Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/uvGJmRs43kMraTME86CrSEGUTdI.roa
File: uvGJmRs43kMraTME86CrSEGUTdI.roa (raw, json)
Hash identifier: 3MrR/5TOKYq23L72jvUupT4vFdHoSpLiueOUCdRlSj8=
Subject key identifier: BA:F1:89:99:1B:38:DE:43:2B:69:33:04:F3:A0:AB:48:41:94:4D:D2
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 01859618B448209CEA9D955E3E29D75E29CF
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/uvGJmRs43kMraTME86CrSEGUTdI.roa
Signing time: Mon 09 Jan 2023 10:34:39 +0000
ROA not before: Mon 09 Jan 2023 10:34:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8485
IP address blocks: 185.44.120.0/22 maxlen: 32
2a02:e840:1002::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:96:18:b4:48:20:9c:ea:9d:95:5e:3e:29:d7:5e:29:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 9 10:34:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=baf189991b38de432b693304f3a0ab4841944dd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:c7:82:4c:6a:f2:69:74:6e:78:f6:00:54:2c:
a1:64:e0:0f:5f:d4:4a:07:7b:8a:47:0a:5d:7c:cf:
9f:81:a4:4c:b4:74:d6:e1:14:08:73:59:2a:5a:8f:
41:df:a0:9c:2c:96:4b:84:2f:e3:38:38:72:52:30:
64:59:bf:14:03:6f:ca:76:6f:58:dd:93:41:ec:42:
0b:7e:91:2c:aa:4c:4b:14:74:00:08:f8:ad:c0:46:
a3:70:48:e8:78:46:09:ac:49:56:f5:2c:05:7b:25:
5e:89:3f:9c:50:dc:2b:f7:fe:f7:7b:e6:3e:84:3e:
dd:13:e1:24:c1:a3:92:75:98:cb:01:e3:23:fb:b6:
ff:46:f4:e9:f3:28:99:83:ae:9b:06:5b:20:b6:d2:
63:06:72:0e:60:d0:8d:50:af:0c:34:40:41:d7:51:
6c:b4:eb:45:6d:dc:76:1f:5a:79:8f:e5:5e:54:d9:
71:3a:03:34:9f:f5:06:b6:59:51:2a:cc:87:f6:9a:
78:20:d0:6d:80:c2:a6:e6:14:f1:90:73:6b:2f:50:
f2:e0:15:2e:13:4f:3b:80:4d:76:49:dd:be:d6:61:
9b:06:6c:8b:b5:0d:96:26:aa:5d:6b:14:f4:4d:98:
9e:8d:c4:82:ee:36:87:09:20:69:60:47:78:26:4d:
d9:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:F1:89:99:1B:38:DE:43:2B:69:33:04:F3:A0:AB:48:41:94:4D:D2
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/uvGJmRs43kMraTME86CrSEGUTdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.120.0/22
IPv6:
2a02:e840:1002::/48
Signature Algorithm: sha256WithRSAEncryption
36:9f:ed:aa:11:67:1a:d9:fe:4f:95:39:6b:25:18:91:a8:c6:
ec:b6:13:79:1a:0e:3c:58:35:2b:70:eb:d4:03:58:6d:4f:45:
ff:eb:97:12:b6:98:d6:61:4e:9c:e3:04:e4:ec:ea:d4:f2:43:
05:c9:d0:ba:8c:88:09:04:31:0d:07:5f:48:1d:c7:26:b7:88:
82:0d:9d:7d:5e:a4:6d:f9:ac:de:03:3d:f5:a5:b0:69:a8:d1:
d7:d1:74:43:03:32:ed:ef:17:8e:c9:cc:59:aa:37:f0:ba:be:
90:20:77:f6:ff:9f:b7:2c:b7:13:bc:48:c7:f5:b4:e3:af:37:
98:dd:f1:12:9f:c1:59:2e:45:b7:a5:89:30:21:6e:5b:9c:54:
f6:cc:f6:f5:67:5f:c7:c0:26:1b:f8:47:72:40:bd:b4:dd:06:
f4:99:1a:5c:de:ba:9f:31:b7:96:9a:fd:33:90:b0:2c:7c:19:
d5:5d:ca:2c:cc:34:c5:5c:93:44:8f:61:e3:d2:0c:70:a7:be:
78:4d:b6:97:e1:9e:e1:b8:f0:51:6c:9d:4d:4d:44:90:2b:45:
e4:82:bb:9b:a2:04:09:e9:a9:40:8f:3f:a4:13:ad:12:3f:18:
97:df:c6:68:21:bd:98:ac:f5:90:e7:f9:5b:3f:1c:b3:c9:54:
b4:92:39:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:08 2024 by rpki-client on console-fra.rpki-client.org