Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/b5fa3e-a218-4a91-bf88-cc8ec6f3d875/1/AQA3pCmhSJ6na1HwL-DaclRj6-w.roa
File: AQA3pCmhSJ6na1HwL-DaclRj6-w.roa (raw, json)
Hash identifier: nm5RCE380vYVa7u+kT4nioOPsDY+vPsGJPW0oijkId4=
Subject key identifier: 01:00:37:A4:29:A1:48:9E:A7:6B:51:F0:2F:E0:DA:72:54:63:EB:EC
Certificate issuer: /CN=ba4a0d1d80ff1eecd3659074a497bfbe8c5543f6
Certificate serial: 018ABBFDA722BAA7FF9A1A538D1B1C0A020F
Authority key identifier: BA:4A:0D:1D:80:FF:1E:EC:D3:65:90:74:A4:97:BF:BE:8C:55:43:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ukoNHYD_HuzTZZB0pJe_voxVQ_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/b5fa3e-a218-4a91-bf88-cc8ec6f3d875/1/AQA3pCmhSJ6na1HwL-DaclRj6-w.roa
Signing time: Fri 22 Sep 2023 08:24:37 +0000
ROA not before: Fri 22 Sep 2023 08:24:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12843
IP address blocks: 185.53.206.0/23 maxlen: 23
185.53.204.0/22 maxlen: 22
185.53.204.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:bb:fd:a7:22:ba:a7:ff:9a:1a:53:8d:1b:1c:0a:02:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4a0d1d80ff1eecd3659074a497bfbe8c5543f6
Validity
Not Before: Sep 22 08:24:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=010037a429a1489ea76b51f02fe0da725463ebec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c3:ef:84:6b:29:73:84:1b:b2:31:2f:98:6e:
9c:23:50:5d:2d:c5:90:12:f2:a2:d6:5b:3a:6d:c4:
41:00:b1:27:7e:91:d4:2b:96:bd:be:25:c6:7f:d6:
a7:00:8b:94:44:0f:91:ab:c9:e1:11:12:9e:dd:14:
87:a8:c9:29:a7:69:19:16:dc:c2:b9:65:d0:c6:9a:
33:0e:3e:7e:fe:ef:d4:ec:d3:cb:3f:92:ba:ec:95:
78:c2:9d:d4:d9:15:08:01:f1:a2:17:0f:45:cd:8f:
ba:35:e0:40:27:c9:d0:66:97:2f:a7:47:f3:8b:00:
aa:b8:6b:e5:c8:5c:b7:5a:1d:b4:96:6f:c3:28:90:
11:f1:ae:f5:69:e8:62:97:fb:60:3d:71:14:a8:30:
a5:b2:bc:9f:45:bb:66:e7:88:dd:42:fb:8f:b3:9b:
05:c6:33:88:ce:53:ca:63:b5:e5:bc:9a:01:8c:d4:
01:38:17:28:3f:68:fb:a4:ba:60:f3:d8:f1:db:2a:
3f:ff:82:35:b0:7d:41:67:b9:67:1b:bd:a0:02:69:
7b:be:fd:24:9c:cb:4d:84:4c:01:d0:57:b6:3f:15:
c1:27:fe:16:1b:bc:bd:3b:0b:0f:cf:96:78:41:ee:
51:c6:a6:d9:49:34:0d:72:cc:3a:ef:ef:fc:cf:31:
9c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:00:37:A4:29:A1:48:9E:A7:6B:51:F0:2F:E0:DA:72:54:63:EB:EC
X509v3 Authority Key Identifier:
keyid:BA:4A:0D:1D:80:FF:1E:EC:D3:65:90:74:A4:97:BF:BE:8C:55:43:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukoNHYD_HuzTZZB0pJe_voxVQ_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/b5fa3e-a218-4a91-bf88-cc8ec6f3d875/1/AQA3pCmhSJ6na1HwL-DaclRj6-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/b5fa3e-a218-4a91-bf88-cc8ec6f3d875/1/ukoNHYD_HuzTZZB0pJe_voxVQ_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.53.204.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:ae:9b:2b:31:af:24:f5:21:ce:0f:8d:0a:bf:77:fd:41:c9:
b8:2b:c6:53:d4:89:fe:d7:fd:30:19:84:f1:2e:39:46:47:4d:
59:bd:d0:06:d0:2c:ac:45:bc:d3:21:f1:9a:d3:dc:bd:84:13:
cb:29:e7:b1:0a:09:55:c7:4c:e1:d8:c5:5c:dc:89:34:1d:2b:
96:82:b5:aa:32:ce:48:7c:21:e9:a3:c0:e2:cc:48:81:e8:5a:
3d:20:4c:80:2f:64:91:f7:7c:60:51:32:c3:9f:7b:05:1b:e5:
55:31:37:9c:9d:85:0a:58:d0:c1:dd:21:22:04:21:ce:50:ad:
b8:cf:16:7a:01:fd:0c:28:a5:ad:2b:60:06:1d:90:d5:88:fc:
50:14:de:ba:d6:18:10:d3:93:7b:30:22:6c:63:43:2e:2c:c8:
27:74:5b:ad:ff:8d:a9:1a:f9:d3:fc:a6:9b:9b:2e:b2:b0:9e:
44:9e:8d:d8:98:16:b7:ec:6a:9e:37:6a:e7:6c:a5:25:75:0c:
61:88:da:0c:09:8c:df:db:7c:92:b6:10:8b:13:07:d4:4d:76:
54:d5:bc:12:72:6e:00:86:bd:9b:5c:9a:ea:d8:86:f7:93:77:
85:93:57:8f:d1:ae:4d:72:93:f1:36:2c:d1:9e:b7:1e:58:bc:
4f:30:be:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:13 2024 by rpki-client on console-fra.rpki-client.org