Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/UPrZLQtlY-q49MglOg5vNFEbOLA.roa
File: UPrZLQtlY-q49MglOg5vNFEbOLA.roa (raw, json)
Hash identifier: hZv4SxIpfuo1SXwJ1dji7O/9xV5sF5uw4W2Xil4CBuM=
Subject key identifier: 50:FA:D9:2D:0B:65:63:EA:B8:F4:C8:25:3A:0E:6F:34:51:1B:38:B0
Certificate issuer: /CN=f7aa039b886b226578bdb6a42781bf59044bb138
Certificate serial: 01856E5D4E10AA16FFFF591967D18DE8DA19
Authority key identifier: F7:AA:03:9B:88:6B:22:65:78:BD:B6:A4:27:81:BF:59:04:4B:B1:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/96oDm4hrImV4vbakJ4G_WQRLsTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/UPrZLQtlY-q49MglOg5vNFEbOLA.roa
Signing time: Sun 01 Jan 2023 17:24:46 +0000
ROA not before: Sun 01 Jan 2023 17:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203703
IP address blocks: 185.124.188.0/22 maxlen: 25
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:5d:4e:10:aa:16:ff:ff:59:19:67:d1:8d:e8:da:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7aa039b886b226578bdb6a42781bf59044bb138
Validity
Not Before: Jan 1 17:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50fad92d0b6563eab8f4c8253a0e6f34511b38b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d9:30:54:d3:2d:b2:85:67:93:1c:f9:7c:3a:
be:c6:58:96:2a:97:5d:e0:15:84:4c:28:d0:69:81:
0e:ef:aa:14:9e:59:73:47:f2:4d:85:b3:18:9e:11:
c7:5b:15:7f:07:13:51:22:b0:d7:a3:57:fa:f7:a5:
9d:12:bb:98:8e:b7:4f:a2:b7:ae:82:2c:5d:42:b1:
95:82:13:90:5a:6a:37:4b:b7:b2:af:7f:43:26:29:
94:b4:0d:fc:0b:37:76:94:fd:1d:65:9b:7e:1d:56:
c6:66:c6:a5:8e:4c:d5:f4:d8:37:4b:62:8d:fc:f9:
4c:cf:44:25:a9:86:11:b2:df:ce:f6:51:43:06:40:
10:6c:92:3a:cc:f6:55:92:c4:40:8f:80:1f:b6:2f:
7b:44:3b:e0:9a:cb:c5:a9:9f:7b:ec:35:36:ec:e0:
21:63:ed:fd:53:aa:e5:f6:88:65:d3:9f:7f:91:6f:
31:1e:6a:1a:3e:ca:08:49:2d:9a:ea:2c:bf:d3:21:
5e:88:4e:32:c4:5f:f9:4c:94:16:48:ed:85:14:c7:
08:fd:48:b0:f1:7b:af:2b:bb:ea:04:e8:92:e6:7b:
07:97:00:a8:17:e2:3e:00:04:d8:c1:f4:b9:9d:29:
f9:94:8a:34:8f:1f:0e:12:ef:07:2b:24:0f:70:0e:
b5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:FA:D9:2D:0B:65:63:EA:B8:F4:C8:25:3A:0E:6F:34:51:1B:38:B0
X509v3 Authority Key Identifier:
keyid:F7:AA:03:9B:88:6B:22:65:78:BD:B6:A4:27:81:BF:59:04:4B:B1:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96oDm4hrImV4vbakJ4G_WQRLsTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/UPrZLQtlY-q49MglOg5vNFEbOLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/96oDm4hrImV4vbakJ4G_WQRLsTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.188.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:80:e2:50:fb:51:7f:89:09:6b:98:a2:b8:bb:fa:54:b4:d0:
b1:ad:f9:2b:dd:e8:8b:f1:86:3b:7a:b6:0d:b0:3f:26:4b:84:
4e:9e:88:a2:48:b6:07:d9:ce:de:de:40:16:6e:97:73:ea:7d:
36:a0:4b:c3:0b:2f:a2:e3:43:0c:c0:10:f2:cd:72:c6:e0:36:
7e:8a:b7:48:27:9e:0f:0a:54:2c:7e:33:f5:55:b9:71:07:3a:
a7:d8:3a:5f:ba:1a:bc:b6:38:74:b1:28:28:14:23:a1:36:23:
40:f5:b2:7f:eb:87:cc:44:2e:7e:75:8e:99:42:13:57:dc:e0:
0a:e1:33:74:ca:c2:ec:c5:88:07:c2:f8:e3:18:76:57:5d:b7:
0a:3f:2f:a1:54:5e:f3:9a:23:c9:77:b2:37:1c:1c:49:57:3a:
1a:76:af:1a:37:57:3d:8c:65:2a:34:e1:85:3c:1b:5e:50:c1:
e7:81:63:18:c2:54:fb:51:06:f3:1a:e5:5a:0b:1a:7d:68:f9:
58:1a:01:38:91:ca:b7:da:b9:f8:75:d1:38:0c:64:9e:6d:0d:
30:b0:cf:81:e4:7b:c1:d8:34:e4:68:b7:62:92:02:74:1e:6c:
f0:e5:6d:83:da:5e:ee:b9:67:39:d3:0b:eb:78:6e:1b:11:6c:
c9:8d:01:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:23 2024 by rpki-client on console-fra.rpki-client.org