Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8d1756-225f-4579-b1e6-9d609770a9ea/1/uqLKGRqEFXv8b9UoAVA-LYDEjps.roa
File: uqLKGRqEFXv8b9UoAVA-LYDEjps.roa (raw, json)
Hash identifier: o5jLv61rGP9+X/udFz8IBO39LYuNK9CtW/DEwaDYvU4=
Subject key identifier: BA:A2:CA:19:1A:84:15:7B:FC:6F:D5:28:01:50:3E:2D:80:C4:8E:9B
Certificate issuer: /CN=89d5d1288a3c2ae17f99cbb18917700189bd4720
Certificate serial: 018736E8BA269D98321D34A4BA170701B5FD
Authority key identifier: 89:D5:D1:28:8A:3C:2A:E1:7F:99:CB:B1:89:17:70:01:89:BD:47:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idXRKIo8KuF_mcuxiRdwAYm9RyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8d1756-225f-4579-b1e6-9d609770a9ea/1/uqLKGRqEFXv8b9UoAVA-LYDEjps.roa
Signing time: Fri 31 Mar 2023 09:03:54 +0000
ROA not before: Fri 31 Mar 2023 09:03:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7155
IP address blocks: 185.155.196.0/24 maxlen: 24
37.99.208.0/21 maxlen: 21
Validation: Failed, certificate revoked on Fri 31 Mar 2023 09:44:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:36:e8:ba:26:9d:98:32:1d:34:a4:ba:17:07:01:b5:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89d5d1288a3c2ae17f99cbb18917700189bd4720
Validity
Not Before: Mar 31 09:03:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=baa2ca191a84157bfc6fd52801503e2d80c48e9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5f:1b:c6:36:af:bb:24:77:d5:23:24:3d:01:
f1:f1:ec:f5:65:87:df:f0:61:d4:01:48:31:cf:c6:
2d:65:a9:29:1e:7c:d4:e0:5c:76:ea:a3:89:ce:28:
46:76:8d:38:15:11:df:c1:ac:91:45:03:9f:20:6d:
78:e6:8c:dd:8f:9e:3d:96:96:a8:3f:89:a3:67:9f:
8d:18:86:4b:b5:0f:ec:25:20:d5:66:b3:2e:0a:1d:
6a:15:3b:4d:d3:a1:cf:52:ee:2b:89:50:a3:51:03:
ea:36:07:0c:c5:37:5f:b4:21:ed:d4:cb:ab:d8:cd:
8f:cc:c7:2d:50:50:a7:fb:42:ee:c3:69:92:b0:a8:
a7:94:da:60:fe:02:1a:83:81:e9:1b:d5:fa:09:99:
50:e3:8c:9c:0e:24:8a:f8:ea:04:3a:78:91:a2:5c:
78:96:c7:14:54:2e:f9:77:3a:2c:c2:fa:b3:dd:2f:
47:c8:2a:55:13:56:1f:65:87:02:04:14:86:b7:16:
4b:0e:ac:7c:bd:f9:73:9a:d3:ee:f7:39:2e:ae:62:
0d:28:91:31:48:4d:ed:f0:0b:1e:5b:21:52:5f:41:
77:2b:86:a1:28:95:87:bb:9e:ed:e9:61:85:35:a6:
29:11:23:42:ef:61:ed:64:b9:b7:73:2b:2e:b1:3e:
61:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:A2:CA:19:1A:84:15:7B:FC:6F:D5:28:01:50:3E:2D:80:C4:8E:9B
X509v3 Authority Key Identifier:
keyid:89:D5:D1:28:8A:3C:2A:E1:7F:99:CB:B1:89:17:70:01:89:BD:47:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idXRKIo8KuF_mcuxiRdwAYm9RyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8d1756-225f-4579-b1e6-9d609770a9ea/1/uqLKGRqEFXv8b9UoAVA-LYDEjps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8d1756-225f-4579-b1e6-9d609770a9ea/1/idXRKIo8KuF_mcuxiRdwAYm9RyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.99.208.0/21
185.155.196.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:e9:55:cf:bc:4d:a0:f7:14:7a:77:2d:35:6f:86:50:fe:08:
12:2a:d3:24:cd:9e:e0:28:62:97:e4:90:32:06:dc:03:5c:c7:
f2:70:46:a8:2f:d3:45:3f:78:79:99:ac:d6:2f:4b:9a:93:e8:
c2:15:2a:a6:08:08:17:0f:f2:e4:bf:96:81:ca:bb:4f:73:9c:
28:53:a3:35:ad:ed:0c:56:00:42:df:de:f9:7f:d4:11:19:40:
2a:2c:a2:a9:01:46:25:7e:bc:34:c6:d9:51:d2:81:a4:84:12:
79:81:e0:34:ee:f0:53:ce:ff:c3:85:ac:7d:fd:a9:92:8a:84:
27:81:20:86:8b:80:0f:ed:16:ae:88:5e:2b:3c:a3:30:d7:0f:
60:5c:f2:5e:ef:d0:7c:f5:e3:5f:86:10:8e:77:2b:e5:5c:08:
ca:b1:a9:a0:a8:ae:f0:12:37:c2:6c:fe:52:b4:4d:cb:92:77:
f9:e5:18:e2:09:cb:67:69:96:42:17:d2:92:a3:fa:6d:34:33:
46:11:6a:3a:50:ae:d7:9b:b9:e6:28:ad:63:8f:e8:6e:ba:08:
e7:61:db:97:c3:ba:ef:f9:53:c5:2c:bd:17:81:c8:84:87:80:
aa:37:66:ad:a8:38:bb:a1:86:a9:95:57:a2:1b:41:63:4d:46:
10:18:db:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:56 2024 by rpki-client on console-ams.rpki-client.org