Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/uksJh46Sb5b8XDizqIShTVzn0ns.roa
File: uksJh46Sb5b8XDizqIShTVzn0ns.roa (raw, json)
Hash identifier: iwpuvOCcTYCCbIHiYQ6suAIUDjdnRETW8SOz2uCsPNU=
Subject key identifier: BA:4B:09:87:8E:92:6F:96:FC:5C:38:B3:A8:84:A1:4D:5C:E7:D2:7B
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018A96A5E954A1277F1102A5BD2683F18DCC
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/uksJh46Sb5b8XDizqIShTVzn0ns.roa
Signing time: Fri 15 Sep 2023 02:22:50 +0000
ROA not before: Fri 15 Sep 2023 02:22:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209178
IP address blocks: 185.235.165.0/24 maxlen: 24
2a02:afc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:96:a5:e9:54:a1:27:7f:11:02:a5:bd:26:83:f1:8d:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Sep 15 02:22:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba4b09878e926f96fc5c38b3a884a14d5ce7d27b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:8b:06:8c:b9:a9:94:a5:d4:02:6e:cb:c7:87:
96:d6:44:88:43:0d:bc:89:7b:7e:be:71:7c:76:3b:
2c:ad:c0:1d:1f:e7:c4:14:c8:81:08:d9:f5:0e:54:
45:3d:79:2c:df:ef:06:cf:38:ae:9e:a8:04:4f:42:
ba:21:fa:ff:09:99:95:c6:3d:78:ab:b9:ab:21:99:
c0:ad:57:b6:c6:03:a8:52:1c:ce:e9:72:9a:5c:3b:
15:96:17:91:49:79:93:dc:75:84:e1:03:69:83:da:
ed:91:9a:58:db:48:f4:aa:03:21:a2:a0:6c:2a:4e:
bc:ad:37:12:b7:5c:84:f2:f9:21:ee:b9:14:c5:a4:
ff:37:45:8a:fc:6d:95:c5:28:b2:9e:28:b0:87:45:
67:ab:39:76:0a:1b:97:bc:38:cc:9e:c9:59:fb:30:
98:19:26:1c:ef:4f:cb:c7:16:e6:96:ad:8f:a6:a2:
5e:83:10:ce:b1:3b:64:2d:73:5c:5f:43:c7:e9:b9:
b8:66:77:46:df:73:12:0d:e5:b0:cd:8a:42:bb:73:
1b:59:c4:e1:83:7b:27:27:70:96:22:54:53:f9:46:
0e:04:87:d6:ff:28:8a:f9:3c:15:9f:ba:8c:08:b7:
76:a2:7b:37:f6:8f:b0:3e:fe:71:a1:1b:55:07:20:
8a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:4B:09:87:8E:92:6F:96:FC:5C:38:B3:A8:84:A1:4D:5C:E7:D2:7B
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/uksJh46Sb5b8XDizqIShTVzn0ns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.165.0/24
IPv6:
2a02:afc0::/29
Signature Algorithm: sha256WithRSAEncryption
bf:cc:06:43:69:0f:e2:19:48:b3:47:26:77:da:f0:10:ee:c5:
df:34:24:ef:cd:cc:7f:61:9b:5e:65:52:e3:4e:c7:d8:a5:9e:
e2:f5:14:12:0a:42:c6:f4:c9:ea:42:c9:68:dc:ba:f3:c6:95:
8e:b9:57:69:87:2d:aa:81:3c:25:c0:68:75:f6:2c:1b:44:f0:
5a:20:5a:05:8a:df:70:b2:16:ae:83:82:f9:f8:8d:4b:03:2f:
b5:b5:da:e3:9a:66:ae:fd:4e:63:cd:02:dd:aa:36:9c:f3:6f:
fd:6e:07:1a:4e:76:71:79:64:b6:78:d0:09:eb:39:58:c7:5d:
35:de:ad:ae:6a:ef:fd:69:4b:a0:da:c4:09:59:ba:96:21:3b:
89:b4:87:23:09:d2:b5:7f:27:8c:3c:3d:6d:23:a9:30:07:0b:
a9:cc:49:06:3f:5c:28:7e:4f:a8:90:23:ef:be:c9:16:fd:a7:
cf:be:8e:82:2e:55:7c:04:c8:c5:9a:cd:70:84:33:92:e4:4e:
82:f5:43:be:9c:3a:ec:f6:5d:61:42:bd:2b:78:89:95:aa:ce:
b2:17:b3:f7:12:4d:24:d2:10:55:32:fe:ab:64:12:19:5d:e3:
1c:10:dc:58:20:c9:55:7a:8b:8b:6d:36:04:33:1d:8e:28:f7:
95:c5:cd:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:04 2024 by rpki-client on console-ams.rpki-client.org