Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/02b522-9f08-46fc-99ea-9f3e8f9efc99/1/UMj6Jf51Fim1xW6go244eR1wy6Q.roa
File: UMj6Jf51Fim1xW6go244eR1wy6Q.roa (raw, json)
Hash identifier: oIJxrQPcwwriT6L4tgYcObCH/5ePGAhZUWg4/MvG5xw=
Subject key identifier: 50:C8:FA:25:FE:75:16:29:B5:C5:6E:A0:A3:6E:38:79:1D:70:CB:A4
Certificate issuer: /CN=61aedfdc7133e95f42498f7760f68fb80faa84ac
Certificate serial: 01856B93520303EA216D7D7065DC634F77D2
Authority key identifier: 61:AE:DF:DC:71:33:E9:5F:42:49:8F:77:60:F6:8F:B8:0F:AA:84:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ya7f3HEz6V9CSY93YPaPuA-qhKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/02b522-9f08-46fc-99ea-9f3e8f9efc99/1/UMj6Jf51Fim1xW6go244eR1wy6Q.roa
Signing time: Sun 01 Jan 2023 04:24:54 +0000
ROA not before: Sun 01 Jan 2023 04:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61276
IP address blocks: 91.190.156.0/24 maxlen: 24
2a11:6380::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:93:52:03:03:ea:21:6d:7d:70:65:dc:63:4f:77:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61aedfdc7133e95f42498f7760f68fb80faa84ac
Validity
Not Before: Jan 1 04:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50c8fa25fe751629b5c56ea0a36e38791d70cba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:3d:b1:54:0a:b3:6c:78:a0:73:94:ef:26:bf:
c7:3b:13:9d:d0:77:ba:44:6e:5a:ff:39:e1:24:b6:
68:22:4c:70:e6:02:64:65:ff:6a:4d:da:3a:c1:bf:
88:f2:75:79:0e:e1:b4:df:a4:6b:d1:8c:8a:e8:95:
27:b4:c8:62:34:79:16:36:1a:8c:cd:ab:9d:d6:30:
fc:a4:f2:70:1e:4c:cb:99:25:df:b6:e1:56:29:b6:
f6:e7:03:3d:a9:8a:af:81:a5:22:77:9c:af:5a:dd:
f1:e3:b6:50:c0:0e:a3:02:16:67:d7:8a:13:b8:79:
24:57:c3:de:5d:62:be:71:d4:e6:f9:c0:cc:67:b9:
4d:62:65:14:db:df:66:78:5c:d3:78:8d:66:c5:46:
9a:ba:0d:81:13:ab:8b:f3:24:54:c5:ae:49:69:fb:
93:92:a2:3e:ad:4c:72:6f:1e:cd:df:b7:0c:da:b5:
69:98:c7:d1:c3:36:04:4a:8f:61:26:ad:ef:49:46:
e0:0d:c5:4a:85:99:06:04:d7:dd:0a:7f:ba:45:b1:
81:ba:1e:2b:cf:a1:6a:7e:8d:47:b5:07:ed:5e:b3:
9a:d7:8d:4f:2e:6d:26:2f:7c:ce:70:14:07:cb:6c:
c8:32:54:04:6a:de:66:cb:d6:a1:f4:38:58:c4:15:
a9:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:C8:FA:25:FE:75:16:29:B5:C5:6E:A0:A3:6E:38:79:1D:70:CB:A4
X509v3 Authority Key Identifier:
keyid:61:AE:DF:DC:71:33:E9:5F:42:49:8F:77:60:F6:8F:B8:0F:AA:84:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ya7f3HEz6V9CSY93YPaPuA-qhKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/02b522-9f08-46fc-99ea-9f3e8f9efc99/1/UMj6Jf51Fim1xW6go244eR1wy6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/02b522-9f08-46fc-99ea-9f3e8f9efc99/1/Ya7f3HEz6V9CSY93YPaPuA-qhKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.190.156.0/24
IPv6:
2a11:6380::/29
Signature Algorithm: sha256WithRSAEncryption
7c:c2:8a:fb:50:e9:66:04:c3:98:36:5b:69:12:ef:93:ae:59:
42:dc:30:25:09:ff:81:af:1a:13:ac:fc:42:60:18:19:d0:67:
bb:b6:06:21:69:54:1d:b3:07:59:10:1a:0b:52:3a:6b:06:54:
7a:26:5d:9d:70:f2:e1:b3:3c:ad:66:19:13:9d:09:80:6e:5d:
5a:ec:8a:d2:65:5d:5a:94:c2:a1:8b:e0:53:bf:e9:b6:f9:c6:
f2:dd:d2:3e:bf:a0:52:95:de:95:8c:68:20:d2:0e:81:0c:c1:
41:45:00:de:17:a9:ee:1d:4a:ea:f2:6e:04:95:e7:e4:6b:fa:
c7:a5:17:fd:59:e0:8c:bb:ed:ce:b7:65:6d:e1:87:52:81:df:
eb:f8:b8:56:c7:36:05:ad:31:c0:00:d8:da:b0:b8:56:49:e4:
83:04:5a:02:57:bd:7c:93:8f:b7:87:ea:c0:7e:5d:95:a3:c3:
b8:25:a9:91:1d:22:14:64:e6:f4:a3:43:0d:3c:fb:bf:61:9f:
a0:8f:1a:90:2c:bd:69:2d:5c:38:40:48:70:37:33:47:a6:a4:
19:52:62:38:11:ee:9b:5d:87:aa:8c:a6:07:30:72:f0:b9:e2:
31:b7:f1:4c:8f:be:f1:d5:d3:ed:4c:9a:5d:a8:c0:f3:f2:51:
63:07:eb:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:46 2024 by rpki-client on console-ams.rpki-client.org