Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/87d43c-e0ed-48b3-b4e3-05ed86735306/1/UmFaC9VZEUaJyXbptdezu2T9lyo.roa
File: UmFaC9VZEUaJyXbptdezu2T9lyo.roa (raw, json)
Hash identifier: G5pOiYwfckM/GQ/Rvuvxa4R8q/nzGCUzkBHGnGlzbjc=
Subject key identifier: 52:61:5A:0B:D5:59:11:46:89:C9:76:E9:B5:D7:B3:BB:64:FD:97:2A
Certificate issuer: /CN=ff37d6c1f6a5c4a92bbffd85c4142127fa3e1a30
Certificate serial: 01856D41B53923DACE92734C44C354579AFA
Authority key identifier: FF:37:D6:C1:F6:A5:C4:A9:2B:BF:FD:85:C4:14:21:27:FA:3E:1A:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zfWwfalxKkrv_2FxBQhJ_o-GjA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/87d43c-e0ed-48b3-b4e3-05ed86735306/1/UmFaC9VZEUaJyXbptdezu2T9lyo.roa
Signing time: Sun 01 Jan 2023 12:15:00 +0000
ROA not before: Sun 01 Jan 2023 12:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204756
IP address blocks: 185.240.36.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:b5:39:23:da:ce:92:73:4c:44:c3:54:57:9a:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff37d6c1f6a5c4a92bbffd85c4142127fa3e1a30
Validity
Not Before: Jan 1 12:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52615a0bd559114689c976e9b5d7b3bb64fd972a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:7d:9f:79:7b:6f:95:3f:6e:b8:0a:bf:f0:4e:
e5:9e:07:0b:73:bf:24:11:14:f9:c8:b0:95:89:3c:
93:cb:2a:8e:51:56:91:33:bc:13:f8:78:47:1a:09:
36:68:b7:c0:6f:49:17:3b:c7:80:b5:24:49:46:ae:
40:a6:c0:b9:73:0a:76:f1:0d:ab:7f:78:21:ac:59:
36:89:4e:61:cc:06:a0:fd:76:56:5f:b5:d3:68:68:
f6:15:8c:0c:08:07:37:ac:65:e4:c2:cf:52:cc:62:
66:ca:e5:39:3a:77:9a:57:36:b7:ea:41:fd:40:76:
95:f0:4f:1d:07:e8:5f:a6:54:65:1a:d0:b7:05:fa:
37:c4:d9:fb:e3:32:d9:9c:06:0e:19:92:0d:41:8d:
d1:28:62:c4:90:2b:59:f5:49:ff:d0:33:d9:89:b2:
10:0e:df:0b:9e:bc:b7:b1:b0:cb:5d:4c:29:a7:e7:
7c:41:45:87:76:b5:d3:cc:af:03:e1:0e:ed:5f:30:
6b:aa:dd:eb:0c:4c:c6:a7:3c:06:7e:98:0e:84:9c:
4a:b0:dd:44:a3:9d:0e:10:89:8e:20:7b:60:67:a8:
c8:2c:3d:79:63:bc:ad:db:c3:3b:99:2e:e9:ce:0d:
eb:74:4d:e6:56:05:92:c3:d2:ea:1a:14:81:aa:3d:
f3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:61:5A:0B:D5:59:11:46:89:C9:76:E9:B5:D7:B3:BB:64:FD:97:2A
X509v3 Authority Key Identifier:
keyid:FF:37:D6:C1:F6:A5:C4:A9:2B:BF:FD:85:C4:14:21:27:FA:3E:1A:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zfWwfalxKkrv_2FxBQhJ_o-GjA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/87d43c-e0ed-48b3-b4e3-05ed86735306/1/UmFaC9VZEUaJyXbptdezu2T9lyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/87d43c-e0ed-48b3-b4e3-05ed86735306/1/_zfWwfalxKkrv_2FxBQhJ_o-GjA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.36.0/22
Signature Algorithm: sha256WithRSAEncryption
25:96:dd:65:5a:a6:b3:d1:eb:5c:e1:0f:e3:89:40:29:a4:5e:
3b:a0:a6:37:76:c5:c8:ca:8d:cb:b7:a8:a7:ac:8c:72:c9:9a:
73:be:67:96:80:e1:58:a0:81:ca:5a:dd:e2:3d:54:bd:ac:e9:
fe:1a:87:38:75:07:79:31:86:7f:40:ec:44:da:87:0c:0a:99:
4e:7e:f7:a6:97:24:00:cc:d1:97:a2:61:70:26:2d:5b:d7:bb:
2e:09:27:74:bb:d7:a0:8c:40:6d:35:39:ac:5f:83:e2:7a:42:
6c:08:0b:14:04:a6:9c:f6:00:96:f6:55:07:c3:4f:a5:06:09:
c5:72:20:67:d6:41:f1:98:50:1d:48:81:20:4a:6a:a3:e5:a9:
3e:8b:d8:b3:df:04:1c:72:20:55:78:ab:40:7d:18:5c:27:db:
5a:10:99:5d:d8:5b:ff:46:bf:4a:c9:57:0d:4d:db:4b:bd:96:
1d:ce:4f:26:77:81:02:ce:98:cc:6f:e0:af:0b:30:ba:c4:43:
10:f4:c9:61:06:3f:42:8a:99:2a:78:91:66:b5:a6:f6:f0:cf:
c6:c7:9b:b7:2e:20:ce:10:df:ed:f6:db:88:fc:d9:91:ae:27:
0b:20:6a:c8:72:2e:6f:a6:0d:0f:90:71:3e:79:a5:c0:c5:b1:
13:9c:ff:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:32 2024 by rpki-client on console-ams.rpki-client.org