Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/UgIwLqMci3CDLEjje9LI1obZsuw.roa
File: UgIwLqMci3CDLEjje9LI1obZsuw.roa (raw, json)
Hash identifier: zLxNVHkwgvwKOWtHhxMLCtq2D6sxlcXO3QFmchtQ5JM=
Subject key identifier: 52:02:30:2E:A3:1C:8B:70:83:2C:48:E3:7B:D2:C8:D6:86:D9:B2:EC
Certificate issuer: /CN=1c06a82bb115d7393e39fd58b73bbf20f6cd0b1f
Certificate serial: 018736BBDD5B00902C2F8FC652BCF757DC53
Authority key identifier: 1C:06:A8:2B:B1:15:D7:39:3E:39:FD:58:B7:3B:BF:20:F6:CD:0B:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/UgIwLqMci3CDLEjje9LI1obZsuw.roa
Signing time: Fri 31 Mar 2023 08:14:54 +0000
ROA not before: Fri 31 Mar 2023 08:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.20.255.0/24 maxlen: 24
91.239.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 May 2023 04:24:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:36:bb:dd:5b:00:90:2c:2f:8f:c6:52:bc:f7:57:dc:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c06a82bb115d7393e39fd58b73bbf20f6cd0b1f
Validity
Not Before: Mar 31 08:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5202302ea31c8b70832c48e37bd2c8d686d9b2ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:61:65:b0:dd:f5:88:63:4b:00:9e:30:fc:bf:
a4:93:8b:14:ce:08:52:7d:24:de:f9:0d:4f:29:19:
22:fb:69:98:3d:23:e5:39:d0:4b:e2:d8:57:74:f6:
40:a7:ba:d3:8e:51:60:b6:a4:d0:22:0a:b6:2d:02:
7a:aa:ff:af:fc:58:6f:ff:d0:22:4c:11:ba:41:3a:
41:ab:e2:a8:df:2e:4d:d8:f7:09:b2:29:bf:11:bd:
57:0e:f9:a3:f0:66:d2:c4:bc:4e:ee:86:9d:53:7c:
f3:44:c3:58:db:35:6b:e3:df:57:cc:c7:75:a6:53:
36:24:01:44:8d:12:97:34:fd:c0:ae:b8:cb:b7:87:
09:04:eb:f2:a6:af:41:d5:d6:19:20:ed:2c:2c:f8:
13:18:7c:a2:22:61:8b:52:7a:70:58:68:32:88:53:
20:09:b4:e7:de:19:d7:19:31:05:1f:65:93:91:56:
cb:ab:3e:13:12:da:90:8f:39:b4:f2:c0:da:b8:1d:
03:ea:ff:92:55:59:5c:1e:8b:3c:41:1c:f4:f1:46:
a3:cd:ab:45:ee:66:17:92:49:9f:68:64:39:9e:20:
47:bb:1d:c2:4f:0b:3c:fc:29:f1:80:03:10:66:af:
40:61:31:f4:82:e7:0e:92:5a:95:32:e5:e1:3f:4e:
0b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:02:30:2E:A3:1C:8B:70:83:2C:48:E3:7B:D2:C8:D6:86:D9:B2:EC
X509v3 Authority Key Identifier:
keyid:1C:06:A8:2B:B1:15:D7:39:3E:39:FD:58:B7:3B:BF:20:F6:CD:0B:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/UgIwLqMci3CDLEjje9LI1obZsuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.62.0/24
185.20.255.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:81:67:bf:de:d3:8e:74:17:36:cf:54:81:eb:35:54:94:69:
6c:e3:60:da:af:08:53:37:5a:b3:da:a3:0f:4b:84:46:7a:90:
66:2f:1c:6e:9f:45:7a:42:a9:81:7b:91:00:4d:ef:88:b7:ed:
d3:3d:d1:ac:1a:c5:55:c7:c5:8c:bf:16:e3:d6:f1:fc:b6:a3:
8f:a7:d9:65:a0:b1:44:25:cd:bf:78:78:4c:0a:04:82:1f:01:
53:ee:c0:30:62:5a:8d:d3:50:04:5f:5a:d8:ff:14:29:f3:fe:
1f:ac:3d:b8:15:67:21:83:bc:9f:ad:09:28:9c:07:86:dd:ac:
1e:3c:5c:d8:a5:74:65:47:cb:cf:43:23:d1:67:c8:1b:dd:23:
74:5c:5a:32:19:a0:1c:8a:bc:a4:e0:83:db:52:8b:b3:2d:9f:
2b:f8:bc:73:93:fe:e9:cc:71:14:95:e2:4f:b0:4c:8f:82:a4:
c2:38:0d:6b:58:c1:85:46:23:a3:e5:0c:b3:19:dc:17:7e:2c:
cd:28:4a:58:b2:07:54:e2:e8:81:5d:b1:3e:28:4e:a9:5b:73:
09:35:57:3b:9d:fc:76:97:ae:91:8d:7b:38:14:bc:b1:19:c8:
27:8e:bf:ca:93:f3:f1:10:f9:e3:d6:d8:6f:51:cd:f2:37:25:
2f:6b:76:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:01 2024 by rpki-client on console-ams.rpki-client.org