Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b7b933-7e80-4b37-a285-130e4dc015ab/1/UuVH5YF0merrM3DDamuuPSQZmsQ.roa
File: UuVH5YF0merrM3DDamuuPSQZmsQ.roa (raw, json)
Hash identifier: SQAt9dW/WLFuF9140H00XP+ZRfs2Bti+ea0L772w148=
Subject key identifier: 52:E5:47:E5:81:74:99:EA:EB:33:70:C3:6A:6B:AE:3D:24:19:9A:C4
Certificate issuer: /CN=b031e2ca824ca8d5562406a7021ae3c13a1425d8
Certificate serial: 0185714C4B54E5B87D626580101F4870700C
Authority key identifier: B0:31:E2:CA:82:4C:A8:D5:56:24:06:A7:02:1A:E3:C1:3A:14:25:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sDHiyoJMqNVWJAanAhrjwToUJdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b7b933-7e80-4b37-a285-130e4dc015ab/1/UuVH5YF0merrM3DDamuuPSQZmsQ.roa
Signing time: Mon 02 Jan 2023 07:05:03 +0000
ROA not before: Mon 02 Jan 2023 07:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3292
IP address blocks: 185.72.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:4b:54:e5:b8:7d:62:65:80:10:1f:48:70:70:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b031e2ca824ca8d5562406a7021ae3c13a1425d8
Validity
Not Before: Jan 2 07:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52e547e5817499eaeb3370c36a6bae3d24199ac4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c6:f5:8c:a9:f4:bc:2d:5e:d6:a3:9b:46:19:
a7:79:cd:f0:71:b7:f6:e7:27:71:01:75:ce:d7:c6:
f7:d9:5f:51:f6:8b:dd:bd:dd:a4:ef:d5:8f:a0:08:
08:79:02:e4:8a:90:1f:c8:91:1f:74:8e:26:42:98:
09:29:27:a9:28:e3:1a:82:9f:17:b1:2f:82:1d:46:
d7:8b:3a:7c:b7:24:39:e3:3f:c4:1c:49:12:8a:84:
c5:d3:f6:e0:5d:01:ec:8a:bb:90:b0:c7:42:04:96:
71:4b:e7:c5:42:c6:4a:e5:b9:8c:3c:3f:b2:4e:50:
65:75:d2:4b:8d:d8:cc:7a:56:ac:65:91:05:ff:84:
99:68:b8:84:c4:95:0d:fc:42:a3:c2:6a:18:55:6b:
ce:96:fc:86:03:4d:f4:89:c5:7a:65:97:c0:1f:d0:
90:18:a2:31:b7:d9:bf:73:f0:f6:99:38:0d:a1:dd:
aa:49:09:2c:40:ed:be:de:d8:dd:6a:43:96:c8:a9:
f8:92:33:1c:d0:57:1d:d5:fe:2a:40:0c:3d:71:90:
0e:4a:73:fc:c0:98:1f:9d:0b:f2:75:a3:10:7a:b2:
a0:28:8c:4b:f6:db:23:a6:d5:75:a0:74:85:fc:82:
f4:35:6f:42:ef:a1:f9:c7:95:d4:c9:c4:07:ae:bb:
28:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:E5:47:E5:81:74:99:EA:EB:33:70:C3:6A:6B:AE:3D:24:19:9A:C4
X509v3 Authority Key Identifier:
keyid:B0:31:E2:CA:82:4C:A8:D5:56:24:06:A7:02:1A:E3:C1:3A:14:25:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sDHiyoJMqNVWJAanAhrjwToUJdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b7b933-7e80-4b37-a285-130e4dc015ab/1/UuVH5YF0merrM3DDamuuPSQZmsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b7b933-7e80-4b37-a285-130e4dc015ab/1/sDHiyoJMqNVWJAanAhrjwToUJdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.142.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:47:86:6d:8e:78:b7:89:cf:50:95:f5:fd:34:36:b6:8f:55:
bd:15:a2:98:3e:b3:9d:c7:07:51:1d:24:e1:cc:fb:e3:1f:82:
22:ad:82:eb:13:47:5b:00:04:65:1e:e4:58:6e:7d:d5:df:ca:
58:63:f8:63:3d:df:4e:4f:43:e1:31:f6:ad:3f:6b:b6:59:1b:
61:7c:62:43:bf:02:a5:50:6e:32:cd:1a:28:6e:b7:74:42:53:
ec:27:e4:d1:dc:f4:5b:46:4a:15:fc:ae:7c:e1:50:83:be:f6:
0b:20:f5:65:7e:01:f6:db:fd:65:e7:95:16:39:98:dd:1d:4a:
1c:a4:88:7b:21:69:39:ee:02:69:d5:59:38:02:47:c9:56:fb:
6b:8f:e5:79:1f:82:b2:d5:27:0b:d5:75:53:1e:6d:a7:c6:19:
48:ec:43:74:de:8a:29:83:ed:d7:ce:e3:8c:93:eb:98:c6:d7:
71:92:fc:cc:50:36:70:06:75:d9:3a:2a:51:47:d9:18:6d:18:
97:c3:45:e7:7a:56:7f:c6:ee:ec:3b:4a:6d:20:bf:66:d4:3e:
5e:83:6a:c1:b9:b9:a6:b7:83:33:b5:38:c1:07:80:90:fc:e5:
4a:97:e2:f7:b8:50:0f:75:72:b9:3d:70:a0:cc:83:a9:42:91:
d1:c6:5a:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:19 2024 by rpki-client on console-ams.rpki-client.org