Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/UMCiiRWELHWw7pXtykem_0SLyBY.roa
File: UMCiiRWELHWw7pXtykem_0SLyBY.roa (raw, json)
Hash identifier: 8g2aE8kt+uE+BUNYfC0nb6iEIqtdsEpIam3H9W8WDD8=
Subject key identifier: 50:C0:A2:89:15:84:2C:75:B0:EE:95:ED:CA:47:A6:FF:44:8B:C8:16
Certificate issuer: /CN=ff44dbaca56dac319401f68a50d917f5424611ad
Certificate serial: 01856D4AE29D31310F971310CD154C9C02E0
Authority key identifier: FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/UMCiiRWELHWw7pXtykem_0SLyBY.roa
Signing time: Sun 01 Jan 2023 12:25:02 +0000
ROA not before: Sun 01 Jan 2023 12:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399045
IP address blocks: 45.143.9.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:e2:9d:31:31:0f:97:13:10:cd:15:4c:9c:02:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff44dbaca56dac319401f68a50d917f5424611ad
Validity
Not Before: Jan 1 12:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50c0a28915842c75b0ee95edca47a6ff448bc816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:cc:a0:29:bc:25:91:8d:08:00:b9:62:a2:ac:
6e:92:97:3c:24:f4:dd:0c:1d:3e:26:32:3a:b5:f8:
03:f3:37:7e:c4:f3:bb:df:1b:fe:d6:03:b6:5d:e1:
6a:8b:6e:0c:b5:be:22:c3:49:fa:de:b4:aa:97:42:
59:70:e7:aa:2f:63:fb:ef:e6:0c:46:22:c9:e4:38:
ef:5a:2b:0f:b1:c2:0a:c0:3e:6f:1b:96:ff:b2:45:
81:db:61:81:2e:02:83:d5:b9:a9:26:fc:77:c1:ae:
95:a0:1c:41:ce:80:68:d6:12:9a:80:02:9b:9e:c6:
88:61:ef:66:b3:4a:49:fa:6f:2f:64:3a:7b:f8:30:
22:de:d7:84:00:0d:84:cc:14:c6:52:3c:92:c5:9c:
91:86:54:16:32:5f:63:26:aa:69:b0:b6:25:d3:ac:
9e:65:ae:2e:fd:21:b9:47:7d:57:9a:13:7b:b2:f2:
67:a8:a4:73:ad:ae:e3:82:9f:ad:c8:01:35:e2:59:
e1:24:46:2b:12:8b:06:a4:55:5c:11:0f:c4:46:c9:
08:c2:56:e8:00:09:68:59:d8:1e:64:2f:71:14:b8:
27:87:95:f8:45:d9:9a:d5:5f:8f:cd:3f:96:50:2c:
91:72:c1:79:95:2e:1d:24:e9:9d:78:8e:dc:a5:87:
9e:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:C0:A2:89:15:84:2C:75:B0:EE:95:ED:CA:47:A6:FF:44:8B:C8:16
X509v3 Authority Key Identifier:
keyid:FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/UMCiiRWELHWw7pXtykem_0SLyBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.9.0/24
Signature Algorithm: sha256WithRSAEncryption
00:3b:fa:b2:2a:b7:03:c6:b9:9b:87:ec:dc:94:7b:01:6c:7c:
93:1e:9c:80:8c:a3:94:51:01:ad:8e:69:91:15:46:44:08:d4:
b2:74:6c:9c:3b:e0:4e:02:4a:b0:4e:3f:47:22:0b:da:ea:d8:
6e:d0:9e:e2:77:50:8e:83:ed:7c:e5:fa:84:28:89:3e:69:5a:
b0:93:9e:4e:4e:36:3b:45:45:8b:37:4d:d2:c1:5f:8e:63:0c:
f6:76:a9:00:a1:f6:29:0b:8a:2a:c4:f3:14:c3:67:35:86:1f:
af:c4:ea:9d:d4:8b:d4:c1:15:2c:55:42:ce:31:bb:c4:76:87:
95:bd:f3:b5:fc:bf:78:a6:6b:93:38:5a:d1:03:34:1d:e3:72:
71:5b:94:36:f9:e6:d3:2b:ad:6a:10:cd:fa:38:c5:4c:6b:65:
aa:5e:df:3e:79:7a:d3:57:67:d0:a5:c0:94:57:a5:2f:ef:67:
20:6a:62:31:2c:80:7e:72:25:1b:58:ab:fb:cb:3f:da:e5:4a:
6e:ea:96:b4:a0:7d:17:29:c6:c0:20:ce:96:90:26:f8:29:89:
f6:6b:82:29:db:b8:f2:4b:61:42:bc:0e:b7:1e:2e:8c:38:c6:
da:fa:e2:5c:90:ab:a6:ed:71:53:6b:eb:99:fa:f5:8b:b4:6f:
26:7b:39:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 28 19:46:08 2023 by rpki-client on console-ams.rpki-client.org