7F63DBE
Authority key identifier: 83:A0:62:52:52:92:A2:9E:97:FE:6A:05:5B:9B:D6:08:4A:77:19:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g6BiUlKSop6X_moFW5vWCEp3GXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/958a2c-cef0-4bcc-99c2-321c9d66c847/1/9vD5ZbqjT75L6h4Fz5sfiG_vrKc.roa
Signing time: Sun 01 Jan 2023 21:44:42 +0000
ROA not before: Sun 01 Jan 2023 21:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3303
IP address blocks: 185.54.172.0/22 maxlen: 22
2a02:4620::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:48:54:1a:ef:a1:17:e1:e9:24:eb:a7:f6:3d:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83a062525292a29e97fe6a055b9bd6084a771977
Validity
Not Before: Jan 1 21:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6f0f965baa34fbe4bea1e05cf9b1f886fefaca7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ce:74:51:30:9a:73:e3:b1:d2:18:b1:03:eb:
65:5e:fa:65:2d:c3:d3:b1:be:1a:c4:01:87:14:80:
ae:87:c9:67:39:7d:16:8c:f3:a5:95:38:65:00:e2:
fc:5a:4d:b1:0e:0a:70:f4:dd:0f:5a:e2:2d:ac:b0:
7e:8e:8c:d6:f3:8c:99:c4:f4:96:a3:e2:10:12:e9:
ec:c4:81:a3:22:58:f9:59:b1:05:9b:17:21:48:a8:
0c:d1:62:4a:28:78:3a:be:7f:03:f0:c7:90:0d:69:
86:7e:f6:d2:21:34:67:2f:7e:9e:36:9b:26:23:4f:
13:8b:48:89:d0:3e:75:ff:fa:d5:d5:ba:ec:0b:1c:
3c:70:3a:1a:9d:38:f1:15:2d:b2:00:7e:f2:f6:1b:
7e:a6:8d:09:1c:5c:cb:6e:75:7f:78:fd:49:21:d7:
36:56:ce:f0:4d:0e:5d:81:f8:4f:b8:2d:95:0c:52:
26:8b:65:7e:e0:25:2e:93:0b:50:02:fb:c3:de:67:
ce:7f:e3:83:dd:2a:43:2b:a6:1b:9f:08:95:55:4a:
cf:8b:71:35:54:be:d7:d1:15:0d:35:4d:85:00:1b:
f8:8f:a7:91:b7:e5:45:d1:7a:87:03:d1:c9:32:9e:
8c:56:cb:2d:62:4b:35:ee:8b:08:c9:91:fa:6a:aa:
26:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:F0:F9:65:BA:A3:4F:BE:4B:EA:1E:05:CF:9B:1F:88:6F:EF:AC:A7
X509v3 Authority Key Identifier:
keyid:83:A0:62:52:52:92:A2:9E:97:FE:6A:05:5B:9B:D6:08:4A:77:19:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g6BiUlKSop6X_moFW5vWCEp3GXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/958a2c-cef0-4bcc-99c2-321c9d66c847/1/9vD5ZbqjT75L6h4Fz5sfiG_vrKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/958a2c-cef0-4bcc-99c2-321c9d66c847/1/g6BiUlKSop6X_moFW5vWCEp3GXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.172.0/22
IPv6:
2a02:4620::/32
Signature Algorithm: sha256WithRSAEncryption
8a:23:ea:ac:01:73:c8:2d:2e:e7:48:08:33:48:77:1d:c5:ed:
d2:a6:9b:88:81:63:ae:bd:3b:78:a0:ae:e1:9a:6c:23:e8:a2:
3a:96:cb:4c:6f:91:e4:3b:fa:3b:11:c1:e0:5e:dd:34:80:69:
95:95:07:7f:25:91:8e:8a:79:c0:e8:9c:93:92:af:91:4c:f9:
0d:9d:d0:44:d4:9b:1d:ce:c5:34:35:c8:6d:ae:b1:aa:cf:72:
3f:b8:7e:cf:4a:bc:b5:71:b0:47:ed:ec:6a:71:ba:87:c3:d7:
42:83:d0:c3:3c:a7:53:03:02:b0:c1:49:99:6d:40:50:b5:a6:
d6:17:68:dc:97:15:33:ec:fe:f0:c4:e7:c9:7c:39:fc:db:b7:
02:d2:4b:1a:42:68:47:3f:95:7c:99:6e:0b:3d:63:21:c6:ba:
f2:e1:d4:aa:cd:60:0a:7a:4a:64:51:80:f5:b4:1b:5c:14:e2:
56:b6:c3:df:5f:ee:11:d2:72:cb:66:85:39:2d:98:ad:92:54:
22:1d:29:a0:dd:f6:c6:37:12:24:eb:c8:83:87:9a:47:23:7b:
4a:2e:c9:1d:0a:d6:05:22:86:45:97:11:2d:25:70:10:53:37:
f2:57:f3:08:5a:9c:d0:cd:41:8d:0c:09:28:02:02:46:e2:76:
5d:e5:43:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:05 2024 by rpki-client on console-fra.rpki-client.org