Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/850134-bb21-4bad-9eea-dfd51b06dd99/1/UZkc1cH-MGV33rd2opFqq1hJy90.roa
File: UZkc1cH-MGV33rd2opFqq1hJy90.roa (raw, json)
Hash identifier: JfqFp9m7LD8dd83/G+0MRzs0EULZqtZ7P7wC/55VGOQ=
Subject key identifier: 51:99:1C:D5:C1:FE:30:65:77:DE:B7:76:A2:91:6A:AB:58:49:CB:DD
Certificate issuer: /CN=7b3175988373e56b6ffe0b15a1fc75d4693ae2c0
Certificate serial: 01856D419000CDFBF3E5DA796C01D555E645
Authority key identifier: 7B:31:75:98:83:73:E5:6B:6F:FE:0B:15:A1:FC:75:D4:69:3A:E2:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ezF1mINz5Wtv_gsVofx11Gk64sA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/850134-bb21-4bad-9eea-dfd51b06dd99/1/UZkc1cH-MGV33rd2opFqq1hJy90.roa
Signing time: Sun 01 Jan 2023 12:14:51 +0000
ROA not before: Sun 01 Jan 2023 12:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199667
IP address blocks: 185.110.48.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:90:00:cd:fb:f3:e5:da:79:6c:01:d5:55:e6:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b3175988373e56b6ffe0b15a1fc75d4693ae2c0
Validity
Not Before: Jan 1 12:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51991cd5c1fe306577deb776a2916aab5849cbdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:73:ca:f7:07:98:84:b1:bb:df:97:64:8b:12:
08:a1:54:2e:b0:a8:aa:da:07:41:de:1a:55:5a:86:
8a:cc:58:76:3d:91:6f:9e:41:ac:52:b2:d6:0f:77:
a7:7b:5c:0f:95:81:85:ad:8c:18:3e:b8:62:2d:ee:
f3:a0:29:c0:cd:6c:59:1d:a3:ee:31:e1:b9:77:00:
c0:a6:63:61:82:85:0e:60:23:b4:e9:3c:82:56:ad:
57:c5:4c:ee:f7:0e:6f:5e:21:cb:b5:46:72:7d:54:
a8:48:2f:34:f0:a1:9d:1f:35:b3:a4:c1:76:07:b9:
33:20:cd:9a:06:07:72:fa:e6:1e:92:55:e4:2d:6a:
0e:d0:4f:e6:77:75:74:57:ca:70:a2:c7:6c:6f:dc:
c0:ed:0c:6a:8f:4b:2a:e1:88:a9:8a:32:0d:01:40:
dd:41:ab:66:93:a7:4f:51:c7:b7:30:55:54:21:32:
a1:2f:5d:c8:c6:3f:45:c5:dc:5f:5d:f2:3f:54:9b:
d9:81:5b:da:86:57:51:ed:a6:55:48:ad:a1:1b:cb:
4b:17:18:09:8c:ea:17:ca:33:76:8c:b4:1d:62:96:
f1:b5:b4:01:43:c6:88:6f:ed:0f:7b:4d:3c:1f:19:
12:80:16:e8:a4:e9:aa:f2:22:3b:54:d6:03:e4:60:
3a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:99:1C:D5:C1:FE:30:65:77:DE:B7:76:A2:91:6A:AB:58:49:CB:DD
X509v3 Authority Key Identifier:
keyid:7B:31:75:98:83:73:E5:6B:6F:FE:0B:15:A1:FC:75:D4:69:3A:E2:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ezF1mINz5Wtv_gsVofx11Gk64sA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/850134-bb21-4bad-9eea-dfd51b06dd99/1/UZkc1cH-MGV33rd2opFqq1hJy90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/850134-bb21-4bad-9eea-dfd51b06dd99/1/ezF1mINz5Wtv_gsVofx11Gk64sA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.48.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:1b:53:49:bd:0b:a1:2e:00:56:e3:e3:1c:33:f7:d2:88:a6:
f6:26:61:58:a9:60:33:02:f7:0d:20:55:11:6f:c5:5e:8b:26:
47:5b:95:78:d4:ef:67:fa:7a:df:c6:f3:09:fb:28:50:14:f6:
77:a6:4a:59:57:8c:84:8b:ec:9e:d3:24:ce:2e:fc:76:96:5b:
24:54:0d:0c:0f:b2:84:90:b8:5a:d6:2e:f1:44:3d:b0:b1:c0:
a3:77:65:fa:1f:11:4e:2a:1b:73:99:b8:cb:ea:43:8b:3d:21:
a5:21:09:93:65:22:26:63:79:64:d3:a4:01:e3:d8:dc:86:01:
b3:ef:04:d6:a1:bd:b9:d3:2a:76:c8:b3:d3:3e:d2:05:1d:c4:
e1:2e:47:43:b2:2f:61:ac:9c:0f:1c:d7:0f:7b:f5:6b:89:08:
26:10:fa:c4:ba:12:d0:c4:18:b1:da:2c:d7:81:7f:07:47:b1:
60:0c:0d:63:89:05:bf:df:da:7b:61:33:30:cf:b1:7c:8c:63:
8a:98:f5:4b:38:b3:79:47:33:8f:f6:7c:06:08:7a:18:64:90:
3d:ca:d0:03:37:7e:8a:b3:7c:a7:80:49:d8:41:47:c3:66:b0:
4c:b3:9f:da:e7:3f:25:4f:e6:c4:e4:ab:66:ae:8f:6d:6b:7c:
a0:8f:50:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:19 2024 by rpki-client on console-ams.rpki-client.org