Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/UmDummMDKsdpSlSU1928G-U50wU.roa
File: UmDummMDKsdpSlSU1928G-U50wU.roa (raw, json)
Hash identifier: YT7+BoklRAAOo3qyrZDOYTgYkHosfSSdUa7SAn3ybv8=
Subject key identifier: 52:60:EE:9A:63:03:2A:C7:69:4A:54:94:D7:DD:BC:1B:E5:39:D3:05
Certificate issuer: /CN=f731c339b1861722bffe867218314ce1295c3c85
Certificate serial: 01856B77C6F6C78363AAD1036D342EDA0BFB
Authority key identifier: F7:31:C3:39:B1:86:17:22:BF:FE:86:72:18:31:4C:E1:29:5C:3C:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9zHDObGGFyK__oZyGDFM4SlcPIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/UmDummMDKsdpSlSU1928G-U50wU.roa
Signing time: Sun 01 Jan 2023 03:54:49 +0000
ROA not before: Sun 01 Jan 2023 03:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56791
IP address blocks: 185.45.100.0/22 maxlen: 32
176.32.128.0/19 maxlen: 32
176.119.197.0/24 maxlen: 32
2a00:9e80::/29 maxlen: 128
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:77:c6:f6:c7:83:63:aa:d1:03:6d:34:2e:da:0b:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f731c339b1861722bffe867218314ce1295c3c85
Validity
Not Before: Jan 1 03:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5260ee9a63032ac7694a5494d7ddbc1be539d305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:37:ac:b7:e6:59:3d:19:9d:ec:31:2d:36:30:
bb:c1:2a:83:9b:93:b4:8a:21:25:4e:fe:90:2e:fd:
a5:b8:06:75:de:eb:2f:eb:98:6a:ff:a4:1b:e7:41:
bf:6c:5a:29:b8:37:07:ef:d0:ba:ab:84:c5:e4:33:
b2:c7:79:66:9d:6d:87:1c:5d:3c:5c:a1:78:04:73:
b1:6c:f9:67:e3:8f:74:2e:63:68:b1:31:a2:78:03:
33:6d:0c:0d:3d:46:79:33:c5:81:a3:ae:e5:af:47:
86:61:7f:dd:b9:23:3f:2b:85:7f:90:3d:fe:e2:4d:
58:a4:85:b9:7b:02:b2:18:e0:d3:05:20:5f:7e:a3:
c3:16:ff:18:ed:fa:02:34:5f:a5:d9:2d:62:ff:cd:
2c:b5:c3:ce:88:02:98:2f:2e:08:5c:1a:f4:8d:d2:
95:68:6f:5e:c2:a6:79:e4:96:b3:b8:3b:31:5c:41:
9a:04:77:e1:06:92:68:00:2b:d7:24:57:80:95:bd:
fe:13:22:13:df:bc:75:1f:23:a3:33:ef:23:b6:24:
7c:10:36:6a:a4:7d:bf:8d:75:9f:ff:4f:f8:54:d2:
62:6d:7f:1a:21:d6:10:56:58:ab:3a:05:2d:f8:cb:
90:3b:32:4c:e3:0b:7a:8f:0d:21:30:a5:01:d9:fe:
59:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:60:EE:9A:63:03:2A:C7:69:4A:54:94:D7:DD:BC:1B:E5:39:D3:05
X509v3 Authority Key Identifier:
keyid:F7:31:C3:39:B1:86:17:22:BF:FE:86:72:18:31:4C:E1:29:5C:3C:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9zHDObGGFyK__oZyGDFM4SlcPIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/UmDummMDKsdpSlSU1928G-U50wU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.32.128.0/19
176.119.197.0/24
185.45.100.0/22
IPv6:
2a00:9e80::/29
Signature Algorithm: sha256WithRSAEncryption
81:22:1e:aa:1d:1b:5b:a5:2b:e0:47:e2:20:98:06:60:e2:7a:
f0:dc:81:58:b7:c7:c4:0f:7b:fe:80:43:51:f8:2f:8e:36:38:
26:40:18:1a:3c:85:2d:25:81:8e:ad:d9:ca:4a:6f:25:f4:94:
53:b3:b5:32:df:0c:51:9f:67:c2:80:79:1e:ec:7c:c9:73:bb:
e6:78:67:f5:99:5b:f9:8c:df:e7:ce:f5:b0:9b:ff:da:7c:06:
1f:af:7c:98:8c:7a:56:53:4e:9e:45:c5:67:64:6b:c5:a7:2a:
af:ce:8a:b5:d3:34:ad:79:eb:8e:d1:30:c4:49:e6:e1:2f:d8:
75:45:df:68:c4:66:ea:2b:03:07:0e:8e:93:0b:6b:59:8d:1a:
99:fd:35:ed:63:27:41:81:f7:58:36:6c:8e:9b:6f:e6:85:a1:
e5:88:1d:94:3c:26:82:32:0b:2e:2c:e4:de:67:e9:a1:3f:0e:
9e:01:2d:1c:fa:0c:0e:f8:9f:aa:a0:39:09:c0:c7:c4:df:23:
ff:c3:8a:01:7a:7d:ee:46:c2:8b:9e:11:0c:c7:9b:22:54:db:
89:03:ed:bd:2a:d4:ca:45:03:53:43:74:1c:e0:38:97:07:2f:
bb:e4:a7:c0:6b:7c:2d:18:69:a7:09:fe:48:e0:cb:03:a4:8b:
76:f0:f8:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:33 2024 by rpki-client on console-fra.rpki-client.org