Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/b3ae33-6d62-4093-92ec-5638526ff641/1/uxBT2MzQJw0benhkF4ZOcTeCQZg.roa
File: uxBT2MzQJw0benhkF4ZOcTeCQZg.roa (raw, json)
Hash identifier: zR2lZ2n7Yrszaf7Jzj9bM3UJMDaqomKv/KvUSP3812U=
Subject key identifier: BB:10:53:D8:CC:D0:27:0D:1B:7A:78:64:17:86:4E:71:37:82:41:98
Certificate issuer: /CN=1e234242957bb1be129681721f9c2cd08df07baa
Certificate serial: 018570FBADA195321CC074472570EFDBAC83
Authority key identifier: 1E:23:42:42:95:7B:B1:BE:12:96:81:72:1F:9C:2C:D0:8D:F0:7B:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HiNCQpV7sb4SloFyH5ws0I3we6o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/b3ae33-6d62-4093-92ec-5638526ff641/1/uxBT2MzQJw0benhkF4ZOcTeCQZg.roa
Signing time: Mon 02 Jan 2023 05:37:00 +0000
ROA not before: Mon 02 Jan 2023 05:37:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42926
IP address blocks: 185.40.72.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:ad:a1:95:32:1c:c0:74:47:25:70:ef:db:ac:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e234242957bb1be129681721f9c2cd08df07baa
Validity
Not Before: Jan 2 05:37:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb1053d8ccd0270d1b7a786417864e7137824198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:3e:70:31:08:a8:41:57:5d:43:a0:b5:19:ba:
61:4d:97:91:19:94:a0:f2:14:18:18:8f:bd:9c:bf:
99:90:2f:c4:69:62:4b:0f:05:dd:2b:f9:33:45:42:
f9:11:e0:0d:e0:dc:db:b9:ec:42:92:78:2e:42:5e:
07:fa:e4:b2:34:8f:06:69:05:a5:cf:62:62:6a:ac:
bf:67:91:04:ac:03:d9:2c:ec:29:8f:76:48:0d:c5:
fc:c7:90:0b:3b:64:c8:2b:3f:14:33:7c:50:bf:0e:
fc:f4:d6:8c:a5:0c:82:ac:00:e9:b2:2d:69:5a:33:
9d:2c:01:6e:36:31:75:a4:86:72:b5:11:08:26:ec:
8c:43:12:de:42:1a:60:62:66:c7:7a:0f:64:7a:93:
b6:74:6e:e5:3e:94:f2:e8:0b:15:35:fd:dd:71:e4:
76:01:69:39:47:be:68:b4:49:0e:42:14:27:f9:d7:
0b:63:8b:b4:ee:3c:2f:5c:17:65:ea:9b:b1:3d:ce:
9a:75:90:d1:44:ff:06:2b:e7:1f:3b:d5:a0:d3:3c:
41:cd:88:05:67:92:93:23:a8:57:a1:bc:6f:d6:1d:
95:d7:44:78:68:2e:74:50:97:09:7f:5d:6e:5c:2a:
46:a9:97:a3:38:b6:4b:81:20:fc:c2:28:53:93:72:
bc:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:10:53:D8:CC:D0:27:0D:1B:7A:78:64:17:86:4E:71:37:82:41:98
X509v3 Authority Key Identifier:
keyid:1E:23:42:42:95:7B:B1:BE:12:96:81:72:1F:9C:2C:D0:8D:F0:7B:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HiNCQpV7sb4SloFyH5ws0I3we6o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b3ae33-6d62-4093-92ec-5638526ff641/1/uxBT2MzQJw0benhkF4ZOcTeCQZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b3ae33-6d62-4093-92ec-5638526ff641/1/HiNCQpV7sb4SloFyH5ws0I3we6o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.40.72.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:1e:01:c6:7a:ca:15:e1:39:1f:35:0d:dd:26:92:12:69:35:
23:ca:02:b3:8a:75:11:b6:f8:d5:42:13:c2:b7:db:1a:be:cb:
79:61:6b:3f:3f:f2:1e:0c:26:87:5a:96:18:72:d6:c4:f2:50:
24:63:66:ac:fd:9b:e7:e0:28:38:84:54:51:f0:52:47:d3:41:
0f:4a:a6:93:9b:78:00:99:0e:b0:e0:3c:2f:0c:dc:94:f2:bd:
74:ef:f8:b9:5d:11:8a:ac:58:34:20:ba:a8:91:9a:f3:8b:2b:
89:e3:07:c0:be:a9:3c:5b:3e:f8:28:0b:5f:9c:ee:c6:c5:2e:
20:7c:cf:39:ed:07:40:6a:97:84:62:39:cc:87:dc:e0:77:3c:
b0:be:43:88:d2:22:f6:f4:e7:49:99:5c:a8:95:d3:53:e1:8e:
75:68:e4:7d:de:2a:5d:30:c1:91:2f:a3:4a:fb:52:73:08:b3:
9d:34:a1:e2:7d:45:07:ea:26:10:52:53:f3:d3:21:a0:ad:77:
4e:aa:1f:74:fe:91:08:67:45:88:c2:b4:ce:02:45:1d:ae:90:
16:b8:7b:21:c6:18:e1:4b:1f:59:50:f4:2c:9f:f0:23:51:18:
28:d8:33:7e:8b:f9:da:88:7f:6c:9d:96:d8:51:4f:5b:00:82:
3a:ad:55:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:19 2024 by rpki-client on console-ams.rpki-client.org