Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/uQj1G9wQZxjASwfuHfpDwIVMp7A.roa
File: uQj1G9wQZxjASwfuHfpDwIVMp7A.roa (raw, json)
Hash identifier: z4zvy9Si6FTfvVE9tyFz62p/XdJ7byb4rqWScaUiKjU=
Subject key identifier: B9:08:F5:1B:DC:10:67:18:C0:4B:07:EE:1D:FA:43:C0:85:4C:A7:B0
Certificate issuer: /CN=3ad734cf90c773428806b968209515b914831a9d
Certificate serial: 018E29A03A64A0DFF8512FE1CC455BD052B5
Authority key identifier: 3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/uQj1G9wQZxjASwfuHfpDwIVMp7A.roa
Signing time: Sun 10 Mar 2024 18:29:10 +0000
ROA not before: Sun 10 Mar 2024 18:29:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.191.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 19:17:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:29:a0:3a:64:a0:df:f8:51:2f:e1:cc:45:5b:d0:52:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad734cf90c773428806b968209515b914831a9d
Validity
Not Before: Mar 10 18:29:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b908f51bdc106718c04b07ee1dfa43c0854ca7b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:31:91:41:6d:b5:da:2f:30:c7:ef:10:e5:5d:
bc:95:01:b5:85:d3:be:23:85:f4:9c:29:3e:ff:3c:
02:1e:83:44:35:39:04:3c:d0:c5:46:81:23:91:63:
33:bd:1d:91:a3:c7:3c:d9:59:49:96:c2:24:10:7b:
67:85:41:e2:49:7f:ae:12:11:60:cc:0c:05:94:8e:
53:43:5a:83:d2:38:c4:bf:ab:28:1d:ca:f2:fc:57:
df:25:6b:5a:ba:32:51:81:33:c1:88:09:eb:e5:bb:
39:72:d6:93:d8:cd:78:8a:16:9e:22:a4:23:ee:0b:
c2:fc:70:b0:d9:49:ca:ad:18:55:d8:11:25:25:46:
0b:36:d5:d9:12:9a:0b:9b:67:1e:3a:da:1c:22:c7:
8b:61:84:17:4c:9f:7a:3b:a6:e0:cf:ee:c5:ab:43:
68:47:c0:ef:65:02:ef:95:ef:2b:12:b5:ff:15:8a:
a9:8d:6e:1b:d7:64:5e:a6:75:7f:2c:66:f5:3c:19:
f3:59:17:9e:dd:5d:ba:4b:a8:dc:80:cc:97:d1:f5:
08:54:b5:5b:ca:fc:18:be:7b:f3:cd:96:79:29:94:
f5:13:1d:0b:da:43:cc:17:e0:67:9e:5a:a9:58:f3:
59:6a:97:cb:ba:29:cd:74:51:97:38:ee:9d:b7:b9:
2a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:08:F5:1B:DC:10:67:18:C0:4B:07:EE:1D:FA:43:C0:85:4C:A7:B0
X509v3 Authority Key Identifier:
keyid:3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/uQj1G9wQZxjASwfuHfpDwIVMp7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/Otc0z5DHc0KIBrloIJUVuRSDGp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.20.0/24
Signature Algorithm: sha256WithRSAEncryption
43:15:cf:67:22:a8:83:00:1c:10:d9:99:e5:6e:ac:86:d4:01:
5f:36:14:0e:c8:a7:8d:52:fc:b5:92:55:db:90:90:56:80:f0:
1b:8d:9d:e9:3c:c3:5f:e3:8f:0f:ff:f6:e7:bb:90:55:0b:11:
89:20:49:2a:19:56:af:f6:16:a5:17:a7:d7:25:c4:b4:b4:85:
91:fd:8d:59:20:52:5c:f9:a1:af:ce:1f:1d:6b:5a:26:d2:a0:
58:ef:fb:27:ca:e4:65:b4:b6:38:5c:ba:4c:55:07:91:83:e7:
34:2d:f2:e6:99:14:d6:cb:87:a6:33:54:08:0e:29:a2:cd:f7:
39:53:46:19:2c:c7:dc:66:79:ac:04:83:2a:fc:d9:c6:dd:5d:
ba:da:37:3c:73:82:dc:47:07:dd:af:20:94:2c:58:b4:38:52:
6e:e5:2f:0b:7b:2b:37:23:c1:9c:6c:46:3c:7a:6c:98:63:a5:
1b:48:57:17:58:92:d3:9f:3d:04:20:eb:d1:e3:3b:cd:7d:f5:
6b:c0:5d:4d:23:61:76:44:a1:46:68:8e:76:dd:08:fa:c9:a1:
3c:c4:2e:d5:83:d2:33:79:2c:1a:14:7a:40:34:52:b9:03:f8:
a2:77:bb:55:85:f3:c4:09:f2:b4:4c:34:19:7a:b8:56:cf:d6:
0a:fe:92:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:01 2024 by rpki-client on console-fra.rpki-client.org