Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/bc48d2-28e8-405d-9f9a-03897f4cb35d/1/UfMNK5hfRvptrFdjuVAKrAK5x9c.roa
File: UfMNK5hfRvptrFdjuVAKrAK5x9c.roa (raw, json)
Hash identifier: Nm8+d4qKJ6ofR0cDGCd616m9jrCuEFZXFF4CQ8bNZSA=
Subject key identifier: 51:F3:0D:2B:98:5F:46:FA:6D:AC:57:63:B9:50:0A:AC:02:B9:C7:D7
Certificate issuer: /CN=fc96311f207e30e04e5ed18960b31fb3ba67d9cc
Certificate serial: 01857070410F116513F50D1E9A16E550DFCF
Authority key identifier: FC:96:31:1F:20:7E:30:E0:4E:5E:D1:89:60:B3:1F:B3:BA:67:D9:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_JYxHyB-MOBOXtGJYLMfs7pn2cw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/bc48d2-28e8-405d-9f9a-03897f4cb35d/1/UfMNK5hfRvptrFdjuVAKrAK5x9c.roa
Signing time: Mon 02 Jan 2023 03:04:42 +0000
ROA not before: Mon 02 Jan 2023 03:04:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206317
IP address blocks: 185.187.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:41:0f:11:65:13:f5:0d:1e:9a:16:e5:50:df:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc96311f207e30e04e5ed18960b31fb3ba67d9cc
Validity
Not Before: Jan 2 03:04:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51f30d2b985f46fa6dac5763b9500aac02b9c7d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ea:85:d7:16:06:0a:6f:c7:5a:67:69:21:6b:
a2:71:6a:52:43:ed:51:ee:e2:06:14:92:28:ca:dc:
ef:50:9c:1e:46:3a:4b:bc:06:d3:0a:1c:30:a2:e0:
eb:b2:43:26:69:65:a4:08:b8:bd:33:30:5a:c2:ac:
ae:4e:c8:f2:ac:30:2d:94:fb:88:cd:7e:04:39:67:
5f:dc:6d:34:4d:30:ce:06:8a:78:4f:c9:3d:88:24:
0f:5c:6d:db:14:2d:35:31:a7:2f:cf:8c:1c:63:4f:
eb:2e:af:db:59:c1:c8:2b:b8:4a:5d:b4:ca:85:58:
e2:bc:2b:c2:5a:eb:38:bc:44:14:ce:a5:33:03:2d:
5b:b8:8c:43:56:d9:24:35:3a:43:07:75:e3:57:ad:
f2:ab:0f:25:a7:88:52:27:24:d1:ca:ba:2d:af:83:
f4:93:aa:ee:98:11:ef:9a:5b:9d:00:5c:b7:48:b8:
8d:df:f5:a0:18:41:e2:15:3d:90:aa:b8:dc:77:18:
ab:8a:05:bc:a2:1e:71:2c:66:a0:6f:1e:a5:77:de:
8f:b2:6d:e5:fa:2b:86:9e:a7:e6:07:0f:ff:fe:ba:
18:be:b7:99:fb:ce:ae:70:6c:5f:bb:9f:b4:5e:3d:
ee:dc:77:c1:ab:c6:94:0c:bd:87:e9:ed:88:ef:c2:
75:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F3:0D:2B:98:5F:46:FA:6D:AC:57:63:B9:50:0A:AC:02:B9:C7:D7
X509v3 Authority Key Identifier:
keyid:FC:96:31:1F:20:7E:30:E0:4E:5E:D1:89:60:B3:1F:B3:BA:67:D9:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_JYxHyB-MOBOXtGJYLMfs7pn2cw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/bc48d2-28e8-405d-9f9a-03897f4cb35d/1/UfMNK5hfRvptrFdjuVAKrAK5x9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/bc48d2-28e8-405d-9f9a-03897f4cb35d/1/_JYxHyB-MOBOXtGJYLMfs7pn2cw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.118.0/24
Signature Algorithm: sha256WithRSAEncryption
53:2a:c4:41:9b:cb:61:2e:8f:40:b4:1d:25:d0:60:bd:2e:a0:
1c:cc:c7:c2:95:df:3c:94:69:00:e1:d6:8d:6a:43:49:d1:0a:
58:d2:f4:da:64:8c:b5:e4:79:4a:dd:21:fd:bc:3a:0c:24:11:
5d:8c:73:80:ed:be:b9:aa:e8:d1:c9:88:4d:0c:68:45:d0:dc:
9f:9d:7c:51:aa:fa:5f:c5:60:e2:b2:17:44:22:33:5a:1c:a9:
e8:73:18:ba:eb:10:01:82:ca:32:24:d6:c1:59:1b:1e:38:4b:
3f:b5:6c:77:ac:e4:1e:29:82:58:bc:b9:5c:b1:f5:de:80:79:
6c:17:f3:7f:22:f2:9d:fc:a6:e6:d2:dc:57:e9:44:a6:7d:67:
c6:7e:24:11:e5:99:30:f1:56:5f:c0:4b:3c:ce:08:a8:53:d4:
62:ee:9b:85:6c:3d:f0:51:74:d7:48:37:78:ff:67:ed:09:b2:
46:c7:36:fd:2a:e5:ad:28:c8:d5:1e:d7:e7:c7:69:10:1c:85:
6f:35:45:f3:c4:9f:e5:14:91:8a:02:64:3f:7a:94:44:c5:22:
f9:f5:c6:47:5d:ed:9a:fd:6a:9f:9d:a3:33:25:36:f3:8b:7d:
4c:55:ec:b3:da:af:8e:5a:a3:b5:f7:37:a7:bf:b5:84:b3:79:
35:06:5d:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:48 2024 by rpki-client on console-fra.rpki-client.org