Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/UomD-OoBRTveARS3MuCpNk_q6fs.roa
File: UomD-OoBRTveARS3MuCpNk_q6fs.roa (raw, json)
Hash identifier: YdoOunvBH5vdU+pNVxIn8uhhK7bUG/S1hKHtP4R3uvk=
Subject key identifier: 52:89:83:F8:EA:01:45:3B:DE:01:14:B7:32:E0:A9:36:4F:EA:E9:FB
Certificate issuer: /CN=706d3abbb478b74ef2adef9bb7c4336e34111d51
Certificate serial: 018A661410A58080F548D6EB3A0BFC60ADFA
Authority key identifier: 70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cG06u7R4t07yre-bt8QzbjQRHVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/UomD-OoBRTveARS3MuCpNk_q6fs.roa
Signing time: Tue 05 Sep 2023 16:01:45 +0000
ROA not before: Tue 05 Sep 2023 16:01:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.234.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Oct 2023 09:55:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:66:14:10:a5:80:80:f5:48:d6:eb:3a:0b:fc:60:ad:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=706d3abbb478b74ef2adef9bb7c4336e34111d51
Validity
Not Before: Sep 5 16:01:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=528983f8ea01453bde0114b732e0a9364feae9fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:1d:71:4a:a6:a4:ab:07:38:77:79:5c:0f:f1:
30:41:e6:ba:5b:f8:1e:64:69:15:a1:81:c7:98:24:
cf:fd:86:65:a5:7e:83:65:b5:09:61:60:c6:41:b3:
01:9f:56:a5:f5:43:6f:cb:93:4c:87:9c:07:fc:7f:
85:3d:da:22:07:8a:09:3b:d3:7e:24:04:5e:0c:1a:
4f:99:2d:62:5e:92:c6:e9:d0:a5:61:dc:c5:b9:56:
47:84:24:82:6c:43:ad:d7:82:9d:4d:34:45:e8:96:
88:a2:55:28:e1:6d:21:78:6b:8c:2f:c7:a9:d4:30:
4b:a2:ef:cd:cd:a1:25:72:c2:cb:a6:d6:7f:43:2f:
f5:e0:a6:9c:f3:94:50:31:7b:ab:36:18:9d:ef:41:
14:f3:a5:e9:c8:8e:c6:38:01:b5:9a:8b:89:f3:80:
f0:73:a2:52:dc:f9:74:db:11:39:14:dc:59:f8:59:
24:ad:96:a2:4e:b5:3a:85:16:c8:10:36:17:a0:48:
8e:dd:c9:e1:7b:c3:8d:3f:49:0e:40:8f:f2:88:3f:
77:a9:20:a2:12:75:20:ea:b1:04:82:51:58:ec:81:
9e:90:b4:c5:79:ca:66:c1:bc:7f:63:22:33:52:e2:
5d:7e:25:b4:ae:c1:d9:cd:c4:be:6c:cb:e7:cc:db:
22:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:89:83:F8:EA:01:45:3B:DE:01:14:B7:32:E0:A9:36:4F:EA:E9:FB
X509v3 Authority Key Identifier:
keyid:70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cG06u7R4t07yre-bt8QzbjQRHVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/UomD-OoBRTveARS3MuCpNk_q6fs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/cG06u7R4t07yre-bt8QzbjQRHVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.234.76.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:cc:bf:c8:69:b2:d1:56:35:f3:92:93:1f:d4:3d:8e:3c:cd:
6e:69:6f:a2:04:0d:c2:65:d6:74:23:76:41:8c:e1:bf:86:73:
11:b1:75:78:50:c7:14:3e:81:ab:85:6b:91:34:c5:49:25:07:
71:e6:79:e2:be:af:b5:09:9f:03:87:37:29:3d:07:cc:5f:28:
3f:18:98:8c:26:99:55:c7:ea:af:1c:a0:c5:ca:08:fb:66:74:
ba:78:5b:63:41:48:af:73:c8:bc:c3:ad:a0:db:5d:cc:93:5d:
5a:87:d4:3b:f3:b4:8a:b6:ec:cc:77:ae:0b:52:18:1e:19:28:
e6:13:21:17:25:ea:20:05:7c:31:95:09:88:39:3f:d9:9e:ab:
eb:db:a1:d2:79:91:02:a1:aa:0d:43:5f:cb:dc:26:cc:0b:2b:
d6:b3:24:0f:b6:f7:a8:49:84:fb:2c:49:ac:7a:21:86:53:04:
ab:1b:c0:e6:65:b1:b9:a8:65:14:fd:29:ed:89:e1:71:8b:44:
52:af:7f:95:e0:ae:47:46:59:34:13:52:48:ce:61:f8:d4:94:
e7:47:6e:2a:0f:5f:11:44:ba:0b:ca:a4:80:f1:f3:fa:45:d1:
a0:88:24:c9:6e:33:fe:c0:66:b3:85:80:ce:bc:c3:b6:30:f8:
00:20:32:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:26 2024 by rpki-client on console-ams.rpki-client.org