Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/59703f-f003-4845-983a-93e918d10ec5/1/UQlWIzJmQvHLSyBaFj2gzfFXLN8.roa
File: UQlWIzJmQvHLSyBaFj2gzfFXLN8.roa (raw, json)
Hash identifier: C0ZS3CBfCKelElTo9dupBngvw74t2ofNyA3MW6+WKZ4=
Subject key identifier: 51:09:56:23:32:66:42:F1:CB:4B:20:5A:16:3D:A0:CD:F1:57:2C:DF
Certificate issuer: /CN=c2746ccb7e73a9cc30ef04edd7cf16cc1d946894
Certificate serial: 01856D787FB9827EB88D3369FA14D34297A1
Authority key identifier: C2:74:6C:CB:7E:73:A9:CC:30:EF:04:ED:D7:CF:16:CC:1D:94:68:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wnRsy35zqcww7wTt188WzB2UaJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/59703f-f003-4845-983a-93e918d10ec5/1/UQlWIzJmQvHLSyBaFj2gzfFXLN8.roa
Signing time: Sun 01 Jan 2023 13:14:51 +0000
ROA not before: Sun 01 Jan 2023 13:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25145
IP address blocks: 185.203.67.0/24 maxlen: 24
2a11:940::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 09 Oct 2023 10:38:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:7f:b9:82:7e:b8:8d:33:69:fa:14:d3:42:97:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2746ccb7e73a9cc30ef04edd7cf16cc1d946894
Validity
Not Before: Jan 1 13:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51095623326642f1cb4b205a163da0cdf1572cdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e1:1a:ff:a5:7c:cc:91:2a:71:d3:84:bd:a8:
27:e7:92:e7:36:1d:77:91:c0:13:4b:37:8a:e0:e8:
4f:cb:85:95:35:5d:ab:43:a3:7f:60:60:34:b3:5d:
7f:03:90:b3:df:49:db:f6:f6:ba:07:34:9d:8a:41:
b9:74:14:98:d3:ab:59:46:6f:0b:c4:ed:1f:02:a6:
ca:d2:fe:be:ee:9f:d4:71:21:fa:b9:89:f0:90:18:
8a:74:63:64:4c:1f:2f:b2:34:7a:4b:c6:dc:54:0e:
1b:ce:95:bc:7a:7d:53:cb:82:64:a2:69:63:78:4f:
b9:90:d0:d1:6f:37:12:e3:6f:8c:dd:05:cb:d9:cc:
34:8e:5d:a1:9e:cd:89:7f:3e:18:b4:51:aa:d9:1c:
1a:e8:23:0b:ea:20:a7:2b:af:d7:e9:84:e2:12:b3:
3e:69:bc:df:c1:f8:c3:3f:f2:a2:14:a2:0d:c1:8a:
a0:15:9a:1b:1c:7f:a5:e9:df:0e:bb:51:52:83:1c:
ca:07:b6:0b:dc:30:5f:6e:40:10:b6:8f:17:50:c6:
45:6d:04:50:5e:1e:ab:c9:d2:5c:54:e2:83:d7:19:
19:55:69:a1:16:af:e9:f5:e5:af:23:f6:f8:2c:c7:
9d:ab:b4:f8:61:74:13:b2:b9:78:45:0c:1b:f3:ea:
ad:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:09:56:23:32:66:42:F1:CB:4B:20:5A:16:3D:A0:CD:F1:57:2C:DF
X509v3 Authority Key Identifier:
keyid:C2:74:6C:CB:7E:73:A9:CC:30:EF:04:ED:D7:CF:16:CC:1D:94:68:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wnRsy35zqcww7wTt188WzB2UaJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/59703f-f003-4845-983a-93e918d10ec5/1/UQlWIzJmQvHLSyBaFj2gzfFXLN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/59703f-f003-4845-983a-93e918d10ec5/1/wnRsy35zqcww7wTt188WzB2UaJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.67.0/24
IPv6:
2a11:940::/29
Signature Algorithm: sha256WithRSAEncryption
44:ec:f4:eb:a7:44:59:b9:60:78:4f:d5:71:06:00:a1:3b:c4:
29:02:4f:6e:17:31:9e:80:05:68:79:f0:02:44:38:65:00:5e:
7f:85:e5:91:7e:17:12:5d:41:73:4e:c3:31:05:26:c9:78:9c:
d2:6a:1e:4f:97:6a:19:6e:a7:ac:64:72:41:42:10:94:e1:a2:
56:ea:68:f9:0a:6e:b1:a8:b1:2b:2b:de:26:65:10:90:f4:8e:
63:26:4c:cf:59:ff:50:8f:65:71:2d:86:6a:87:14:fd:54:1b:
b5:0c:ed:7d:fd:77:d9:fe:65:0b:da:c2:af:07:f2:33:71:51:
64:60:b1:9e:f3:6a:36:cc:54:37:1a:dd:6f:74:21:f4:a4:af:
93:18:5c:59:a5:70:52:6e:ec:7f:cf:ab:4c:7b:5c:51:c8:ad:
3e:28:6b:3d:3a:00:00:37:64:e7:57:ee:28:61:7e:f2:75:73:
ea:84:b6:b6:d1:0c:d1:08:5e:e7:3b:4e:c7:7e:e1:0e:54:36:
8b:ac:18:45:fd:59:ec:9a:98:4e:0a:46:eb:84:1d:07:9c:0c:
dc:2a:05:e3:16:96:46:a5:a1:6f:8e:d6:de:02:2b:17:17:97:
4f:80:75:19:be:7c:1a:64:40:58:b9:a1:fd:7b:1b:5c:92:a7:
98:c9:67:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:28 2024 by rpki-client on console-fra.rpki-client.org