Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/UtzIsSqZr1h3BNV8QZjypwcG3B8.roa
File: UtzIsSqZr1h3BNV8QZjypwcG3B8.roa (raw, json)
Hash identifier: 28cCgxEKyD5QqWIXQlcBSRSJDP/mNDmZ4oEWWMpEM2E=
Subject key identifier: 52:DC:C8:B1:2A:99:AF:58:77:04:D5:7C:41:98:F2:A7:07:06:DC:1F
Certificate issuer: /CN=5da432a4ec3b0ac4ca4e4ecec0e9f4d46b497af0
Certificate serial: 018570306C7C8FFC6C0C03A60E6A584CA925
Authority key identifier: 5D:A4:32:A4:EC:3B:0A:C4:CA:4E:4E:CE:C0:E9:F4:D4:6B:49:7A:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaQypOw7CsTKTk7OwOn01GtJevA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/UtzIsSqZr1h3BNV8QZjypwcG3B8.roa
Signing time: Mon 02 Jan 2023 01:54:59 +0000
ROA not before: Mon 02 Jan 2023 01:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202268
IP address blocks: 185.126.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:6c:7c:8f:fc:6c:0c:03:a6:0e:6a:58:4c:a9:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da432a4ec3b0ac4ca4e4ecec0e9f4d46b497af0
Validity
Not Before: Jan 2 01:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52dcc8b12a99af587704d57c4198f2a70706dc1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ee:23:35:20:88:bf:34:f2:06:8a:61:08:25:
e4:55:b5:d5:3f:0c:e3:67:26:28:fa:80:17:a8:ed:
e0:6b:53:61:e6:c3:e0:b1:93:35:60:a9:1c:c4:c0:
d0:07:75:65:e8:e8:da:49:c5:f4:f3:21:3b:99:2b:
f7:ae:d2:f5:1c:7f:95:0f:cb:c0:6d:22:89:be:c1:
4b:24:bd:bd:b6:a0:c8:77:2f:b4:bc:db:0f:52:62:
1e:7f:68:aa:3b:86:8c:99:a9:f6:1e:a2:83:3d:a8:
78:e1:29:34:99:44:bb:04:1a:bf:92:42:6e:54:58:
fd:62:e3:48:0c:db:30:e9:14:31:68:22:d4:3b:22:
6f:ed:8e:63:cf:65:c2:a8:e1:3f:a2:65:af:cd:97:
17:18:20:91:b1:8d:ca:1a:ac:d2:f8:78:a4:a7:8f:
49:c8:23:0a:cd:e2:e4:d5:08:23:32:a5:e8:97:f6:
9e:cd:31:39:c5:8b:27:65:81:ce:38:47:86:d2:fd:
b1:d7:fe:b7:5f:87:fa:03:a0:24:d4:5c:00:6c:c4:
a4:0e:f0:d6:63:a8:11:73:4b:67:3d:dd:b5:cc:bb:
1e:5d:cf:78:71:c7:dd:54:35:86:61:d7:e3:a2:7c:
9e:25:81:f8:6d:5f:a8:85:c9:ff:72:75:6b:f9:2e:
ff:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:DC:C8:B1:2A:99:AF:58:77:04:D5:7C:41:98:F2:A7:07:06:DC:1F
X509v3 Authority Key Identifier:
keyid:5D:A4:32:A4:EC:3B:0A:C4:CA:4E:4E:CE:C0:E9:F4:D4:6B:49:7A:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaQypOw7CsTKTk7OwOn01GtJevA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/UtzIsSqZr1h3BNV8QZjypwcG3B8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/XaQypOw7CsTKTk7OwOn01GtJevA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.92.0/24
Signature Algorithm: sha256WithRSAEncryption
47:c8:23:c3:bc:63:40:69:91:88:9a:94:0a:2a:e1:c7:c0:73:
c2:a1:30:0e:6c:3f:ea:57:14:59:89:4d:18:8e:93:14:9f:96:
ea:0d:f6:6e:ba:b0:23:65:17:d2:ae:6b:ca:b9:c6:08:98:c4:
5e:9f:18:0d:15:d5:b4:12:fa:8e:d7:c6:45:06:82:71:f8:4d:
6a:21:d2:67:1e:e4:02:42:4d:0e:df:7a:49:59:c5:54:93:57:
09:c4:48:a3:5d:96:2c:36:74:1b:9b:bd:32:c1:08:3e:eb:8c:
86:2a:d7:1b:fc:14:58:71:2c:f5:de:61:57:c2:d3:a1:75:d8:
d6:f2:b1:3f:3c:ad:d7:5b:7c:61:eb:87:fd:66:14:f0:79:8f:
98:4b:2c:50:58:03:0a:ac:35:27:1f:c5:67:45:8a:cf:3e:54:
b0:be:6a:77:75:e5:c3:7d:33:a9:4c:f5:81:26:e5:e4:00:d2:
c3:3e:b0:50:80:b2:f5:4c:aa:b7:b3:ce:d3:e1:4d:04:9f:16:
22:66:49:f0:65:ea:42:e6:94:db:76:f0:fb:a3:3c:9f:cf:13:
2b:06:30:81:42:45:56:13:d2:15:5a:55:41:1d:c1:ef:82:a7:
4e:76:97:52:98:e6:ab:3a:e9:89:b7:5d:1b:d2:be:a7:23:4a:
ef:9e:a9:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:22 2024 by rpki-client on console-fra.rpki-client.org