Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/umAOCvZzoSnSmrhyeXYMsMwqUi4.roa
File: umAOCvZzoSnSmrhyeXYMsMwqUi4.roa (raw, json)
Hash identifier: AM5tHeL494FFQfoq0JmfZWzl0z3Tr3Ks6AFpdQxoOfc=
Subject key identifier: BA:60:0E:0A:F6:73:A1:29:D2:9A:B8:72:79:76:0C:B0:CC:2A:52:2E
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01875110E5846CC6B64CDF3B523572B8B4A6
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/umAOCvZzoSnSmrhyeXYMsMwqUi4.roa
Signing time: Wed 05 Apr 2023 10:57:54 +0000
ROA not before: Wed 05 Apr 2023 10:57:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.137.197.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:51:10:e5:84:6c:c6:b6:4c:df:3b:52:35:72:b8:b4:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Apr 5 10:57:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba600e0af673a129d29ab87279760cb0cc2a522e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7b:de:d0:f8:9f:04:e3:4e:82:8c:c2:12:01:
96:e8:6a:53:72:aa:e3:ab:5d:10:be:ce:80:ec:5d:
e6:7f:bb:5b:f3:6a:0b:01:91:3a:e7:43:bf:fd:ba:
2e:68:8d:a1:ab:3b:d6:04:a1:ec:c3:a2:18:9f:aa:
36:42:1c:41:ad:46:42:88:2f:02:74:50:14:3d:8e:
97:88:9c:21:54:b1:40:02:32:1c:2e:be:e7:dd:fa:
46:4d:ab:bc:db:6e:3f:27:26:ef:0e:1d:9d:36:f2:
24:f5:a7:16:14:20:e4:e9:03:21:c2:38:df:01:3d:
15:ec:52:20:53:db:68:e6:06:42:3a:fd:71:1e:d6:
d0:94:7c:6c:46:75:f8:2a:c8:0e:5e:7d:e1:e3:00:
34:b2:ae:7e:40:a5:a7:31:08:46:49:1b:ff:cc:ff:
71:52:0c:cd:09:d8:75:dc:c8:da:09:9e:3c:52:94:
0a:98:ca:4a:72:af:1a:e3:cf:1d:05:ab:8d:2b:54:
7f:d6:eb:87:b7:45:cc:fb:a4:43:29:de:c5:1c:47:
2d:2d:b6:55:02:82:d5:e1:24:58:e3:4b:c9:3a:99:
59:4f:d6:27:4c:b7:46:15:ac:5c:8e:97:21:5c:43:
db:50:1d:61:bf:fd:55:41:75:a2:49:47:95:b8:a7:
83:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:60:0E:0A:F6:73:A1:29:D2:9A:B8:72:79:76:0C:B0:CC:2A:52:2E
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/umAOCvZzoSnSmrhyeXYMsMwqUi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.197.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:2f:98:ff:ad:89:b8:79:d6:70:55:55:d4:f1:d1:12:e2:95:
b7:88:fa:0c:c6:93:17:ed:80:e3:8a:21:97:d5:95:70:64:39:
37:37:94:f4:99:d4:dd:ea:0a:44:a9:25:d0:35:36:54:23:7e:
d3:62:f2:dd:47:15:aa:1d:8e:e6:b8:ab:6a:89:52:e3:f9:db:
54:21:e9:b6:1f:e3:a7:60:0f:26:77:2c:b9:b4:85:e8:c2:55:
74:1f:60:3a:02:31:ef:cf:96:1c:33:91:76:7f:b9:97:67:ae:
1a:d5:c3:27:c6:e8:63:8f:5e:79:d9:b3:5e:0f:62:a2:7a:06:
bc:76:50:18:a3:f8:d2:bb:56:07:91:bd:70:38:51:52:9c:7b:
ad:35:84:e0:7a:31:c4:b2:25:77:6a:6c:26:2b:e7:46:69:1b:
65:3b:c4:1d:7a:d8:dd:b8:76:11:6d:9f:9f:08:91:dd:09:ae:
12:80:a8:8d:43:52:4d:bf:a3:56:fb:e4:1b:f6:cc:2c:a5:8a:
14:dd:e5:47:8f:46:b7:1a:9d:e7:b6:1a:d8:6a:60:5c:a6:e0:
7b:31:6c:ef:0a:59:04:4a:49:20:24:f3:e9:5b:1a:fa:a5:ed:
fe:72:5e:d3:ab:ca:eb:2d:78:71:d0:bc:6e:33:c8:44:cc:40:
c9:10:48:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:25 2023 by rpki-client on console-ams.rpki-client.org