Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/3838c4-6e46-49a8-8c14-ae8b8d788700/1/uMCBMH9unGn3VBIPmVOTB2O-r88.roa
File: uMCBMH9unGn3VBIPmVOTB2O-r88.roa (raw, json)
Hash identifier: 2zflhXWFYrvN64MBFuJNhfnqsfET9pRwuDFfl9j97Ls=
Subject key identifier: B8:C0:81:30:7F:6E:9C:69:F7:54:12:0F:99:53:93:07:63:BE:AF:CF
Certificate issuer: /CN=2cda5f03eaf513a77f2ec20de5bb1672c5d279ab
Certificate serial: 018570B0AD785634CEDA9B0FE0C0200578E4
Authority key identifier: 2C:DA:5F:03:EA:F5:13:A7:7F:2E:C2:0D:E5:BB:16:72:C5:D2:79:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LNpfA-r1E6d_LsIN5bsWcsXSeas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/3838c4-6e46-49a8-8c14-ae8b8d788700/1/uMCBMH9unGn3VBIPmVOTB2O-r88.roa
Signing time: Mon 02 Jan 2023 04:15:04 +0000
ROA not before: Mon 02 Jan 2023 04:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56532
IP address blocks: 91.224.226.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:ad:78:56:34:ce:da:9b:0f:e0:c0:20:05:78:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cda5f03eaf513a77f2ec20de5bb1672c5d279ab
Validity
Not Before: Jan 2 04:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8c081307f6e9c69f754120f9953930763beafcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a2:31:5b:3d:97:01:83:cf:cb:f8:ba:51:66:
39:3d:12:56:7f:a2:52:48:9a:5b:0a:c9:1a:e1:14:
f7:72:d7:18:14:01:51:7f:ae:ea:fa:89:79:96:be:
b9:54:63:ba:e3:c1:ce:7e:10:c0:b6:ae:e0:aa:85:
db:2d:44:b5:57:97:7a:de:6d:ab:ce:88:1b:4e:19:
33:b0:36:e2:1a:6a:83:78:46:ff:0c:12:7c:33:2d:
75:e9:65:b7:e5:13:4d:b5:89:35:f9:02:87:c9:04:
89:4e:f4:67:70:2a:db:4e:86:d3:f6:46:28:44:b5:
7c:a5:22:ce:d7:4b:94:a0:42:09:22:0d:a4:fd:98:
97:1b:ae:02:1d:e2:91:db:b5:61:1a:53:86:57:20:
b9:86:db:c0:6d:08:53:56:8f:07:f7:5c:5d:9a:49:
c3:d2:f8:aa:0b:e3:bc:9b:d2:e3:34:81:60:19:e4:
c0:93:86:da:fb:cd:14:60:a6:73:ab:c8:93:bb:96:
c3:f2:c5:d8:a3:ca:0b:00:46:71:e1:75:91:2d:22:
c6:5e:22:b4:3c:cd:cc:16:01:2f:d1:27:90:4e:cf:
e3:ec:e9:2f:3b:5a:a2:13:41:2b:0c:47:0d:8e:c9:
c1:c1:a5:26:74:36:c0:30:ab:a3:64:3e:cf:8d:3c:
b6:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:C0:81:30:7F:6E:9C:69:F7:54:12:0F:99:53:93:07:63:BE:AF:CF
X509v3 Authority Key Identifier:
keyid:2C:DA:5F:03:EA:F5:13:A7:7F:2E:C2:0D:E5:BB:16:72:C5:D2:79:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LNpfA-r1E6d_LsIN5bsWcsXSeas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/3838c4-6e46-49a8-8c14-ae8b8d788700/1/uMCBMH9unGn3VBIPmVOTB2O-r88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/3838c4-6e46-49a8-8c14-ae8b8d788700/1/LNpfA-r1E6d_LsIN5bsWcsXSeas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.226.0/23
Signature Algorithm: sha256WithRSAEncryption
60:d8:98:19:de:18:ae:38:53:11:ab:8a:6a:88:2d:a9:cd:1b:
dd:b2:37:99:84:9a:47:18:d2:d0:ef:d6:dd:a9:96:64:b9:f8:
5c:33:03:a0:61:a9:ba:97:a4:94:44:27:70:ed:c1:11:f6:75:
e1:2d:23:4a:21:b3:7d:33:aa:74:01:e1:36:81:81:e0:37:f8:
a9:9d:ea:8c:99:f4:cb:7b:8b:c1:3b:41:9e:b9:54:7b:61:50:
5f:74:e4:3b:75:bd:ae:41:21:d8:2e:90:33:50:d7:06:57:61:
40:2b:83:28:15:98:27:9b:a6:ee:90:ad:6a:df:2b:5e:f0:10:
20:46:2a:34:70:bd:b0:f6:5a:0e:a6:0f:3e:2b:07:0c:f7:25:
30:de:93:d4:36:16:fa:87:cb:ae:3b:ee:cd:15:c6:ba:c0:1c:
60:fa:dd:c8:71:15:80:c9:eb:d0:8e:31:58:1c:83:67:48:16:
5c:8e:6e:d7:a4:77:9f:d8:29:3e:9f:6e:c5:72:8a:e8:41:b4:
d7:a0:03:86:4e:4c:58:09:5e:6d:b5:62:e1:12:5e:91:b1:fc:
d7:0b:24:2e:f3:47:4e:2f:f2:3c:2a:ee:71:a2:f9:f8:35:60:
2b:d2:cf:a8:a3:f1:22:b4:53:2e:15:85:1e:d5:bb:b4:dd:a5:
48:a1:8c:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:12 2024 by rpki-client on console-fra.rpki-client.org