Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/2e4e54-0548-4d0c-93f1-75461abbb5a4/1/kUGvbBSQin3zqpYapZVuY6kZF3M.roa
File: kUGvbBSQin3zqpYapZVuY6kZF3M.roa (raw, json)
Hash identifier: f2AD4L+UVYC06X9llI1GeI0Q6ehtbGoNCsOEnFA/nl0=
Subject key identifier: 91:41:AF:6C:14:90:8A:7D:F3:AA:96:1A:A5:95:6E:63:A9:19:17:73
Certificate issuer: /CN=317b8147503ea19f581ca00d28dbee5e58cb8f48
Certificate serial: 018572A7F45FB52BF1B7CC8451DD1FE01358
Authority key identifier: 31:7B:81:47:50:3E:A1:9F:58:1C:A0:0D:28:DB:EE:5E:58:CB:8F:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXuBR1A-oZ9YHKANKNvuXljLj0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/2e4e54-0548-4d0c-93f1-75461abbb5a4/1/kUGvbBSQin3zqpYapZVuY6kZF3M.roa
Signing time: Mon 02 Jan 2023 13:24:47 +0000
ROA not before: Mon 02 Jan 2023 13:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47147
IP address blocks: 185.93.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a7:f4:5f:b5:2b:f1:b7:cc:84:51:dd:1f:e0:13:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317b8147503ea19f581ca00d28dbee5e58cb8f48
Validity
Not Before: Jan 2 13:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9141af6c14908a7df3aa961aa5956e63a9191773
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:5c:8d:64:0a:bc:2a:3f:a2:b9:3f:35:15:10:
9b:94:14:46:3c:42:37:9a:86:70:9f:7e:dc:db:a2:
10:7f:e8:6f:4e:99:82:61:b9:75:75:55:20:46:b8:
95:56:c5:e9:3b:d4:d0:f9:df:12:f9:78:c6:c3:a7:
03:f6:85:4c:89:83:14:90:fb:69:f0:e6:d6:9d:ea:
be:dc:12:6d:65:e6:af:75:23:85:8c:da:0d:00:b7:
4b:83:08:73:5e:01:6d:18:8b:3f:28:98:ee:41:7d:
08:cb:35:61:ae:28:b5:aa:b2:a0:81:8d:c8:6e:b1:
ac:c8:0d:8d:d3:11:04:09:f0:55:56:b4:45:63:08:
69:be:65:79:9b:72:15:eb:f7:bf:84:5e:13:fa:0b:
1d:b0:2f:92:f4:7e:59:4b:e1:8a:57:4e:85:d2:e7:
05:40:e7:c1:3a:a8:75:d0:e6:b2:54:75:42:a3:c5:
8e:4f:bc:be:af:3e:27:54:de:83:13:05:27:43:23:
14:1a:e2:46:ac:43:c0:42:39:fb:39:db:46:4d:66:
52:e0:7e:6c:ce:24:85:bd:a8:a2:97:cf:24:a2:6a:
0e:59:ba:ee:60:97:a2:fa:9e:5b:55:69:6c:7e:59:
f2:7d:32:7c:7a:65:10:89:33:f4:b5:48:ea:97:0c:
12:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:41:AF:6C:14:90:8A:7D:F3:AA:96:1A:A5:95:6E:63:A9:19:17:73
X509v3 Authority Key Identifier:
keyid:31:7B:81:47:50:3E:A1:9F:58:1C:A0:0D:28:DB:EE:5E:58:CB:8F:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXuBR1A-oZ9YHKANKNvuXljLj0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/2e4e54-0548-4d0c-93f1-75461abbb5a4/1/kUGvbBSQin3zqpYapZVuY6kZF3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/2e4e54-0548-4d0c-93f1-75461abbb5a4/1/MXuBR1A-oZ9YHKANKNvuXljLj0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.213.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:3f:34:44:87:c0:53:34:f1:cb:06:65:e3:bb:5a:1d:47:51:
e1:9e:08:5e:10:7f:2b:2b:5a:61:65:3e:49:f8:54:a3:ac:ff:
03:1f:d6:2e:63:5d:cf:fe:77:1a:b4:d1:6e:8b:c6:0b:a4:af:
92:31:b4:c2:19:64:50:1b:87:c1:54:99:e6:e5:d2:15:fc:a9:
cd:db:de:53:86:75:85:67:08:32:48:83:b6:85:76:e0:3b:db:
8f:2e:32:90:a8:2f:c5:2a:b4:bd:b3:d7:b6:a6:70:99:62:71:
11:fc:36:1b:b1:1c:2a:63:66:13:90:f3:34:a2:64:e6:f1:4c:
ab:9b:db:06:97:e8:9b:e5:5b:9e:3a:a4:56:60:b9:5b:0d:ba:
04:1a:78:15:72:8d:0b:92:fc:2f:06:36:c1:61:4c:77:10:a7:
ae:9f:73:90:2a:b8:28:0f:7c:66:de:75:81:1e:a4:38:62:b1:
f6:7d:63:bc:f0:3e:f1:34:f9:b6:d0:b7:25:1f:29:95:25:d8:
8d:be:5b:28:2c:81:eb:51:21:0a:f2:3a:6a:93:81:94:12:cc:
22:74:d9:c6:7d:e6:b8:2b:73:35:ae:b5:38:06:69:e7:2e:e6:
be:29:4c:b8:ca:7b:d9:bb:47:23:33:e5:47:39:52:cb:0e:93:
09:bb:72:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:47 2024 by rpki-client on console-ams.rpki-client.org