Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/uMd6Qcj_AGmJZqx_GXwNVOm7Thw.roa
File: uMd6Qcj_AGmJZqx_GXwNVOm7Thw.roa (raw, json)
Hash identifier: oehApEHNGzdgkflcQuzpOmBgVYXSCsf6rpm0Vzx1usI=
Subject key identifier: B8:C7:7A:41:C8:FF:00:69:89:66:AC:7F:19:7C:0D:54:E9:BB:4E:1C
Certificate issuer: /CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Certificate serial: 018570B981FCBDE015CE8D65F9F738AD1CA1
Authority key identifier: 35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/uMd6Qcj_AGmJZqx_GXwNVOm7Thw.roa
Signing time: Mon 02 Jan 2023 04:24:43 +0000
ROA not before: Mon 02 Jan 2023 04:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202131
IP address blocks: 185.52.172.0/23 maxlen: 32
2a04:c740::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b9:81:fc:bd:e0:15:ce:8d:65:f9:f7:38:ad:1c:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Validity
Not Before: Jan 2 04:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8c77a41c8ff00698966ac7f197c0d54e9bb4e1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:16:2f:e7:8f:32:00:c5:9a:83:c6:d7:3f:d4:
a0:c0:57:74:d5:38:27:ed:1b:79:b5:78:05:7c:fd:
6e:9f:6e:25:47:10:6e:19:cb:67:ea:88:38:27:7b:
48:74:92:34:25:45:6c:c9:1e:66:21:8f:70:5e:b8:
75:f9:c2:7f:37:f7:30:95:a2:cd:45:8d:5a:d3:4d:
75:e3:46:36:29:f9:7e:80:f0:ad:29:b6:30:c8:58:
a0:5b:33:ee:c4:f0:43:52:57:76:21:d2:df:8b:5e:
21:76:aa:20:b3:87:43:34:91:f3:38:11:6d:63:dc:
86:9e:60:1f:a3:7e:7f:89:d2:3c:50:65:20:18:c7:
85:94:02:26:d8:21:fe:6e:b8:e7:81:af:19:1d:d5:
bc:ad:1c:9e:40:2a:cc:08:f7:fc:b9:1b:f7:29:75:
3a:11:2a:78:45:fc:f9:3c:41:69:9d:46:d9:60:25:
ec:f2:57:9b:c2:8f:74:78:c1:7c:0e:92:09:08:1d:
cf:ef:a9:7b:91:6c:33:98:42:3f:29:98:3b:2a:2c:
9a:06:8f:ff:49:ad:22:bd:38:4a:e5:4a:9c:df:20:
d9:11:63:07:95:bc:5b:16:07:98:8c:44:17:81:8b:
bf:c5:bc:43:e9:0c:af:ba:4b:48:47:db:c2:3d:76:
79:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:C7:7A:41:C8:FF:00:69:89:66:AC:7F:19:7C:0D:54:E9:BB:4E:1C
X509v3 Authority Key Identifier:
keyid:35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/uMd6Qcj_AGmJZqx_GXwNVOm7Thw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.52.172.0/23
IPv6:
2a04:c740::/29
Signature Algorithm: sha256WithRSAEncryption
78:14:46:73:68:1f:76:e4:49:32:b0:86:bd:26:8a:64:93:bc:
f7:24:64:6b:4a:10:ce:9b:70:9c:bb:6d:b9:ab:d7:fd:86:6a:
e8:28:e2:f9:c7:6c:46:37:f1:61:f5:76:fa:07:a7:6b:aa:29:
b5:ac:69:30:18:21:08:14:49:5f:2b:87:63:f0:7a:4e:04:51:
b3:ba:22:8c:01:d3:14:29:2e:20:94:34:ef:aa:9e:73:f3:7d:
67:e0:20:b6:f4:e9:a6:9d:7d:e6:3a:d8:1d:52:0d:7d:44:37:
fc:67:ae:6e:25:e8:78:a9:7f:7b:23:11:42:e7:a4:24:0c:8f:
3b:3c:5a:9a:92:d0:f3:f8:b5:c6:b7:f3:fc:43:fb:09:f0:61:
a8:d8:c7:a1:3e:ba:f3:65:3c:00:6f:d0:94:c8:f3:b0:87:34:
d6:77:d2:88:6b:d4:57:9c:94:82:fa:7a:a8:7d:cd:26:3d:40:
86:e5:ac:a4:00:21:76:f9:77:bf:ca:61:10:1b:23:37:64:a3:
0c:73:1d:f7:3a:b1:cb:ab:cf:0e:45:a2:ba:4f:36:a2:32:2d:
93:36:d5:98:45:4d:ec:b6:83:9f:c1:cb:f4:7e:f6:eb:4a:f9:
63:53:50:9e:e4:4d:da:ec:a3:e9:47:5a:8e:b3:28:a6:d8:7d:
99:23:2e:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:33 2024 by rpki-client on console-fra.rpki-client.org