Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/97be50-2ce6-4e2b-a3e7-1a6ac98ac6f9/1/UOMbgOdcniPtq9kSkEsZtb5GE4o.roa
File: UOMbgOdcniPtq9kSkEsZtb5GE4o.roa (raw, json)
Hash identifier: shFLrqDOQ88KrLzmFT2I7d7ZA4i2bgutfa3EeveTb2w=
Subject key identifier: 50:E3:1B:80:E7:5C:9E:23:ED:AB:D9:12:90:4B:19:B5:BE:46:13:8A
Certificate issuer: /CN=be3364bc38f75b18d6f6eef203209f71c2768d85
Certificate serial: 018ACB562D6D888F734F59955EDDADBFCE69
Authority key identifier: BE:33:64:BC:38:F7:5B:18:D6:F6:EE:F2:03:20:9F:71:C2:76:8D:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vjNkvDj3WxjW9u7yAyCfccJ2jYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/97be50-2ce6-4e2b-a3e7-1a6ac98ac6f9/1/UOMbgOdcniPtq9kSkEsZtb5GE4o.roa
Signing time: Mon 25 Sep 2023 07:55:37 +0000
ROA not before: Mon 25 Sep 2023 07:55:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203203
IP address blocks: 185.179.84.0/22 maxlen: 22
185.179.85.0/24 maxlen: 24
185.179.84.0/24 maxlen: 24
185.179.86.0/24 maxlen: 24
2a0a:7e80::/48 maxlen: 48
2a0a:7e80::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cb:56:2d:6d:88:8f:73:4f:59:95:5e:dd:ad:bf:ce:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be3364bc38f75b18d6f6eef203209f71c2768d85
Validity
Not Before: Sep 25 07:55:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50e31b80e75c9e23edabd912904b19b5be46138a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:4a:29:de:bb:f1:f7:59:6d:51:36:c3:98:5b:
5f:4d:74:b5:28:3e:99:4e:6a:70:0a:18:1c:ce:83:
fa:74:2f:d4:ef:ce:33:e7:11:17:fe:26:9a:a7:b9:
a6:42:54:80:88:35:6a:6b:1b:f0:cf:b2:09:90:76:
8d:70:6c:7a:c0:d4:1a:25:1c:ff:6a:5d:33:dc:0a:
5e:6b:4a:c3:f5:5a:f5:e1:5a:ef:6a:42:8b:69:ac:
8f:1f:0b:94:a1:84:40:56:2f:4a:a9:6a:56:29:f1:
a9:18:ee:3e:83:5b:29:27:e0:cc:c8:ed:67:95:31:
80:34:8c:dc:1a:79:3b:c1:20:0c:d7:e4:56:22:76:
02:8b:bb:bf:07:29:72:37:16:34:47:2c:5f:74:60:
1d:e7:2c:9a:2b:c2:ba:05:ac:b7:8f:12:28:e4:21:
7d:2d:71:72:7d:4d:86:e4:4d:99:80:3d:17:25:65:
43:77:3a:ee:69:4b:91:a7:9a:26:38:a3:5e:79:f1:
71:62:9f:00:a7:21:e4:06:ff:19:20:37:30:89:ce:
a1:20:8f:42:42:17:b5:21:d4:22:1c:3a:32:55:07:
49:9b:b5:23:fc:88:6e:2d:71:61:a2:60:ac:a7:cf:
6a:b4:3f:0d:c4:47:23:d0:46:fa:b1:ee:cd:f1:a1:
17:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E3:1B:80:E7:5C:9E:23:ED:AB:D9:12:90:4B:19:B5:BE:46:13:8A
X509v3 Authority Key Identifier:
keyid:BE:33:64:BC:38:F7:5B:18:D6:F6:EE:F2:03:20:9F:71:C2:76:8D:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vjNkvDj3WxjW9u7yAyCfccJ2jYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/97be50-2ce6-4e2b-a3e7-1a6ac98ac6f9/1/UOMbgOdcniPtq9kSkEsZtb5GE4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/97be50-2ce6-4e2b-a3e7-1a6ac98ac6f9/1/vjNkvDj3WxjW9u7yAyCfccJ2jYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.84.0/22
IPv6:
2a0a:7e80::/29
Signature Algorithm: sha256WithRSAEncryption
4a:68:60:b7:69:74:16:fc:5c:11:2f:05:80:29:13:ff:23:7f:
ad:24:bc:61:e3:87:df:36:17:73:1a:14:e2:3d:c0:1d:8b:6e:
99:73:b5:52:28:8c:9a:d4:d7:fc:fa:db:a2:f4:5b:f9:11:31:
a2:0f:8d:84:aa:71:85:af:2e:1e:67:be:0f:07:88:15:34:30:
d9:09:5c:32:f0:06:fa:fe:9c:23:5c:b0:24:53:bc:1f:1f:28:
66:8e:cf:00:d9:1c:ba:1d:e2:6d:24:d7:d4:2b:51:f0:e0:7b:
ba:c0:26:00:31:ef:95:ad:c7:ec:3c:5a:b4:e4:8e:4c:02:00:
e2:5e:04:d5:0f:db:6c:0b:0c:e9:cc:cd:c3:3c:6b:14:0d:26:
4c:30:af:37:24:05:bb:5b:d1:05:a6:fa:db:62:cc:38:6f:58:
df:81:8e:9d:d2:a3:82:21:7c:ba:d6:6f:0a:76:8f:f6:5d:1a:
97:7e:ba:c6:8e:75:3b:64:81:8e:21:0c:83:b2:ba:d2:69:a6:
73:ab:f1:b9:52:9b:94:41:6b:4b:21:5c:f8:c1:8d:c2:a6:3a:
74:29:ba:a2:4a:70:bb:f3:f0:04:04:f5:c5:74:a4:88:93:9c:
1b:a7:5a:14:ff:1d:33:37:70:08:10:91:f0:ce:d1:35:39:92:
59:5f:e8:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:04 2024 by rpki-client on console-ams.rpki-client.org