Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/uikMEQDJj98LeJ6g4cKiSIbkQIw.roa
File: uikMEQDJj98LeJ6g4cKiSIbkQIw.roa (raw, json)
Hash identifier: qcxsU1qIjd5yXX4BW4PL1Gyh38IaxedQ1ktFHCJKkLw=
Subject key identifier: BA:29:0C:11:00:C9:8F:DF:0B:78:9E:A0:E1:C2:A2:48:86:E4:40:8C
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 0190DA78F84AF5AD553937CDE498EEEE1BF4
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/uikMEQDJj98LeJ6g4cKiSIbkQIw.roa
Signing time: Mon 22 Jul 2024 12:44:39 +0000
ROA not before: Mon 22 Jul 2024 12:44:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214790
IP address blocks: 5.8.44.0/24 maxlen: 24
5.188.51.0/24 maxlen: 24
5.188.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Sep 2024 08:55:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:da:78:f8:4a:f5:ad:55:39:37:cd:e4:98:ee:ee:1b:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jul 22 12:44:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba290c1100c98fdf0b789ea0e1c2a24886e4408c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2f:01:05:d6:7e:a4:5c:08:ca:d9:c1:56:ab:
ef:7d:b6:73:f1:86:dc:c8:10:79:23:24:6d:17:db:
49:e6:7e:39:05:4f:e7:43:92:e0:88:c9:54:34:cb:
5f:1b:0b:c4:df:62:f2:d8:7a:8e:15:11:a9:3a:3f:
be:9d:e6:c6:a1:e7:69:4d:7d:f5:25:fe:87:c8:1b:
0f:79:a5:44:9e:34:53:c9:ab:bf:ac:93:ff:c1:4d:
e3:6e:ad:12:ea:2f:54:61:ff:e1:ce:d3:b6:27:57:
0a:ba:50:7d:e6:d9:ae:42:ee:47:36:da:6f:0f:a4:
11:18:89:a1:55:f8:b6:c7:f8:0f:2c:41:20:41:7e:
2f:02:94:31:61:50:2a:c5:ed:4d:89:c6:89:1f:2d:
73:a3:0f:21:bc:db:1a:13:ee:72:a9:4b:d8:a5:3d:
ef:76:fb:67:49:b1:87:72:66:c9:d1:0d:0a:6f:82:
d8:4e:78:1b:94:4b:ac:d1:5a:f8:25:1c:d2:00:93:
c7:5b:0f:69:04:56:a1:10:61:0c:42:f2:1c:b9:1e:
d9:03:26:99:18:f4:3c:84:bd:7f:7a:f9:92:c7:6a:
8a:5d:a8:47:3d:2d:93:9c:40:21:e5:3c:0a:88:bc:
88:35:a8:32:e6:22:10:94:b3:9a:aa:c0:ee:c3:08:
3b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:29:0C:11:00:C9:8F:DF:0B:78:9E:A0:E1:C2:A2:48:86:E4:40:8C
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/uikMEQDJj98LeJ6g4cKiSIbkQIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.44.0/24
5.188.51.0/24
5.188.203.0/24
Signature Algorithm: sha256WithRSAEncryption
60:57:3a:ab:4b:ea:bd:da:3a:75:71:90:a5:20:b7:93:d0:7c:
c2:2c:ba:64:82:17:16:38:26:39:53:d0:c9:ac:86:cd:1b:3c:
a4:05:ce:a7:55:e3:31:7a:9f:2a:18:d0:28:d3:78:d4:77:67:
a0:9d:27:89:a1:66:ad:dd:cc:a6:7b:09:de:b1:62:5b:a0:c4:
e9:e6:90:6c:d2:89:5d:49:c3:3a:48:42:1c:b8:fc:8e:8d:9e:
b2:da:bf:0c:27:30:37:24:23:27:d6:ba:de:c2:50:da:0f:82:
5e:2d:03:fb:5d:27:4c:6c:25:4c:5b:f3:20:19:40:71:a2:07:
91:92:85:4a:0f:4b:ff:6e:37:a2:bf:e3:48:56:2a:41:93:55:
6a:5c:4c:8d:6f:c3:7e:42:b8:ca:20:60:42:ce:d1:24:97:db:
d5:44:65:c3:8a:82:8b:ec:a2:63:35:da:d5:39:ed:47:69:9a:
2f:3d:51:4a:0d:c8:3a:b6:ef:de:a0:7e:6c:b0:96:6b:63:2e:
c2:48:72:ff:18:21:c6:26:23:a8:c8:1a:93:7a:8c:c8:61:d9:
3c:04:bb:e6:4c:9f:76:3f:45:22:48:bf:bf:7d:73:d5:75:43:
fc:6f:d8:6f:d5:cf:af:dc:16:e9:0c:e9:bf:e5:4d:2e:a4:96:
5e:b7:b9:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 30 11:06:50 2024 by rpki-client on console-ams.rpki-client.org