Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/Ue5znLPSe7fPVZMBgBlKWW7NAek.roa
File: Ue5znLPSe7fPVZMBgBlKWW7NAek.roa (raw, json)
Hash identifier: per+00cQLMaFyAbCPpvRD51oDTKNYLdkHUOfRmz4k8I=
Subject key identifier: 51:EE:73:9C:B3:D2:7B:B7:CF:55:93:01:80:19:4A:59:6E:CD:01:E9
Certificate issuer: /CN=fad7e14a262560191c66576998e9c69b89c3c136
Certificate serial: 018B24119B92C42CCC4C91FEECF2FB5EE5C6
Authority key identifier: FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/Ue5znLPSe7fPVZMBgBlKWW7NAek.roa
Signing time: Thu 12 Oct 2023 13:26:55 +0000
ROA not before: Thu 12 Oct 2023 13:26:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200735
IP address blocks: 145.255.48.0/24 maxlen: 24
185.55.72.0/24 maxlen: 24
185.55.75.0/24 maxlen: 24
185.55.74.0/24 maxlen: 24
185.55.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Oct 2023 13:49:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:24:11:9b:92:c4:2c:cc:4c:91:fe:ec:f2:fb:5e:e5:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad7e14a262560191c66576998e9c69b89c3c136
Validity
Not Before: Oct 12 13:26:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51ee739cb3d27bb7cf55930180194a596ecd01e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:d4:64:b5:d5:a0:a9:ce:b1:a7:6e:b6:36:e0:
18:a8:9e:13:f7:ef:1b:08:61:4c:56:42:f1:dc:dd:
28:d8:e8:15:21:25:db:98:f4:a6:81:1e:dd:03:2a:
5a:67:e8:80:0c:cc:cc:1b:78:6e:29:91:63:1f:47:
11:42:47:5b:6e:60:ec:a1:8c:0b:96:7b:cd:65:28:
92:e7:a3:4b:da:8b:eb:d4:f7:13:12:57:06:f3:84:
ad:07:a3:99:ed:fe:55:37:f6:12:6b:d8:e8:03:1d:
33:d4:5c:4a:9e:95:fc:47:dd:04:25:5a:b6:e7:ce:
68:3a:37:b7:08:8a:f3:9f:7c:5b:2f:65:73:af:42:
4f:83:1b:8f:4a:d3:e5:a1:e4:07:15:c3:bd:ae:c0:
a7:11:bf:4c:6b:a0:0f:e9:dc:b9:3d:c7:d8:a9:67:
c1:86:20:45:e9:46:13:99:e2:73:c8:7d:de:c5:70:
4b:0c:ed:91:61:b1:76:90:f5:1a:ea:e8:71:c2:a5:
6d:97:19:7a:b9:5d:1f:59:2f:ae:1d:2d:95:e0:25:
34:e8:a3:da:2b:e9:87:38:cb:e9:d2:a9:ec:14:31:
83:e7:22:3b:61:5b:9d:ee:18:3c:34:b2:62:9a:fb:
d8:e9:d0:a3:15:fb:57:2b:07:68:33:89:e9:c6:33:
5a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:EE:73:9C:B3:D2:7B:B7:CF:55:93:01:80:19:4A:59:6E:CD:01:E9
X509v3 Authority Key Identifier:
keyid:FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/Ue5znLPSe7fPVZMBgBlKWW7NAek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.255.48.0/24
185.55.72.0/22
Signature Algorithm: sha256WithRSAEncryption
53:dd:2d:39:d1:4f:ea:27:38:4e:ba:81:fa:2a:ce:cc:d2:57:
05:c9:3a:2b:cf:71:0f:57:07:e5:a9:bf:ca:24:c1:26:70:e9:
22:0d:d7:6a:a5:e5:7f:f0:64:a0:bd:20:99:47:73:2d:27:6c:
a6:b9:ed:46:48:b2:6d:e4:92:94:ac:c3:44:31:ae:f7:54:ae:
08:1d:15:9a:4a:c4:50:90:83:37:a5:e9:0c:10:4d:b0:e9:e9:
63:bb:9d:70:cd:92:77:3a:29:56:ce:73:34:01:12:cd:23:da:
f7:f0:73:f3:d8:54:5d:c1:f0:0f:6d:84:f3:01:d1:24:be:44:
da:b9:b2:ef:7c:3b:28:bb:5f:12:e5:53:5a:d3:7b:28:65:93:
59:44:c2:93:7b:4f:4d:6a:15:7b:53:f2:10:a9:21:5f:bd:ab:
12:0f:da:64:b1:ec:95:b5:75:d2:25:df:a3:1d:f6:8e:f3:46:
7b:ab:c2:4f:be:af:4b:6e:9b:1a:63:58:d2:ae:6a:99:09:7c:
c6:be:86:b8:5f:cf:b3:c6:4d:7e:a6:e2:df:4c:50:7b:e2:c3:
2c:ae:6f:33:bf:49:5a:59:b9:6f:af:b6:4d:0b:de:fa:82:ef:
ef:c1:e1:97:6e:ce:33:b8:dc:fb:6b:e7:23:ba:e5:92:ad:62:
a2:ee:92:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:38 2024 by rpki-client on console-ams.rpki-client.org