Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/U23lszzF8_0f1rpLPQPWIwVMMyA.roa
File: U23lszzF8_0f1rpLPQPWIwVMMyA.roa (raw, json)
Hash identifier: IRKCB1fSSpvnhSR44rxP7oFgLB9f+lkN+AV0YpFskLg=
Subject key identifier: 53:6D:E5:B3:3C:C5:F3:FD:1F:D6:BA:4B:3D:03:D6:23:05:4C:33:20
Certificate issuer: /CN=380b283a0513940d520a680b8b3d14dbc367770d
Certificate serial: 018CC49395504E281E4EDFA615BF250CA8EC
Authority key identifier: 38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/U23lszzF8_0f1rpLPQPWIwVMMyA.roa
Signing time: Mon 01 Jan 2024 10:30:55 +0000
ROA not before: Mon 01 Jan 2024 10:30:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57771
IP address blocks: 185.54.92.0/22 maxlen: 24
2a00:8640::/29 maxlen: 48
Validation: Failed, certificate revoked on Thu 07 Nov 2024 14:17:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:95:50:4e:28:1e:4e:df:a6:15:bf:25:0c:a8:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380b283a0513940d520a680b8b3d14dbc367770d
Validity
Not Before: Jan 1 10:30:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=536de5b33cc5f3fd1fd6ba4b3d03d623054c3320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b9:38:26:8a:2f:72:e7:48:a1:0f:dc:80:d5:
e4:f8:98:ce:98:c9:fb:29:c6:35:3a:26:1c:ea:87:
99:3e:88:4d:b8:cf:ad:c3:a2:1a:f1:3d:4b:17:7f:
07:46:8b:2c:be:b9:c4:28:76:05:1c:89:0b:e6:a9:
59:92:0c:4c:85:27:a4:4b:93:5d:4c:da:68:c0:fe:
12:19:94:9c:4a:12:f8:c3:c7:c2:84:9b:2f:32:b7:
ce:19:12:3e:e5:0a:03:66:41:b5:80:bb:98:3b:cd:
4e:23:9e:b0:66:67:04:4c:c1:8e:7a:8b:09:92:ef:
06:77:0f:c8:b8:6d:24:e7:4d:d0:83:42:e4:5c:05:
a5:27:2f:88:22:8c:2d:3f:f5:1f:3a:3f:d1:d0:ba:
6f:9a:b3:89:f7:ab:c3:3c:06:7c:ff:7d:bb:bd:66:
a4:0e:4a:e3:f7:b3:5a:22:42:45:21:07:dc:c8:f3:
8c:a0:7a:05:0d:0a:da:d2:ad:e4:5c:28:c9:1a:0a:
27:70:c9:9c:0b:2f:d0:1f:95:e9:65:9e:13:f3:75:
53:79:71:d0:7a:33:4d:e3:83:e2:93:ea:b2:20:66:
f6:f6:49:99:94:55:e9:06:07:e8:f2:ab:ef:a7:cb:
0c:98:d1:07:e1:83:92:60:81:7c:e6:75:32:b6:26:
68:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:6D:E5:B3:3C:C5:F3:FD:1F:D6:BA:4B:3D:03:D6:23:05:4C:33:20
X509v3 Authority Key Identifier:
keyid:38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/U23lszzF8_0f1rpLPQPWIwVMMyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/OAsoOgUTlA1SCmgLiz0U28Nndw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.92.0/22
IPv6:
2a00:8640::/29
Signature Algorithm: sha256WithRSAEncryption
b5:5d:38:3d:e1:2a:1e:47:d4:08:bd:d4:85:85:f0:e8:6b:32:
25:9f:c3:37:58:62:3a:16:62:52:76:ea:57:b9:50:50:35:20:
87:e2:cb:b9:78:b1:7a:74:1b:d5:4d:ff:3d:b7:5b:af:df:11:
9d:75:1c:e3:ab:0c:db:ad:b3:d6:7a:05:ca:ab:34:07:58:5d:
ab:d4:4d:cb:61:0b:09:d8:96:ba:01:e4:a5:a3:19:1c:33:7a:
44:81:a1:c1:04:36:b3:f6:61:ad:7e:22:38:35:b8:2d:99:2f:
b5:96:2d:65:dd:e8:47:25:b8:d9:7e:3c:ca:7e:8e:9e:b8:00:
23:73:f6:54:50:35:6a:cf:bc:88:90:e4:39:d0:46:b0:8b:8a:
cd:35:de:62:51:ad:0d:98:1e:d4:95:f6:24:30:a1:67:fa:85:
58:ea:94:1e:c4:ae:a6:83:56:39:1b:52:e3:b4:bf:d5:03:23:
08:ee:b0:2c:37:4d:49:87:fd:aa:8a:f5:94:cc:68:18:2a:e3:
b8:d7:33:3c:b6:96:c7:fa:bb:82:66:a5:aa:95:73:03:f3:6e:
c7:e0:4e:c0:70:f8:40:5b:8b:a8:3d:ab:bd:6d:e6:1b:13:1e:
41:ae:d3:e0:50:5a:e2:a5:9d:92:9a:35:f3:cc:70:11:9b:c3:
84:70:11:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 7 17:43:10 2024 by rpki-client on console-ams.rpki-client.org