Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/uS8iowKbKDSNFrU2ppEJzS0evko.roa
File: uS8iowKbKDSNFrU2ppEJzS0evko.roa (raw, json)
Hash identifier: hUwE81Wqte3M9pkCb+ti1jrMgkloQ+Uw20lVmHbc6CY=
Subject key identifier: B9:2F:22:A3:02:9B:28:34:8D:16:B5:36:A6:91:09:CD:2D:1E:BE:4A
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 018570708047AD4F6D59B95498D7F638A907
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/uS8iowKbKDSNFrU2ppEJzS0evko.roa
Signing time: Mon 02 Jan 2023 03:04:59 +0000
ROA not before: Mon 02 Jan 2023 03:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5511
IP address blocks: 185.126.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:80:47:ad:4f:6d:59:b9:54:98:d7:f6:38:a9:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Jan 2 03:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b92f22a3029b28348d16b536a69109cd2d1ebe4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:25:2c:00:b7:9d:64:69:84:9e:a7:2d:75:98:
5f:1c:d8:67:26:5b:81:40:85:51:b5:17:57:00:0b:
df:c3:34:ff:16:e6:d8:77:bc:5d:de:6f:53:69:13:
9d:5a:2c:d3:9a:03:02:3a:31:cb:23:0c:6d:9b:d4:
73:fb:e2:47:de:d8:83:83:04:9a:76:fc:04:4f:78:
ec:e5:2b:49:4b:48:ea:87:5e:84:ef:81:1c:59:15:
9a:8d:47:eb:80:47:20:e9:d1:e1:b1:31:19:78:d6:
40:cc:a7:9f:58:44:51:26:5b:e4:a6:64:4b:f4:27:
a2:1f:5d:4b:e6:21:65:c6:84:cb:87:14:77:c5:fa:
4e:25:5c:58:b6:ee:eb:49:51:38:fd:86:38:cf:64:
3c:bc:d1:21:f8:26:00:0c:f4:10:25:56:64:af:0f:
24:a3:b3:ff:9d:6c:30:ea:c9:bb:eb:2d:db:ae:e9:
42:f8:02:db:c0:80:e2:30:e1:4c:61:da:91:fa:30:
8b:f4:47:f2:a5:3f:1b:33:18:d0:24:20:b8:33:8a:
49:ba:27:96:63:40:74:12:e8:42:60:43:9e:e4:aa:
f4:cb:9a:a2:58:ea:52:60:0c:cb:30:9f:df:9f:f8:
f4:01:10:a8:0f:9e:01:23:d6:4a:4d:38:10:4b:92:
a6:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:2F:22:A3:02:9B:28:34:8D:16:B5:36:A6:91:09:CD:2D:1E:BE:4A
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/uS8iowKbKDSNFrU2ppEJzS0evko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.35.0/24
Signature Algorithm: sha256WithRSAEncryption
26:b5:eb:84:cf:e5:aa:e0:1c:74:6d:2c:8c:e0:81:66:f4:15:
73:a0:25:15:fb:3f:d1:e3:a5:e9:9b:aa:19:be:32:05:b8:05:
fc:94:1b:89:a6:63:69:a7:ca:b0:6f:3f:8b:18:55:e3:ae:7a:
27:38:a0:2a:2a:c6:30:21:e0:e0:ac:1f:1a:b5:a3:3d:d3:1d:
86:8e:6f:93:88:41:fe:b3:a1:8b:16:4e:2f:4e:ed:a7:a0:9e:
38:87:b7:a3:43:e3:44:85:ea:38:a4:68:ea:b7:44:4a:58:21:
e0:d7:57:c1:a3:83:66:f3:44:e3:1a:c1:77:41:d1:cb:72:04:
3d:3a:ef:05:e9:99:d3:67:84:ed:a9:0d:ee:30:4c:bc:f3:7d:
ae:ce:cd:69:88:25:9c:49:f8:97:f1:16:39:aa:cf:cb:b6:6b:
86:c8:8c:69:6c:90:5f:2b:44:b2:fa:22:62:99:f7:7a:7c:8a:
3f:76:d2:a4:ea:a6:90:13:85:f9:a0:09:c8:11:46:16:11:9f:
62:80:06:b0:10:88:7f:c5:c3:1b:28:11:76:bb:c7:06:ed:46:
f2:44:19:ff:e7:f7:6f:30:75:a6:f7:a8:f1:1a:36:7e:61:d4:
cd:ed:7d:dd:26:93:93:0b:4e:b5:73:26:ed:1c:9f:13:a6:5d:
b5:7c:cc:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:35 2024 by rpki-client on console-ams.rpki-client.org