Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/UnjwE58k5OplJfPP9dsLrbJm_Os.roa
File: UnjwE58k5OplJfPP9dsLrbJm_Os.roa (raw, json)
Hash identifier: QSEdk1/QIZYjyFZ8xcvEmzQBqqzCCjWA3xXwDsCVx/o=
Subject key identifier: 52:78:F0:13:9F:24:E4:EA:65:25:F3:CF:F5:DB:0B:AD:B2:66:FC:EB
Certificate issuer: /CN=345ae646ea34ad2688aca2fdd1a6f3340356495e
Certificate serial: 018571151B00930E1631DA28DFA5C83CD9FE
Authority key identifier: 34:5A:E6:46:EA:34:AD:26:88:AC:A2:FD:D1:A6:F3:34:03:56:49:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NFrmRuo0rSaIrKL90abzNANWSV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/UnjwE58k5OplJfPP9dsLrbJm_Os.roa
Signing time: Mon 02 Jan 2023 06:04:46 +0000
ROA not before: Mon 02 Jan 2023 06:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50300
IP address blocks: 185.120.172.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:1b:00:93:0e:16:31:da:28:df:a5:c8:3c:d9:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=345ae646ea34ad2688aca2fdd1a6f3340356495e
Validity
Not Before: Jan 2 06:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5278f0139f24e4ea6525f3cff5db0badb266fceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:06:94:e8:0e:2b:63:ab:03:fe:77:58:67:b9:
fb:90:e3:aa:96:93:ac:06:d8:a3:5e:75:d9:ab:7d:
5b:e2:2f:64:44:49:cb:2a:86:07:2b:92:6f:81:56:
9f:a6:cd:e2:a5:4b:2f:03:6a:2a:e6:a2:d0:82:72:
39:38:a7:f4:7b:88:30:4d:a2:f9:ec:a9:92:4c:74:
25:a6:03:c2:c1:95:fc:03:ba:7e:8d:ed:fa:5f:71:
67:3e:96:a1:1a:f3:9d:ff:18:db:d5:f8:d6:2a:f3:
1c:af:36:03:44:36:1e:c1:2f:02:b9:ca:6a:bb:0a:
2b:2e:56:15:d3:f2:bd:4f:3b:93:f7:2b:0a:41:3e:
ec:b9:64:89:1f:b9:b1:f3:57:7e:69:e2:63:95:62:
63:29:ac:23:df:a9:60:37:e9:89:d0:41:7f:70:fc:
25:e8:5b:ec:f7:fe:67:1b:f5:95:44:92:8a:4d:d9:
96:59:66:70:d1:3d:1c:19:f9:7d:5b:1b:43:0c:3a:
00:dd:1b:aa:65:1a:55:96:c9:b8:6c:91:91:c0:51:
e0:3e:db:7d:60:26:c6:bf:c0:b2:d5:a5:4e:60:a5:
aa:01:36:9d:4b:df:ab:97:78:5e:79:46:6a:f0:5d:
88:6d:42:12:30:3a:b0:21:67:de:50:48:31:77:55:
42:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:78:F0:13:9F:24:E4:EA:65:25:F3:CF:F5:DB:0B:AD:B2:66:FC:EB
X509v3 Authority Key Identifier:
keyid:34:5A:E6:46:EA:34:AD:26:88:AC:A2:FD:D1:A6:F3:34:03:56:49:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NFrmRuo0rSaIrKL90abzNANWSV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/UnjwE58k5OplJfPP9dsLrbJm_Os.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/NFrmRuo0rSaIrKL90abzNANWSV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.172.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:4e:84:5c:82:8b:01:de:67:b1:64:24:63:8c:b0:3e:ae:2b:
0c:76:3a:bd:f1:05:1f:23:53:b3:e6:d5:f3:ab:7f:e9:46:d2:
65:23:72:f9:50:0e:28:8c:86:7d:3c:98:16:03:6c:80:c0:db:
bd:d3:a3:8b:59:b8:33:42:21:1b:ac:03:5d:dd:53:35:ef:14:
b4:fc:2a:30:8b:8a:bd:15:8a:5c:93:9c:35:fd:e7:68:81:28:
0f:41:b0:4d:a3:f5:82:39:4f:96:93:3d:bf:b8:08:e2:31:26:
89:dd:6e:81:e4:cb:51:29:12:0c:27:e6:d1:d1:0e:30:f4:c9:
ae:43:ae:a5:b7:66:05:f1:25:76:10:47:e9:51:d7:54:b3:86:
0f:b2:ed:b9:fa:4a:a5:57:1f:34:c7:58:a1:c1:c5:ae:c5:7a:
9e:93:33:0d:fa:84:24:41:ff:c2:c2:05:de:d4:48:9c:c2:68:
37:d3:b8:f9:3a:81:cf:fc:42:d5:9a:41:f8:fa:a2:71:e4:42:
c8:fa:40:49:81:b9:76:6e:af:4b:1e:bd:24:4e:d5:7c:6a:33:
41:58:89:1b:bc:21:b0:10:29:f0:f5:91:2e:4a:d9:0b:61:62:
60:40:18:4b:57:c0:eb:d3:d2:ef:1a:f2:27:79:03:04:51:9e:
96:b7:7f:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:11 2024 by rpki-client on console-fra.rpki-client.org