Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/umaglir5GzRGiDOnR6GMA_eJXks.roa
File: umaglir5GzRGiDOnR6GMA_eJXks.roa (raw, json)
Hash identifier: cjD4HcAuY2BFnulEXnYQJ3FtG/IFlAqx+8X3prQ8Ru0=
Subject key identifier: BA:66:A0:96:2A:F9:1B:34:46:88:33:A7:47:A1:8C:03:F7:89:5E:4B
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 01856ED4CAF7326E4B3F9E5BE674FC135E99
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/umaglir5GzRGiDOnR6GMA_eJXks.roa
Signing time: Sun 01 Jan 2023 19:35:17 +0000
ROA not before: Sun 01 Jan 2023 19:35:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 185.100.58.0/24 maxlen: 24
2001:678:8b4::/48 maxlen: 64
Validation: Failed, certificate revoked on Fri 06 Oct 2023 17:05:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:ca:f7:32:6e:4b:3f:9e:5b:e6:74:fc:13:5e:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 1 19:35:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba66a0962af91b34468833a747a18c03f7895e4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d5:bb:e8:68:cb:75:22:76:75:aa:57:56:75:
6f:60:ec:c7:2e:01:0e:d5:ba:0b:d6:ce:b9:03:0e:
cc:50:b4:26:ff:5d:15:bb:1b:5e:90:7c:f8:6b:f9:
f5:6c:be:1d:b9:96:7a:12:c1:95:7f:23:26:84:30:
4a:6d:4d:06:f7:01:ce:11:89:0c:bf:b4:27:37:84:
6c:31:19:64:4a:3c:08:f2:48:05:3c:8a:01:71:26:
ca:4c:72:ed:df:78:9e:67:a3:03:a4:fe:43:19:3e:
5c:a7:8e:50:e6:2b:b3:ff:4b:b8:3c:c2:a8:73:0a:
b2:8f:2a:5b:cd:21:46:30:a7:16:56:ce:cd:01:4a:
52:45:32:ee:5f:b7:a8:69:f1:56:38:b1:70:c3:d6:
f1:94:82:a1:a6:04:87:51:52:7f:6a:d6:9f:e8:2a:
f2:c9:57:e4:38:13:a9:9c:a7:69:b2:f9:d5:14:0f:
9e:f5:31:da:76:51:71:6b:73:97:fe:12:e3:ec:3d:
c3:6a:f7:58:65:92:6b:cd:45:2e:f4:4a:24:5d:36:
35:40:7b:9f:d3:e0:4a:e8:c7:2c:c2:16:9b:e4:c0:
a4:92:ec:65:17:9d:af:04:a2:2e:76:d4:03:00:f9:
d0:4b:7f:a4:f9:98:f4:31:75:82:d8:c8:f8:0f:5e:
a8:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:66:A0:96:2A:F9:1B:34:46:88:33:A7:47:A1:8C:03:F7:89:5E:4B
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/umaglir5GzRGiDOnR6GMA_eJXks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.58.0/24
IPv6:
2001:678:8b4::/48
Signature Algorithm: sha256WithRSAEncryption
03:ba:22:14:88:de:cf:83:3e:a1:5b:44:90:68:14:b4:33:2d:
6c:f1:99:e3:14:57:9e:f0:4e:b1:14:b4:07:1d:20:f4:50:d1:
40:7d:05:ab:fa:a2:aa:0f:e7:b0:99:3d:5a:dd:94:c9:76:2e:
42:73:76:d1:58:ad:e4:d9:05:0f:e1:e8:4c:58:fd:3d:ed:8d:
df:8f:61:2d:9f:60:7b:52:0e:1f:72:ef:6c:66:6d:9b:0b:74:
ae:ca:5e:15:3a:00:7f:c1:b2:4c:6c:c1:18:2a:ff:74:cc:e7:
b6:77:e5:9a:fb:b1:1f:c2:93:be:21:74:30:25:4e:0f:77:b1:
27:75:53:a8:17:25:38:e0:4a:1e:e4:09:ed:6f:21:7e:43:b8:
c1:8e:2a:e9:59:10:61:ae:a1:20:9b:bd:50:b8:7b:f1:b9:fd:
86:24:54:1f:e0:ba:52:cd:03:97:af:4e:5c:a1:c9:ec:a4:e8:
b1:28:35:c4:8b:1c:87:d2:15:90:52:78:c6:d6:d8:f6:77:88:
8a:a2:ae:0e:5f:be:5d:68:b0:36:0b:40:26:73:fb:54:6b:8b:
4c:13:16:a0:09:45:4a:da:bd:03:45:87:6f:ab:78:c1:e7:8f:
9e:4a:7a:4a:6e:67:bc:ef:14:5c:78:31:02:9a:50:c6:0a:28:
d4:06:dc:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:50 2024 by rpki-client on console-fra.rpki-client.org