Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/utxlhaUb5Hk2M9PCELwQElUzi0o.roa
File: utxlhaUb5Hk2M9PCELwQElUzi0o.roa (raw, json)
Hash identifier: wklq2HptOMaqGmWYzki8P0Sus44L9kgYTjYZDbqurAc=
Subject key identifier: BA:DC:65:85:A5:1B:E4:79:36:33:D3:C2:10:BC:10:12:55:33:8B:4A
Certificate issuer: /CN=1474b6fc67b6b90db311c61fc0e3a9c752833c56
Certificate serial: 01856CC1692C7D3756E3CD0F58C579D0BCDD
Authority key identifier: 14:74:B6:FC:67:B6:B9:0D:B3:11:C6:1F:C0:E3:A9:C7:52:83:3C:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FHS2_Ge2uQ2zEcYfwOOpx1KDPFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/utxlhaUb5Hk2M9PCELwQElUzi0o.roa
Signing time: Sun 01 Jan 2023 09:54:52 +0000
ROA not before: Sun 01 Jan 2023 09:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9051
IP address blocks: 185.127.180.0/24 maxlen: 24
185.127.181.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:c1:69:2c:7d:37:56:e3:cd:0f:58:c5:79:d0:bc:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1474b6fc67b6b90db311c61fc0e3a9c752833c56
Validity
Not Before: Jan 1 09:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=badc6585a51be4793633d3c210bc101255338b4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f2:a8:e6:98:4a:fa:d2:b7:f1:92:b3:6a:b9:
ce:ed:d2:f3:fa:99:5f:02:58:5b:f5:f4:b1:e9:54:
bf:7c:16:3b:17:86:d3:64:7b:d3:8e:26:75:ca:87:
4d:21:26:e8:22:8c:24:a2:c3:44:ae:51:e1:32:55:
08:3a:d1:13:ac:17:36:15:ce:21:f6:74:2f:10:5b:
2c:e4:83:c7:37:8f:76:f5:72:03:91:61:33:6e:2e:
8c:89:ea:67:0e:6c:3e:22:fc:7c:06:1c:75:1f:91:
ee:a9:c1:88:56:d6:6b:f9:6e:4c:ec:0b:16:d9:c7:
3a:d8:f1:b5:61:4c:43:bb:e9:32:2b:98:d7:c1:98:
01:e7:d6:27:a3:10:b6:7c:0a:6e:43:c1:95:e2:5a:
70:81:71:de:00:2e:ad:c0:f9:a8:c7:52:32:61:7f:
3c:0c:8c:40:74:a7:a7:ac:17:b6:02:d1:0a:80:8e:
1b:ae:a6:1a:8a:10:56:6e:0d:65:22:4f:34:6a:ab:
db:41:64:9b:ec:4d:d6:fc:98:cb:f9:00:ab:f8:d4:
17:d7:20:8b:5d:d4:86:3f:5d:d8:11:d2:38:f1:e2:
a0:db:db:ea:e4:10:3e:f2:66:e5:db:87:2f:97:f9:
2e:82:4f:f4:b7:2b:56:9a:f4:31:76:98:99:d7:81:
73:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:DC:65:85:A5:1B:E4:79:36:33:D3:C2:10:BC:10:12:55:33:8B:4A
X509v3 Authority Key Identifier:
keyid:14:74:B6:FC:67:B6:B9:0D:B3:11:C6:1F:C0:E3:A9:C7:52:83:3C:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FHS2_Ge2uQ2zEcYfwOOpx1KDPFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/utxlhaUb5Hk2M9PCELwQElUzi0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/FHS2_Ge2uQ2zEcYfwOOpx1KDPFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.127.180.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:a7:d8:27:44:12:5c:5c:32:54:5c:d7:52:23:56:bb:85:e8:
d7:10:d6:12:62:a3:42:fc:32:64:cc:8e:6e:03:20:c5:8e:c5:
47:98:3d:cb:c1:62:43:8f:f9:de:f1:e7:39:86:a6:ee:a9:d8:
00:2b:ad:b5:80:9d:56:12:ae:73:08:1f:f3:68:bf:95:87:13:
3e:8f:fe:bf:e1:c9:d6:07:37:50:8c:a1:07:30:5d:ad:a4:ff:
1c:7c:2b:82:5d:82:3e:07:0a:a1:cf:4f:d5:e8:98:e1:56:a5:
02:a3:3d:e4:fc:34:5b:15:7a:c6:8b:93:c6:b4:85:f8:a6:93:
1b:da:07:c1:d9:5a:56:d5:00:ac:23:ba:67:34:33:54:47:5d:
9d:7b:28:7e:52:de:29:4d:6d:ec:42:2f:05:2a:ec:ee:17:80:
2b:c3:1c:43:c2:f5:9c:d6:6a:44:d8:b2:94:39:06:8f:b5:1a:
9c:b1:ed:02:b2:fe:e9:eb:bc:fb:f9:90:d6:47:b1:8b:04:5a:
17:8e:f6:30:62:f8:db:f8:91:df:da:44:ba:33:93:a9:9e:93:
08:d5:ff:7c:63:aa:d1:0a:cb:3e:28:55:85:dd:65:c5:43:9f:
73:d2:a3:60:74:4e:99:92:22:7d:7c:b8:54:e0:61:dd:aa:e0:
4f:d2:df:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:15:58 2024 by rpki-client on console-ams.rpki-client.org