Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/uVMqG-hqvhkmfqTnAAfnxx-G-TM.roa
File: uVMqG-hqvhkmfqTnAAfnxx-G-TM.roa (raw, json)
Hash identifier: ktYgwKlARQZmHdw1VssD5YmlFXGyrL4LOLjpYm88IDc=
Subject key identifier: B9:53:2A:1B:E8:6A:BE:19:26:7E:A4:E7:00:07:E7:C7:1F:86:F9:33
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 019128487F188DB7174189064BBD0B7771C1
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/uVMqG-hqvhkmfqTnAAfnxx-G-TM.roa
Signing time: Tue 06 Aug 2024 15:22:05 +0000
ROA not before: Tue 06 Aug 2024 15:22:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201138
IP address blocks: 185.145.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Aug 2024 10:04:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:28:48:7f:18:8d:b7:17:41:89:06:4b:bd:0b:77:71:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 6 15:22:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b9532a1be86abe19267ea4e70007e7c71f86f933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:41:cf:56:35:fe:5a:58:01:25:d0:1a:c1:b8:
94:5c:36:4b:c8:6b:cd:c9:a7:04:5f:9a:60:ee:80:
40:a5:c7:8f:7e:ec:44:2e:34:49:1c:4f:71:74:f3:
dd:bf:2e:01:dd:70:73:7f:1e:97:4f:9f:17:87:ac:
39:25:a8:89:3a:e9:70:c1:89:1b:ab:83:30:19:2d:
be:53:82:b3:1e:db:d0:46:89:5e:df:78:bd:47:5b:
25:e2:b0:b4:d1:aa:58:0b:39:f0:de:9a:78:7a:67:
33:d7:9d:0d:28:b7:dc:fa:db:6c:54:ad:bb:ff:70:
ba:91:44:d7:90:cf:69:e3:7c:9f:ed:85:3b:a2:37:
f6:62:99:83:23:ce:ea:28:54:34:77:5a:38:40:a3:
3f:a0:01:ce:65:c9:85:34:ac:7f:e9:ea:8d:86:f4:
1e:6d:18:00:a6:23:eb:97:c5:f6:de:2e:56:70:39:
a6:81:53:aa:1e:22:07:a5:ca:8a:88:ed:b4:ad:66:
ee:44:0d:4c:83:c2:04:57:cd:15:95:4d:ff:90:ff:
46:62:3c:d3:f6:7e:af:24:56:e5:26:13:f3:58:25:
06:0e:b4:72:a9:05:e8:cb:9a:f2:4c:59:8b:0d:ef:
4d:5f:99:68:5c:7f:77:49:05:1e:5a:63:50:bc:b5:
89:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:53:2A:1B:E8:6A:BE:19:26:7E:A4:E7:00:07:E7:C7:1F:86:F9:33
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/uVMqG-hqvhkmfqTnAAfnxx-G-TM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.55.0/24
Signature Algorithm: sha256WithRSAEncryption
66:f9:ce:5b:35:b9:b1:7a:9a:36:b6:f9:73:46:30:74:8c:23:
ae:f3:65:52:c3:59:9e:a2:d5:ac:c6:ef:46:44:72:33:76:4d:
15:02:1d:d1:14:98:99:e9:00:52:a2:e6:0f:c7:69:8c:94:91:
3c:ae:9a:3c:41:48:ba:46:de:ba:da:ca:a8:a4:9f:07:f8:94:
f9:0b:b9:e6:02:f9:a7:e2:aa:85:1a:5e:2f:3c:42:03:dd:93:
5f:d6:76:a9:29:1f:89:aa:37:9b:32:fc:98:6f:ff:a8:fa:82:
4c:2f:59:e8:76:44:82:51:7f:3a:b4:05:c1:e1:b3:18:96:43:
ff:9e:10:05:49:41:f3:91:05:78:61:6f:0b:88:7f:8d:6f:54:
0f:e2:f6:ec:f0:47:ec:84:4b:e1:1b:39:2c:bc:d2:b0:94:3e:
a1:10:cf:95:39:7a:65:b4:36:47:35:db:7b:e6:00:95:3e:c1:
ad:23:de:2a:e3:28:9f:c7:cb:da:85:97:18:14:70:93:67:90:
1a:0d:96:99:f2:20:29:33:5a:d4:bf:e1:55:ed:56:89:85:5e:
ad:4e:7c:81:ae:39:3b:ce:54:17:81:44:a8:af:6f:59:9b:0b:
7d:08:08:f8:48:e5:b5:63:bc:00:9b:12:54:5b:59:4e:be:91:
c3:5d:dc:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 9 12:13:07 2024 by rpki-client on console-fra.rpki-client.org