Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/95aa24-e84f-4245-9227-dec68083f8f6/1/UI0Qj4GcCh3lWFzCXX-ZGWG_3Vo.roa
File: UI0Qj4GcCh3lWFzCXX-ZGWG_3Vo.roa (raw, json)
Hash identifier: O64/juisTtISuGYWO3GouFFw97z/zn/Cu13uRmRVBZU=
Subject key identifier: 50:8D:10:8F:81:9C:0A:1D:E5:58:5C:C2:5D:7F:99:19:61:BF:DD:5A
Certificate issuer: /CN=a817c7453f377e9cb6fae5c893c067a3e1d35145
Certificate serial: 01856FE71A24C733047DB069DA277A69D129
Authority key identifier: A8:17:C7:45:3F:37:7E:9C:B6:FA:E5:C8:93:C0:67:A3:E1:D3:51:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qBfHRT83fpy2-uXIk8Bno-HTUUU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/95aa24-e84f-4245-9227-dec68083f8f6/1/UI0Qj4GcCh3lWFzCXX-ZGWG_3Vo.roa
Signing time: Mon 02 Jan 2023 00:34:54 +0000
ROA not before: Mon 02 Jan 2023 00:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15589
IP address blocks: 185.210.172.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:1a:24:c7:33:04:7d:b0:69:da:27:7a:69:d1:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a817c7453f377e9cb6fae5c893c067a3e1d35145
Validity
Not Before: Jan 2 00:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=508d108f819c0a1de5585cc25d7f991961bfdd5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:aa:8f:bc:3f:95:3f:31:7c:60:49:36:74:9f:
ce:af:26:41:5a:b4:26:06:c4:71:0b:1d:7f:27:ef:
75:9c:19:7f:71:ee:c1:bb:6c:13:96:98:c5:8f:44:
ed:e5:b9:e0:14:20:ec:50:b3:dd:4b:d0:10:a4:b6:
41:ed:90:57:94:2b:4f:a4:69:81:8f:36:8e:d2:72:
76:66:86:fe:db:45:6a:64:b8:b3:4c:1f:b8:d3:43:
a3:44:bb:82:5b:36:8f:5f:a9:08:30:8b:2e:fc:4d:
79:1f:ba:f5:a0:fe:9f:80:79:ca:ae:2a:9d:3e:5f:
3a:3c:bc:e6:a4:97:ac:fd:b2:71:14:b0:82:96:9f:
b1:29:c5:a4:9c:84:4b:26:6c:5a:35:a3:a9:d3:ee:
42:1e:15:23:61:fe:4e:df:41:42:25:8b:e6:62:d6:
d6:7d:93:30:1f:67:21:8a:17:93:38:65:cd:f1:49:
b4:dd:0e:6b:75:ee:fe:b7:1c:04:b7:f1:ef:ab:e9:
15:94:e5:17:4b:22:30:6b:e6:b5:82:b1:db:1c:d0:
5d:d3:f7:84:c1:74:48:48:dd:eb:8d:3d:3d:62:c6:
3c:28:55:55:7c:97:5b:a5:30:0e:31:9d:a5:cc:c4:
be:1c:06:fe:0e:f7:e3:75:b3:c7:43:96:63:33:76:
78:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:8D:10:8F:81:9C:0A:1D:E5:58:5C:C2:5D:7F:99:19:61:BF:DD:5A
X509v3 Authority Key Identifier:
keyid:A8:17:C7:45:3F:37:7E:9C:B6:FA:E5:C8:93:C0:67:A3:E1:D3:51:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qBfHRT83fpy2-uXIk8Bno-HTUUU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/95aa24-e84f-4245-9227-dec68083f8f6/1/UI0Qj4GcCh3lWFzCXX-ZGWG_3Vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/95aa24-e84f-4245-9227-dec68083f8f6/1/qBfHRT83fpy2-uXIk8Bno-HTUUU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.172.0/22
Signature Algorithm: sha256WithRSAEncryption
15:99:4e:da:fd:21:ad:27:92:d7:e7:5e:64:b6:81:88:ab:4e:
3a:5c:ed:79:cc:de:4f:12:e5:9f:a9:5e:35:5c:db:82:7d:fa:
a9:a4:69:e2:f7:5a:9a:7c:13:bb:7e:51:c3:89:80:3d:e4:ad:
7b:31:41:cf:93:50:03:8b:b2:0d:f6:f5:2c:d0:aa:54:c2:a4:
61:48:3a:0b:49:34:43:00:1f:80:5d:b0:ba:f8:68:26:1e:d7:
cc:5b:55:76:09:65:d5:78:4f:0a:f7:e2:15:2a:53:dc:2d:67:
51:f5:30:91:45:ab:f6:ce:bc:a5:8c:6a:93:05:8a:d4:37:62:
3e:b6:a6:da:56:20:03:36:12:f7:10:5a:1e:0d:62:7c:0f:22:
6d:1b:b0:66:f9:e7:f9:3a:ad:4f:d0:a5:a0:1f:c1:68:ce:46:
92:61:e9:91:b8:d0:5f:cd:a2:63:2c:c9:ed:bc:c5:53:1b:f8:
6e:56:d6:a0:73:5f:c8:01:23:5e:ba:27:7b:f3:52:55:19:ef:
48:e9:66:1d:b2:a1:e7:42:07:fe:b1:11:44:ea:22:29:2b:a7:
b9:2d:d4:b8:db:36:07:21:fe:93:2f:e6:46:68:3f:4c:4c:c7:
0c:93:a8:41:4f:2e:41:e7:00:a4:b8:aa:19:8a:68:d5:94:56:
af:7f:7b:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:04 2024 by rpki-client on console-fra.rpki-client.org