Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/uah180SDSnKzWm47iv2uQxl3qtg.roa
File: uah180SDSnKzWm47iv2uQxl3qtg.roa (raw, json)
Hash identifier: GhPI8K1busRhGgce7oHuQL82QZDHmWCi9Jtlz7X5VCE=
Subject key identifier: B9:A8:75:F3:44:83:4A:72:B3:5A:6E:3B:8A:FD:AE:43:19:77:AA:D8
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 018CF77666954747C79AA479D85DBE8B62F6
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/uah180SDSnKzWm47iv2uQxl3qtg.roa
Signing time: Thu 11 Jan 2024 07:39:40 +0000
ROA not before: Thu 11 Jan 2024 07:39:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48715
IP address blocks: 188.212.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jan 2024 09:27:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f7:76:66:95:47:47:c7:9a:a4:79:d8:5d:be:8b:62:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Jan 11 07:39:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b9a875f344834a72b35a6e3b8afdae431977aad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6c:13:40:31:d4:4b:ba:9c:10:c5:f7:cb:7f:
64:31:68:90:e7:3d:41:65:e4:21:60:a7:d1:51:5a:
e9:4b:95:9f:6b:e0:f8:ef:8b:39:e0:a8:d8:9a:45:
12:8e:2c:23:6b:5b:b4:7e:4e:97:2a:90:c3:65:84:
2f:0e:2f:0d:b0:2c:77:df:15:ab:c7:fa:05:d3:f6:
a1:a8:74:18:53:ed:52:ad:60:40:6e:0a:be:81:65:
3c:d5:94:39:f6:20:17:c1:30:b7:ed:13:18:19:29:
c6:cf:cc:3f:9b:ab:23:e5:b3:21:7e:c5:97:73:fe:
9c:22:57:8c:30:a0:7c:d2:56:02:65:65:ae:20:a5:
f7:8b:63:de:26:15:ce:61:73:96:97:a8:9b:77:ba:
ff:e2:0b:e4:cb:80:cb:a3:fb:b1:1a:78:5c:9a:b0:
2f:26:ff:66:b9:01:60:e1:6b:59:af:79:3d:bb:70:
ca:ba:b1:b3:e6:57:50:c1:53:47:96:46:0c:3d:7d:
0e:51:ed:b5:fb:33:9a:2b:0a:9a:c7:49:b0:80:c0:
cf:ad:55:de:29:ec:54:06:42:5e:31:06:46:98:b8:
e1:7e:b6:39:a3:a0:35:ab:60:4b:76:2d:53:fc:f7:
46:cf:8c:c7:9c:63:9b:87:68:87:1a:19:3d:57:02:
9b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:A8:75:F3:44:83:4A:72:B3:5A:6E:3B:8A:FD:AE:43:19:77:AA:D8
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/uah180SDSnKzWm47iv2uQxl3qtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.212.97.0/24
Signature Algorithm: sha256WithRSAEncryption
28:d8:84:4c:1d:ca:3e:b8:18:08:2d:69:72:0d:13:51:e9:a6:
d4:a4:25:e2:1d:be:8a:41:d8:e3:e3:ed:eb:05:21:82:76:c9:
53:02:f0:39:00:62:ba:59:2d:a4:73:5d:60:72:af:77:84:dc:
49:d4:a0:8f:a3:eb:da:1f:92:a1:86:b5:ed:5a:38:7e:a3:4a:
c8:9b:10:31:4b:a3:42:23:27:ee:4d:6e:c4:d0:3e:3c:92:8b:
22:66:24:9b:21:f1:df:99:a6:96:7c:46:ea:10:f8:80:97:fb:
0f:c8:7a:12:0e:cc:97:78:82:36:09:49:3a:d1:b2:40:0e:3e:
20:c8:d8:89:ad:02:89:d3:1d:00:24:90:bb:53:6b:65:63:0d:
fe:64:60:82:8b:af:c6:98:41:3c:1b:71:bb:25:56:3b:6e:c9:
ed:9f:cc:e0:5c:af:98:4c:19:24:16:f9:f3:ce:ad:4d:7a:16:
28:04:fd:ac:47:5d:39:c3:b1:92:73:28:db:de:0d:ec:d8:dd:
de:6a:cc:a8:21:44:6b:87:f2:d4:72:08:4e:b9:30:d2:e4:2d:
03:10:2f:71:31:ac:84:ed:7a:9d:7a:74:41:02:ee:42:76:63:
8e:95:68:91:10:b7:68:0b:8f:76:2e:c6:50:a8:71:ed:0b:58:
be:63:37:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:49 2024 by rpki-client on console-ams.rpki-client.org