Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/c4ca9d-5d32-4efd-8e1b-132937d39cea/1/uvyjDPbSxT73QU-Ugm7GP3O4zZQ.roa
File: uvyjDPbSxT73QU-Ugm7GP3O4zZQ.roa (raw, json)
Hash identifier: FyWppR9mvdgKELQOtL1WmnzGYgJNRKQUO3hDwEbYjik=
Subject key identifier: BA:FC:A3:0C:F6:D2:C5:3E:F7:41:4F:94:82:6E:C6:3F:73:B8:CD:94
Certificate issuer: /CN=b7a670e51c96419fc52028b12e45655ef914ddbb
Certificate serial: 01856BD38157520D753F4B53F206FF181788
Authority key identifier: B7:A6:70:E5:1C:96:41:9F:C5:20:28:B1:2E:45:65:5E:F9:14:DD:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t6Zw5RyWQZ_FICixLkVlXvkU3bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/c4ca9d-5d32-4efd-8e1b-132937d39cea/1/uvyjDPbSxT73QU-Ugm7GP3O4zZQ.roa
Signing time: Sun 01 Jan 2023 05:35:01 +0000
ROA not before: Sun 01 Jan 2023 05:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39650
IP address blocks: 185.66.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d3:81:57:52:0d:75:3f:4b:53:f2:06:ff:18:17:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7a670e51c96419fc52028b12e45655ef914ddbb
Validity
Not Before: Jan 1 05:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bafca30cf6d2c53ef7414f94826ec63f73b8cd94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7f:bb:2a:11:7c:59:5e:cb:6d:ad:2a:8a:eb:
31:80:76:0c:7f:42:d5:01:e3:bd:59:d4:56:57:55:
c4:9f:3e:a0:99:f4:bd:f4:e7:98:de:25:b0:21:9a:
84:82:32:0c:95:68:3d:f4:03:f1:88:f6:3d:c8:50:
1f:d5:56:f3:0e:fb:9f:07:fb:a4:87:30:ab:61:ce:
61:96:65:b8:92:f3:66:d6:cd:97:17:17:de:1c:03:
27:37:63:bb:c3:e9:c8:71:69:5f:2c:ac:dc:6b:2c:
e2:73:8e:a1:b6:63:d0:ba:11:c6:a1:d1:37:1c:32:
ce:d6:e2:f0:dd:62:1c:c1:79:d0:21:b4:50:e5:04:
7f:cd:1e:ff:fa:e4:b2:f7:30:7c:b2:70:fe:5e:46:
ff:f5:a7:83:54:b7:a5:24:f3:8d:41:a6:34:64:26:
b7:62:39:6d:6c:86:4f:66:2d:b8:57:d5:d4:9b:3c:
0c:d1:f0:6c:23:54:6a:80:79:4c:a8:0c:a9:74:48:
a2:8b:28:70:55:ed:7c:44:c6:a8:a0:5d:4f:ce:3c:
b1:e6:c6:21:a2:35:7e:2d:8f:37:b4:ba:0a:ee:10:
15:1b:68:55:ce:17:dc:7b:ad:e4:79:df:02:12:4a:
a8:e5:18:6d:13:70:3f:24:4a:04:70:62:2d:51:76:
1d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:FC:A3:0C:F6:D2:C5:3E:F7:41:4F:94:82:6E:C6:3F:73:B8:CD:94
X509v3 Authority Key Identifier:
keyid:B7:A6:70:E5:1C:96:41:9F:C5:20:28:B1:2E:45:65:5E:F9:14:DD:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t6Zw5RyWQZ_FICixLkVlXvkU3bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c4ca9d-5d32-4efd-8e1b-132937d39cea/1/uvyjDPbSxT73QU-Ugm7GP3O4zZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c4ca9d-5d32-4efd-8e1b-132937d39cea/1/t6Zw5RyWQZ_FICixLkVlXvkU3bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.66.226.0/24
Signature Algorithm: sha256WithRSAEncryption
05:d2:38:76:04:19:c2:0b:d5:1a:8d:69:f4:f1:a4:1f:94:86:
7f:06:41:b6:8b:49:d3:f5:19:60:a3:01:69:e7:61:20:bc:fe:
bf:7c:01:ff:0c:9e:c7:01:35:75:d7:b9:97:42:23:ac:0b:fb:
a8:a0:ea:63:45:83:36:f4:98:fc:fc:d3:fa:f4:5f:2d:30:9f:
d7:12:a2:cd:21:19:d2:ad:fa:9d:9e:b5:8c:72:72:69:e1:c0:
8f:f4:c7:e8:33:14:68:bd:4c:84:60:96:4a:d3:9a:5e:65:a5:
68:3b:5a:99:5b:99:d5:7c:ad:79:5f:41:be:ab:16:8b:7a:8a:
df:0e:61:91:79:8d:66:86:4a:a8:08:b4:ac:b7:64:3b:df:99:
65:a8:1a:d1:5a:18:29:5f:93:55:99:47:d8:5b:a6:e7:e6:0a:
48:22:ed:dc:c6:2c:ff:48:09:ef:bd:1d:7e:1e:dd:63:f0:38:
05:a8:00:e5:01:24:25:67:58:03:ff:5d:3b:1a:40:53:e2:6a:
5d:24:72:f0:25:9f:13:3b:6f:ef:2b:66:27:7a:12:b3:6b:b7:
ee:65:21:89:68:1f:d2:5a:d8:2a:16:c3:79:13:4a:86:2b:3f:
f6:00:4a:bc:2c:81:5d:d7:97:a4:eb:ae:b1:27:b1:f2:c4:71:
f3:6a:d3:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:24 2024 by rpki-client on console-ams.rpki-client.org