Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/UDFUiWAVLOrtyMrmjCb7o25plSA.roa
File: UDFUiWAVLOrtyMrmjCb7o25plSA.roa (raw, json)
Hash identifier: sDCT7sp0uLATcYBJ9L8bA4YCh3SxTMu4yd4Ii6F+0YM=
Subject key identifier: 50:31:54:89:60:15:2C:EA:ED:C8:CA:E6:8C:26:FB:A3:6E:69:95:20
Certificate issuer: /CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Certificate serial: 018CC5DBEA9530F4CDDC4386FE3229301ED7
Authority key identifier: 52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/UDFUiWAVLOrtyMrmjCb7o25plSA.roa
Signing time: Mon 01 Jan 2024 16:29:33 +0000
ROA not before: Mon 01 Jan 2024 16:29:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41350
IP address blocks: 85.223.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:49:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:db:ea:95:30:f4:cd:dc:43:86:fe:32:29:30:1e:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Validity
Not Before: Jan 1 16:29:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5031548960152ceaedc8cae68c26fba36e699520
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:82:07:1c:55:5d:4f:bf:ff:d5:c2:1f:57:53:
d4:2e:d0:5c:20:b3:c4:ca:cb:17:5a:2c:4d:24:87:
fa:eb:92:8a:6c:78:c1:ca:66:ab:25:0c:b6:c1:f3:
26:42:74:46:da:95:26:26:06:f9:a2:e8:fd:db:e3:
50:25:ee:21:ca:86:df:85:44:57:4f:e3:2e:1a:f6:
82:7e:2e:cf:be:c7:c2:12:75:06:90:9f:31:ad:af:
1e:2f:cd:f3:b7:7e:12:09:cc:5f:28:33:79:ae:3d:
e3:9b:03:e3:c9:e4:4f:cf:ce:be:21:ca:e5:ed:b8:
ec:0b:74:60:4f:9c:3e:d0:28:83:e0:6f:3e:5b:aa:
d3:a4:2e:a2:e4:2f:dd:45:40:2c:e4:ea:06:0f:c2:
d1:b5:86:eb:02:9e:74:ba:62:05:c9:e8:fa:17:5e:
fe:f4:12:4d:bb:a6:22:0d:6f:bd:55:0d:b8:08:ee:
30:f4:f7:aa:ee:8b:59:7e:52:fc:b9:f7:0f:bf:35:
ca:bd:dd:f7:73:51:25:c5:4d:e6:af:ca:93:75:13:
c7:6e:fc:70:b0:60:82:7d:20:b9:64:cd:b6:c9:66:
e3:f9:6b:1d:40:a0:36:8f:9e:34:37:ce:20:bc:6a:
18:f2:4c:6e:94:32:ab:14:53:9e:cf:d2:db:b2:90:
db:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:31:54:89:60:15:2C:EA:ED:C8:CA:E6:8C:26:FB:A3:6E:69:95:20
X509v3 Authority Key Identifier:
keyid:52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/UDFUiWAVLOrtyMrmjCb7o25plSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/Urm54lZYDENEuyQURbTVLlT91Qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.223.143.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:d9:c1:ab:4e:56:8a:d3:8d:15:63:9c:3a:1c:5a:24:5c:38:
e8:32:f4:2a:3e:52:71:77:41:c7:7d:f3:03:c8:ca:88:25:46:
2d:74:49:ed:a2:56:5e:3b:dc:fd:16:d8:ff:ea:74:ee:47:44:
16:cf:68:24:6a:9d:47:23:c0:37:fc:0b:24:f3:cb:20:0b:c9:
f4:14:97:87:05:16:04:3b:12:cd:1d:13:e8:17:6b:7c:b9:aa:
71:79:0f:80:0c:f3:59:1a:4e:67:38:04:9f:bc:03:f0:66:0a:
d1:84:76:71:e0:ad:ab:b8:d7:a1:7f:b6:1b:1b:66:1b:a7:a1:
ef:d4:3e:39:58:59:71:02:09:bb:32:7f:59:96:0c:70:09:e3:
e2:5e:c4:2c:c3:61:21:7c:c1:7e:e6:25:ec:72:55:e1:3c:d6:
1f:64:db:cf:51:83:02:41:17:1b:9f:e4:82:12:55:08:1d:7b:
de:59:96:f5:64:a2:c7:7e:b5:fb:5b:c6:af:f1:91:2e:3a:0e:
da:b9:5e:fe:89:2d:ba:b9:12:d5:dd:fe:19:2b:fb:7b:86:4a:
cd:e0:ce:a1:8e:22:ee:cd:3a:bb:37:d1:87:4f:d0:36:39:bc:
0c:b5:06:09:34:54:dc:2d:f5:9a:a7:4c:75:e0:58:e5:db:a8:
ec:90:3b:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:04 2025 by rpki-client