Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/a3baca-437d-4607-9c1a-557a4c31e02e/1/Uvm1eqqll3klrDGVCIJoIylbdVk.roa
File: Uvm1eqqll3klrDGVCIJoIylbdVk.roa (raw, json)
Hash identifier: dHRdACYhE1wULUj/prigSx+Rcju2AtBjOvJGOMvMQPE=
Subject key identifier: 52:F9:B5:7A:AA:A5:97:79:25:AC:31:95:08:82:68:23:29:5B:75:59
Certificate issuer: /CN=b4c41e59834da612d83ca24194f02ca6d7602448
Certificate serial: 01909B98176A97203FD4ABBC31836BCCA7A9
Authority key identifier: B4:C4:1E:59:83:4D:A6:12:D8:3C:A2:41:94:F0:2C:A6:D7:60:24:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tMQeWYNNphLYPKJBlPAsptdgJEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/a3baca-437d-4607-9c1a-557a4c31e02e/1/Uvm1eqqll3klrDGVCIJoIylbdVk.roa
Signing time: Wed 10 Jul 2024 07:42:34 +0000
ROA not before: Wed 10 Jul 2024 07:42:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51148
IP address blocks: 185.133.160.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 10 Jul 2024 10:21:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9b:98:17:6a:97:20:3f:d4:ab:bc:31:83:6b:cc:a7:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4c41e59834da612d83ca24194f02ca6d7602448
Validity
Not Before: Jul 10 07:42:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52f9b57aaaa5977925ac319508826823295b7559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:6a:4c:c6:9b:97:3e:1b:5d:2a:94:fe:a5:9c:
8b:4f:80:a6:a8:22:94:f8:2a:21:a2:95:49:d8:4a:
dc:53:95:94:a1:ee:5e:dc:da:58:3d:73:7c:05:70:
06:fc:05:1f:27:78:d0:d7:bf:e1:89:58:3f:65:66:
a1:ba:52:49:6e:46:b7:38:62:bc:2a:b9:d6:f5:b2:
bc:11:e4:b8:a4:c8:65:66:8c:9f:45:fb:4c:50:e9:
64:88:7b:38:88:af:76:f3:ed:b9:3f:94:e2:b4:b9:
69:13:e7:a1:6d:26:ca:d7:b0:5e:34:31:59:e1:7b:
fb:4f:77:19:e4:8c:d7:cc:3f:01:09:f5:2c:06:3f:
ee:0e:d3:f9:c3:52:50:6d:52:9c:a6:b1:c2:51:9a:
e7:7f:31:77:26:b6:32:39:16:cd:d8:e6:a0:f0:7a:
56:e1:62:7f:4c:0c:26:88:b0:18:47:fa:15:50:a4:
08:b2:63:9d:d5:8d:78:70:ce:f2:07:7f:34:e8:ff:
c7:6d:e1:54:2d:eb:7f:a6:a7:35:21:bf:8a:20:57:
f6:30:3e:e8:25:ca:34:b6:c1:f7:2f:20:2e:f5:42:
2f:34:09:aa:d0:aa:ba:b3:c3:7f:9c:01:dd:13:e1:
a7:0c:57:4c:46:6a:91:c2:5b:79:87:e9:8e:fc:30:
de:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:F9:B5:7A:AA:A5:97:79:25:AC:31:95:08:82:68:23:29:5B:75:59
X509v3 Authority Key Identifier:
keyid:B4:C4:1E:59:83:4D:A6:12:D8:3C:A2:41:94:F0:2C:A6:D7:60:24:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tMQeWYNNphLYPKJBlPAsptdgJEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a3baca-437d-4607-9c1a-557a4c31e02e/1/Uvm1eqqll3klrDGVCIJoIylbdVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a3baca-437d-4607-9c1a-557a4c31e02e/1/tMQeWYNNphLYPKJBlPAsptdgJEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.160.0/22
Signature Algorithm: sha256WithRSAEncryption
08:84:ae:2e:bf:9b:12:8e:f0:91:a0:df:c2:bc:78:b8:d5:9c:
fa:cc:14:0c:6a:0d:5b:60:ba:f3:cf:68:88:99:f6:58:f2:b9:
9a:8c:c2:df:c4:2e:cf:a7:70:50:30:bc:e8:80:34:8e:56:b9:
f2:db:6d:ec:a6:0a:2b:07:d4:96:a3:f3:c6:b7:5f:10:f1:20:
8b:aa:de:0f:4b:80:51:c8:eb:77:bc:f5:9e:56:c7:09:12:09:
b0:e5:0d:8d:cf:b7:e3:68:ea:eb:ba:f6:1f:19:9a:c0:83:ad:
b4:43:3c:83:54:0e:56:86:a2:8f:ca:db:99:23:03:4a:00:ee:
d0:99:0e:d0:e1:70:a6:f1:fd:3c:b7:05:ba:5b:84:8b:37:af:
4d:22:91:54:a5:e9:ac:91:dd:ee:8e:87:1c:27:68:1c:bd:4b:
aa:c5:5a:49:de:ae:da:90:12:8c:80:18:cd:1c:fe:1d:42:19:
a4:4f:ba:2c:5b:37:d6:e3:61:09:29:59:9d:de:ee:a8:70:7d:
e2:50:ec:7e:54:cd:7f:37:44:d7:d8:42:22:91:1e:c3:d5:e6:
4c:83:89:58:10:02:01:81:c0:e5:c9:8b:36:a3:04:ac:8b:57:
98:11:a0:19:37:0d:b8:fc:bb:a1:21:2d:1f:be:8b:e1:a5:a7:
ac:8d:17:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 10 12:35:04 2024 by rpki-client on console-ams.rpki-client.org