Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/95d71d-f41b-4171-8350-e0892a28aac9/1/UzY9GYuD-dfun8XGlUzJkc5N-yo.roa
File: UzY9GYuD-dfun8XGlUzJkc5N-yo.roa (raw, json)
Hash identifier: rVngtiERsUCG6pe+ZoxePV2VV1gcVvPPr2z44CRfgV0=
Subject key identifier: 53:36:3D:19:8B:83:F9:D7:EE:9F:C5:C6:95:4C:C9:91:CE:4D:FB:2A
Certificate issuer: /CN=7400d5013c12852242343093cbf5148d4eaeaaf9
Certificate serial: 01879EB9607D31869BE26374C3D901A1ADD3
Authority key identifier: 74:00:D5:01:3C:12:85:22:42:34:30:93:CB:F5:14:8D:4E:AE:AA:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dADVATwShSJCNDCTy_UUjU6uqvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/95d71d-f41b-4171-8350-e0892a28aac9/1/UzY9GYuD-dfun8XGlUzJkc5N-yo.roa
Signing time: Thu 20 Apr 2023 12:52:41 +0000
ROA not before: Thu 20 Apr 2023 12:52:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212440
IP address blocks: 185.112.180.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9e:b9:60:7d:31:86:9b:e2:63:74:c3:d9:01:a1:ad:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7400d5013c12852242343093cbf5148d4eaeaaf9
Validity
Not Before: Apr 20 12:52:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53363d198b83f9d7ee9fc5c6954cc991ce4dfb2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:80:83:f1:e0:f6:bd:86:36:06:16:bd:8b:c1:
ee:6e:97:b6:04:b6:8a:82:8c:02:45:d9:4c:d7:e6:
91:33:b4:fe:74:78:65:56:a8:19:f3:60:f1:bb:70:
f3:d0:46:33:78:46:c1:c8:0c:ac:59:bf:ce:2c:8a:
15:ee:4a:4e:d0:66:64:96:18:4f:9e:eb:94:0d:23:
5d:25:17:80:02:01:74:be:1b:ae:89:b3:2c:47:10:
4c:5b:ec:c2:ab:6a:22:b7:ac:4d:ba:69:ca:b2:ed:
bb:f9:9f:1f:6b:5b:f6:84:54:49:47:72:2a:c8:4d:
1e:cc:96:cc:a5:06:df:71:42:a9:17:15:ab:ef:9d:
f1:c2:77:0d:27:2e:28:bc:a8:88:60:7f:71:c2:bd:
22:07:99:ec:47:4b:15:73:b8:25:8d:c4:81:ee:61:
fa:38:3b:b7:72:53:89:1f:e2:05:40:6c:f7:d7:0e:
16:3c:7e:11:89:79:1a:72:0d:7e:f2:00:44:d3:2b:
63:19:f3:c8:1a:db:8c:48:1b:d5:21:9f:ca:82:d5:
00:70:29:8d:47:7d:7c:c0:d1:5d:c8:69:8a:09:6b:
94:32:10:7b:36:14:6e:2e:91:59:94:8a:f3:8f:2e:
16:bb:c0:16:4d:9a:26:93:9b:10:aa:ab:9f:85:6a:
4b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:36:3D:19:8B:83:F9:D7:EE:9F:C5:C6:95:4C:C9:91:CE:4D:FB:2A
X509v3 Authority Key Identifier:
keyid:74:00:D5:01:3C:12:85:22:42:34:30:93:CB:F5:14:8D:4E:AE:AA:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dADVATwShSJCNDCTy_UUjU6uqvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/95d71d-f41b-4171-8350-e0892a28aac9/1/UzY9GYuD-dfun8XGlUzJkc5N-yo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/95d71d-f41b-4171-8350-e0892a28aac9/1/dADVATwShSJCNDCTy_UUjU6uqvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.180.0/22
Signature Algorithm: sha256WithRSAEncryption
63:d5:ac:ba:fe:42:38:fd:82:d3:3c:e5:cb:c3:b1:16:b7:50:
14:7b:19:4b:ec:36:c0:3a:a4:0e:60:24:23:d9:a6:6a:c0:b8:
f3:29:aa:03:32:b4:80:e4:75:e8:d3:61:fd:42:14:ba:a3:04:
9b:d2:22:d7:d9:5a:a7:2e:69:b3:bb:a1:13:6d:41:ed:62:33:
d7:31:77:01:4f:f4:46:5b:6c:e9:b7:ed:be:3b:e6:22:ee:be:
58:28:6c:68:f6:b5:47:f9:76:67:fe:b0:67:ba:10:17:01:9f:
14:a7:b7:40:76:f3:56:a2:61:98:4c:ce:34:29:67:60:31:69:
8f:0b:12:17:a9:88:3a:47:89:64:6e:23:a3:fa:77:85:18:63:
85:1c:d5:3a:8b:98:d2:c2:57:c4:35:96:ea:a1:8b:5c:9d:60:
88:60:5f:22:21:7f:91:5e:25:56:6a:c6:b5:15:59:d5:1f:40:
aa:35:2d:4f:5b:ad:b6:c6:65:0b:98:47:c1:45:ae:df:05:30:
dd:fe:ed:a0:75:32:6f:41:7e:0e:24:2a:04:53:81:2a:f0:0b:
8d:80:ff:75:fb:22:52:7d:c3:f7:dc:1f:e9:90:df:57:49:8d:
bd:0c:3a:4f:12:f6:f7:3d:d1:be:db:c7:1f:b2:b2:6b:16:36:
1c:f4:53:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:59 2023 by rpki-client on console-fra.rpki-client.org