Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/d4b835-f5b5-4704-ae97-c26328561030/1/U5aWp5bbbJfcRIrGSV9Bv4qBcyk.roa
File: U5aWp5bbbJfcRIrGSV9Bv4qBcyk.roa (raw, json)
Hash identifier: 6XwOBDV2wG8X0MUJstWWdfLdMcvMp6A7jK23HZ+d66s=
Subject key identifier: 53:96:96:A7:96:DB:6C:97:DC:44:8A:C6:49:5F:41:BF:8A:81:73:29
Certificate issuer: /CN=1d4404c8392e82d4b7029b69cb6ee290b9b42c00
Certificate serial: 01857142D6E1B1ECAC36985AFB1B94E13E35
Authority key identifier: 1D:44:04:C8:39:2E:82:D4:B7:02:9B:69:CB:6E:E2:90:B9:B4:2C:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HUQEyDkugtS3Aptpy27ikLm0LAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/d4b835-f5b5-4704-ae97-c26328561030/1/U5aWp5bbbJfcRIrGSV9Bv4qBcyk.roa
Signing time: Mon 02 Jan 2023 06:54:43 +0000
ROA not before: Mon 02 Jan 2023 06:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204175
IP address blocks: 185.112.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:42:d6:e1:b1:ec:ac:36:98:5a:fb:1b:94:e1:3e:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d4404c8392e82d4b7029b69cb6ee290b9b42c00
Validity
Not Before: Jan 2 06:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=539696a796db6c97dc448ac6495f41bf8a817329
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:94:d7:c2:bc:5e:04:21:41:4b:52:08:f3:be:
87:a3:3c:54:9f:c7:74:2f:be:34:d8:89:d0:a5:c7:
f3:9b:81:a7:8c:c3:07:a1:fc:1f:54:ea:70:2f:8b:
e1:96:f4:0a:49:1b:2c:f9:a4:d9:b4:c8:77:36:5e:
4a:20:98:35:09:b3:96:bb:90:31:ff:02:86:c2:db:
61:4e:f1:69:7c:30:79:ed:09:dd:c9:72:3e:9b:3c:
e3:18:04:41:d6:4b:2f:b9:ab:65:e7:3e:2b:fc:b9:
9a:8f:d8:dd:a4:7d:53:d7:94:5d:d3:16:61:d9:fe:
3d:1f:eb:d8:fc:a7:e6:3f:e9:06:83:a1:2c:9a:09:
a4:11:68:3b:13:0e:fd:84:42:65:99:4a:e2:9e:52:
fb:e8:55:2f:41:bb:bd:97:2c:bb:12:6b:b9:33:c0:
cb:23:e5:69:27:ad:36:95:0d:06:ef:ee:b7:ce:6c:
12:a9:02:e3:54:37:13:4b:f7:ac:a0:2a:5c:7e:b0:
fc:4f:31:c2:17:c9:9f:dc:ba:30:02:fe:1e:22:df:
f8:15:93:8e:99:48:68:42:22:c3:74:99:e3:51:a7:
f9:fd:dd:fb:5b:45:ce:b1:52:36:98:96:57:64:61:
76:29:03:74:ff:93:d2:02:8e:be:20:9d:2f:cd:8f:
f4:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:96:96:A7:96:DB:6C:97:DC:44:8A:C6:49:5F:41:BF:8A:81:73:29
X509v3 Authority Key Identifier:
keyid:1D:44:04:C8:39:2E:82:D4:B7:02:9B:69:CB:6E:E2:90:B9:B4:2C:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HUQEyDkugtS3Aptpy27ikLm0LAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d4b835-f5b5-4704-ae97-c26328561030/1/U5aWp5bbbJfcRIrGSV9Bv4qBcyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d4b835-f5b5-4704-ae97-c26328561030/1/HUQEyDkugtS3Aptpy27ikLm0LAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.77.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:d3:1a:f4:84:7b:6e:cd:32:77:1e:0a:11:22:fd:dc:63:58:
d5:53:2b:a0:55:b1:67:d4:7e:06:e4:ce:8b:aa:d6:46:1c:a8:
05:7e:d3:ca:ce:91:39:b9:d2:ed:68:a0:13:63:6e:e2:6a:60:
14:3e:b6:7a:d5:58:c5:a4:86:ab:01:0e:7d:da:73:b9:03:4e:
0b:84:e4:c7:10:02:0d:b5:69:34:3d:aa:16:2a:d3:c4:37:a7:
8b:30:46:de:04:37:e8:e7:6c:2d:42:ec:e8:66:8d:99:5f:21:
ba:30:2b:fe:ea:d5:93:17:63:f4:d7:a5:a9:11:0d:9e:78:7d:
6a:81:af:3d:0a:06:ab:21:40:28:4a:35:04:2b:33:07:21:d6:
45:02:69:65:59:4c:aa:cf:34:ff:df:c8:c9:08:62:85:a8:fb:
1a:ae:89:fc:91:a6:80:62:f2:d5:09:77:bc:f9:61:36:05:41:
3d:ec:d8:e3:aa:69:01:13:22:50:ce:cb:a4:5b:74:da:87:f4:
c0:11:88:a7:13:3a:84:a4:d8:f0:48:d3:2c:2b:16:6f:9b:72:
75:d3:16:47:4b:2d:61:45:c3:29:db:2e:a8:78:ab:46:de:4a:
5c:61:ef:9f:69:bc:cd:43:8d:00:d6:2c:01:5a:21:92:a0:c1:
ac:e6:f8:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:47 2024 by rpki-client on console-ams.rpki-client.org