Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/uNPVXv0HbI62VWLyevxA6L5vASE.roa
File: uNPVXv0HbI62VWLyevxA6L5vASE.roa (raw, json)
Hash identifier: riC/FWxbDAsBPCr5ovedw0+d2wPGQGN4QENj2HIn9BQ=
Subject key identifier: B8:D3:D5:5E:FD:07:6C:8E:B6:55:62:F2:7A:FC:40:E8:BE:6F:01:21
Certificate issuer: /CN=621310302018a387c692146a35efd33a6ed6b1ef
Certificate serial: 018ACB5199C6F33AD15B957AAC0B3BCB94D4
Authority key identifier: 62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/uNPVXv0HbI62VWLyevxA6L5vASE.roa
Signing time: Mon 25 Sep 2023 07:50:37 +0000
ROA not before: Mon 25 Sep 2023 07:50:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 151487
IP address blocks: 185.99.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Oct 2023 20:05:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cb:51:99:c6:f3:3a:d1:5b:95:7a:ac:0b:3b:cb:94:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621310302018a387c692146a35efd33a6ed6b1ef
Validity
Not Before: Sep 25 07:50:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8d3d55efd076c8eb65562f27afc40e8be6f0121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ce:76:5a:98:ec:29:18:89:12:1e:1d:e9:ca:
04:49:a7:d8:be:fd:fa:65:ec:28:f4:5c:ec:05:0a:
51:22:af:b0:da:82:dc:a7:4d:2e:d8:b6:73:5c:93:
0b:b1:4f:a9:28:42:12:13:49:f5:f5:f3:9f:9a:cd:
51:a6:fd:8b:f7:f2:78:57:e3:c5:74:46:7d:81:6d:
4e:df:e9:9f:74:8c:8d:e1:55:02:e3:80:d6:b7:3b:
23:b0:ae:3c:19:0f:b3:a2:c9:27:5d:40:11:0b:63:
8b:48:ee:6b:d9:d9:bd:30:d4:3c:39:3f:90:d0:25:
ab:c8:58:2c:ea:57:1c:91:9b:11:63:b4:16:6f:d7:
a0:79:79:94:5c:cd:45:99:3b:80:09:97:e4:7d:63:
ff:80:73:18:fd:a0:0d:6d:ed:95:c5:97:72:12:92:
4f:72:a5:fe:0a:b8:41:28:99:53:b5:f1:17:6d:5e:
6c:6f:fc:fb:48:da:15:eb:88:27:3e:84:42:18:39:
0c:1a:fd:ba:69:1f:f2:1d:1f:b8:a6:07:8a:44:74:
4d:b3:62:1b:95:f2:29:d5:78:bf:1e:41:8c:a6:2b:
59:f0:2e:d7:8c:de:0e:1d:e5:52:15:cb:41:c7:db:
16:ad:00:3c:1a:4a:1a:3d:5e:29:ae:c9:f0:ac:e5:
17:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:D3:D5:5E:FD:07:6C:8E:B6:55:62:F2:7A:FC:40:E8:BE:6F:01:21
X509v3 Authority Key Identifier:
keyid:62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/uNPVXv0HbI62VWLyevxA6L5vASE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.20.0/24
Signature Algorithm: sha256WithRSAEncryption
01:b0:50:0a:d9:84:2c:bd:36:77:12:b2:63:32:3b:4e:cc:1c:
e3:e8:98:d7:a7:e9:25:64:d4:87:d1:2a:95:12:8d:34:e8:1d:
0b:54:de:5a:04:b0:c0:4c:b8:1c:ea:7a:a0:0f:ea:8b:90:60:
2c:36:36:ea:01:37:3c:a1:40:e1:58:ff:51:a8:47:f4:d7:b2:
11:41:52:81:4d:69:75:b9:80:22:fc:ea:40:ca:0d:a0:e7:8f:
4c:7a:49:e0:fc:e2:25:3d:19:1c:3b:5b:5c:49:d4:14:34:0c:
b8:bb:56:45:fc:29:4f:09:4c:48:fb:79:42:b0:fb:74:0f:3e:
35:3b:f2:1f:1b:dd:73:a3:e6:7f:f1:29:84:c8:93:53:17:c2:
d9:27:d3:0d:e4:b9:d7:65:79:e3:8d:0c:d0:44:72:c6:fc:ef:
cd:a5:a3:b9:72:af:c0:92:c0:d7:57:09:d7:3a:d1:8e:a5:79:
18:a4:dc:df:18:8d:da:68:bf:0c:9a:20:56:aa:59:a5:3c:7a:
8a:08:31:cc:de:28:94:29:01:90:b1:ee:e2:ed:de:96:f2:d2:
46:a8:2f:90:86:27:15:b0:96:be:f2:43:54:d5:2b:37:2d:bd:
f2:39:33:be:fc:00:4b:75:b3:52:9c:4f:a0:13:21:70:f6:4f:
68:80:7c:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:45 2024 by rpki-client on console-fra.rpki-client.org