Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/UzmiQ6qoMqZZSAx1Ah2utP1Cp70.roa
File: UzmiQ6qoMqZZSAx1Ah2utP1Cp70.roa (raw, json)
Hash identifier: LeARWKPyld1I+gXXoI5mWDi+PJqREIlo4C1qAAcnoLk=
Subject key identifier: 53:39:A2:43:AA:A8:32:A6:59:48:0C:75:02:1D:AE:B4:FD:42:A7:BD
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018A9EB94250AA8528293E3B22077DA32563
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/UzmiQ6qoMqZZSAx1Ah2utP1Cp70.roa
Signing time: Sat 16 Sep 2023 16:00:55 +0000
ROA not before: Sat 16 Sep 2023 16:00:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198652
IP address blocks: 62.76.227.0/24 maxlen: 24
185.72.11.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:9e:b9:42:50:aa:85:28:29:3e:3b:22:07:7d:a3:25:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 16 16:00:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5339a243aaa832a659480c75021daeb4fd42a7bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:18:58:3f:39:db:a2:1b:f0:45:d6:a0:39:7c:
5c:a0:e0:4f:d0:22:11:50:a7:df:67:08:8c:ca:e0:
ae:32:f0:91:ff:23:45:7d:ca:9b:29:ca:8e:cd:82:
93:65:24:6a:32:3c:b3:58:41:fa:d8:35:ae:6d:9a:
32:b1:8c:03:fc:71:ac:48:a0:fe:fb:8b:ad:2d:48:
53:0e:1a:df:c1:d2:c8:3c:ed:4f:8c:97:71:43:26:
d2:25:24:51:ef:d1:0b:40:e0:c1:65:4d:0b:4a:de:
81:ec:b1:1c:56:72:4d:f3:fc:1c:42:d6:f3:ed:2b:
a8:0d:c1:22:82:eb:95:1c:01:32:b5:02:e4:91:11:
e2:92:22:8b:04:df:c2:cc:06:19:25:f9:2a:61:c3:
19:7d:36:d1:dc:1a:69:60:4b:5d:58:95:3c:4a:5c:
82:e0:7e:d7:d9:ab:de:e2:07:f8:f3:08:93:30:d9:
55:21:f1:ad:68:41:89:e0:e1:90:cb:4a:f0:49:25:
f4:12:06:f4:f3:e1:17:95:23:ae:21:91:91:c2:64:
32:64:de:20:13:c4:3d:80:ef:ad:00:46:35:1e:7c:
93:04:fb:84:c7:1f:25:05:4a:48:b7:28:20:4b:a6:
b8:c5:a1:c5:2f:88:5d:ae:4a:19:a0:68:1a:fa:79:
fe:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:39:A2:43:AA:A8:32:A6:59:48:0C:75:02:1D:AE:B4:FD:42:A7:BD
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/UzmiQ6qoMqZZSAx1Ah2utP1Cp70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.227.0/24
185.72.11.0/24
192.124.181.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:4a:25:f2:d6:46:93:2c:bd:c9:40:67:e0:4c:83:5c:fe:d2:
f5:8c:fe:1a:b1:25:aa:61:61:0d:ab:99:af:8e:29:ac:25:6e:
fe:db:6a:19:0c:42:58:76:60:a1:3b:65:7f:9d:16:5d:c4:75:
91:ea:c4:22:0f:ca:ad:f1:35:fe:10:2f:e9:41:58:73:93:79:
48:79:90:60:9d:ef:f6:b6:94:c9:8b:e5:f4:29:52:1b:a6:6a:
04:8e:ce:39:ac:98:0f:af:96:b5:44:9a:a7:1f:de:4e:6b:af:
0f:48:b7:71:67:59:4f:1a:f9:ca:4f:63:60:96:55:81:1e:51:
b7:f3:8d:71:68:1c:66:39:72:03:45:a2:ac:6f:bc:3b:07:c5:
27:a2:b4:56:e6:fe:08:ca:60:53:75:af:59:9a:9e:9e:de:d7:
62:21:50:e6:9a:bb:93:0e:20:d3:8c:81:a3:bc:0d:47:3b:06:
dd:7b:e3:f5:f1:c1:16:90:68:b1:76:7c:a0:70:42:ba:65:02:
17:fd:35:e2:8b:8b:30:36:f5:a2:63:05:1c:9d:47:54:7e:58:
d6:ea:52:a1:b0:57:c6:b4:b7:ec:33:af:ad:72:a3:6d:dc:97:
6c:8f:2b:d6:d0:fb:56:6d:39:e4:c9:c9:97:5c:6c:82:71:30:
82:2b:b2:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 20 17:42:43 2023 by rpki-client on console-ams.rpki-client.org