Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/uRIv92IL7ojgdnmVsnTR61ATDp8.roa
File: uRIv92IL7ojgdnmVsnTR61ATDp8.roa (raw, json)
Hash identifier: 8llP9HcEy9lFQGJpKzvQJoi9+FqGY3Qp2srLp/OZG/c=
Subject key identifier: B9:12:2F:F7:62:0B:EE:88:E0:76:79:95:B2:74:D1:EB:50:13:0E:9F
Certificate issuer: /CN=0dd441c3ffae829842249e944b03851081f4d9e0
Certificate serial: 0185E0049ECC5FBB84EBCAF6A995711CA769
Authority key identifier: 0D:D4:41:C3:FF:AE:82:98:42:24:9E:94:4B:03:85:10:81:F4:D9:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdRBw_-ugphCJJ6USwOFEIH02eA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/uRIv92IL7ojgdnmVsnTR61ATDp8.roa
Signing time: Mon 23 Jan 2023 19:04:37 +0000
ROA not before: Mon 23 Jan 2023 19:04:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49917
IP address blocks: 185.1.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Jan 2023 20:56:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e0:04:9e:cc:5f:bb:84:eb:ca:f6:a9:95:71:1c:a7:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd441c3ffae829842249e944b03851081f4d9e0
Validity
Not Before: Jan 23 19:04:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b9122ff7620bee88e0767995b274d1eb50130e9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4e:8e:4d:91:49:27:35:67:e4:f0:eb:7a:af:
6f:ee:d2:06:d2:e2:8f:87:0b:a1:ff:20:6b:73:22:
f8:c0:24:73:5b:37:fe:cc:7c:ca:e3:db:1f:ef:ef:
32:64:0c:bc:c1:7d:ca:c2:a2:12:01:08:d1:2f:54:
a0:d3:69:c8:15:61:c4:79:be:14:e4:38:e3:9f:27:
9f:58:b2:0d:2a:d3:51:f9:04:7e:20:0c:38:12:50:
e2:5f:f5:b8:6d:e9:a9:a4:54:a9:a6:7a:54:5a:9d:
65:7a:5e:77:ec:f6:75:4f:32:18:ca:0a:30:54:54:
95:29:17:6f:23:eb:57:b1:43:98:c0:1e:bb:12:1b:
9f:a3:84:8b:57:aa:8f:7c:ea:ab:a1:92:d0:5f:d8:
0c:96:80:5c:2e:30:8f:29:42:41:fc:33:9c:d4:e4:
fa:36:cd:cc:5c:1a:12:fa:2c:1f:93:2b:fc:2b:76:
35:8d:8c:17:f3:02:53:fa:b4:4b:55:e8:f8:91:93:
52:1c:82:b7:11:24:2a:48:d7:f1:30:67:07:b8:3d:
f7:7e:2e:ba:b6:d3:22:34:50:b4:5e:2a:d1:3f:49:
d3:d4:31:10:d0:fd:e6:96:92:a7:dc:c5:e0:34:92:
6d:83:fd:1f:60:83:36:c9:8a:87:2a:95:52:7e:7a:
bc:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:12:2F:F7:62:0B:EE:88:E0:76:79:95:B2:74:D1:EB:50:13:0E:9F
X509v3 Authority Key Identifier:
keyid:0D:D4:41:C3:FF:AE:82:98:42:24:9E:94:4B:03:85:10:81:F4:D9:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdRBw_-ugphCJJ6USwOFEIH02eA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/uRIv92IL7ojgdnmVsnTR61ATDp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/DdRBw_-ugphCJJ6USwOFEIH02eA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.32.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:76:62:22:c2:35:83:1c:93:15:90:e7:41:78:9d:eb:e6:28:
e7:7b:84:21:ba:6e:ea:5f:28:8b:29:00:4e:9e:d7:1b:a6:a9:
23:7b:d1:80:4c:f2:24:25:1e:49:24:d1:56:b2:08:68:d3:e8:
58:93:33:3d:7b:b8:00:7c:b6:b3:17:77:4a:34:0e:26:16:50:
c4:1d:80:33:50:92:21:86:14:b8:35:40:95:bb:7f:d2:33:bf:
62:43:d5:b1:22:c8:5a:b1:c3:55:3f:6e:65:c8:58:94:42:09:
cf:56:ad:c3:d8:35:6c:72:dc:a1:27:50:95:a5:9c:4b:38:8e:
70:dc:16:69:ab:9a:b6:b9:61:57:79:fb:6e:34:09:83:6a:ba:
73:0c:24:c4:0c:ab:89:65:ef:f8:ef:0d:78:98:28:58:0e:99:
f3:37:dc:de:da:a8:00:1a:33:bd:9a:01:b3:06:fc:9f:0c:38:
53:68:d4:3d:1d:08:3f:ed:e4:31:cb:f6:09:9b:c1:6f:f6:1b:
2a:b7:f2:a3:d0:15:0d:47:5e:e4:a1:7d:0c:6f:ca:ae:e8:62:
68:fb:92:4f:5c:42:b2:7a:79:6d:99:d1:96:b5:a0:d1:24:6d:
73:68:70:73:d1:a7:58:bf:47:c7:43:08:46:7f:71:a3:0f:0b:
f7:a9:99:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:00 2024 by rpki-client on console-ams.rpki-client.org