Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/3cd7ff-20d2-4cec-aeca-354399724b1e/1/U06xcLiL7bakEHxTbrVZIMptqGw.roa
File: U06xcLiL7bakEHxTbrVZIMptqGw.roa (raw, json)
Hash identifier: +esPJkxZzxfsUtRcadI+40FBfgKABgFymCHwwsSBC+w=
Subject key identifier: 53:4E:B1:70:B8:8B:ED:B6:A4:10:7C:53:6E:B5:59:20:CA:6D:A8:6C
Certificate issuer: /CN=ab30921d28c78ede81842f712e6cf72bde5a6080
Certificate serial: 018CC6B92716AB370E69608A661AF214D210
Authority key identifier: AB:30:92:1D:28:C7:8E:DE:81:84:2F:71:2E:6C:F7:2B:DE:5A:60:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qzCSHSjHjt6BhC9xLmz3K95aYIA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/3cd7ff-20d2-4cec-aeca-354399724b1e/1/U06xcLiL7bakEHxTbrVZIMptqGw.roa
Signing time: Mon 01 Jan 2024 20:31:12 +0000
ROA not before: Mon 01 Jan 2024 20:31:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 185.120.92.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 16 Jan 2024 09:38:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:27:16:ab:37:0e:69:60:8a:66:1a:f2:14:d2:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab30921d28c78ede81842f712e6cf72bde5a6080
Validity
Not Before: Jan 1 20:31:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=534eb170b88bedb6a4107c536eb55920ca6da86c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a5:81:4c:21:4b:c9:d4:1a:38:b2:57:79:42:
76:64:22:92:55:19:4d:84:e5:94:df:ee:b4:90:b2:
25:67:4b:9b:aa:1b:a9:90:be:ce:67:de:24:20:69:
b5:26:21:97:36:71:d9:d2:fe:96:5f:bc:9e:b7:c0:
53:85:02:a7:ca:30:71:23:51:3f:a8:4b:82:cd:70:
7b:88:a3:90:c7:7b:45:98:6a:20:38:a0:2a:28:25:
59:56:d3:f6:8b:11:f7:33:29:4f:03:98:87:b5:b6:
f0:00:ee:de:ae:9b:2d:8d:6f:19:1e:08:ee:66:22:
3d:18:27:77:10:b3:32:ca:11:df:29:b2:15:f9:cb:
9e:0a:13:ce:a4:8a:97:f5:72:f0:7c:19:e6:90:84:
3c:f8:89:ea:23:1d:0e:75:cd:e8:ec:51:8a:55:33:
87:99:c8:26:ae:b0:ae:f8:50:94:f7:46:11:da:c8:
c6:80:57:a0:bd:da:eb:ba:1c:1f:7f:e9:9c:93:5e:
97:ae:49:11:88:a0:fe:c4:b7:0b:13:70:cd:44:c7:
07:be:3a:42:38:19:86:34:28:3f:0e:f0:c9:16:fb:
a9:7b:5a:8f:e9:9d:20:45:ed:c9:c5:91:a2:ef:78:
35:9a:6b:ee:1c:67:fc:34:5f:c9:ba:d4:4d:e0:f8:
c2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:4E:B1:70:B8:8B:ED:B6:A4:10:7C:53:6E:B5:59:20:CA:6D:A8:6C
X509v3 Authority Key Identifier:
keyid:AB:30:92:1D:28:C7:8E:DE:81:84:2F:71:2E:6C:F7:2B:DE:5A:60:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qzCSHSjHjt6BhC9xLmz3K95aYIA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3cd7ff-20d2-4cec-aeca-354399724b1e/1/U06xcLiL7bakEHxTbrVZIMptqGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3cd7ff-20d2-4cec-aeca-354399724b1e/1/qzCSHSjHjt6BhC9xLmz3K95aYIA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.92.0/22
Signature Algorithm: sha256WithRSAEncryption
35:0d:78:02:23:d3:c9:8b:51:96:2c:f3:dc:16:7b:70:b0:39:
8a:3a:4f:3b:65:72:09:52:9a:e6:6b:c3:49:32:51:fa:6d:f6:
8f:f3:94:c1:99:28:3a:9e:2a:a1:4d:90:41:a2:b6:fa:80:48:
b8:67:84:f6:61:52:a2:be:34:97:1d:07:55:d9:5a:0d:d0:86:
fa:9b:c5:aa:e4:56:e9:83:88:91:1d:14:7e:b3:85:44:d3:34:
19:16:ce:83:37:d4:64:17:eb:7f:46:8b:73:f4:1c:41:83:e8:
6d:ef:d0:88:ad:d3:86:c5:51:94:9c:68:1c:12:dc:38:e6:a8:
4b:56:73:72:f6:66:98:2e:6c:48:31:7f:a7:71:f9:83:1d:46:
b6:50:3a:48:7a:04:28:23:af:41:0b:7d:4b:1c:92:36:e5:34:
9b:bb:b5:62:d3:eb:2e:0c:2e:e4:f6:07:f0:90:6a:f1:1e:31:
6c:aa:45:c9:f6:55:c1:bf:57:71:be:0a:08:6a:db:b8:6a:27:
07:d2:83:53:cb:53:7d:4f:d6:f0:af:50:33:0c:9c:0b:5d:70:
c4:2c:8a:58:67:fd:4b:7c:73:d7:92:f9:e7:cd:4d:fe:66:27:
f7:c2:ff:ef:22:0f:6f:b1:a1:ec:9b:8e:77:ef:9c:be:fe:4a:
2c:1c:48:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:10 2024 by rpki-client on console-fra.rpki-client.org