Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/UqZNdA1qZ4gQiVZJmKohlD0oO_o.roa
File: UqZNdA1qZ4gQiVZJmKohlD0oO_o.roa (raw, json)
Hash identifier: Msbk7p3vG6JiglP0fcEhQvHuOyypWlVDv1y1RQLVUHQ=
Subject key identifier: 52:A6:4D:74:0D:6A:67:88:10:89:56:49:98:AA:21:94:3D:28:3B:FA
Certificate issuer: /CN=90f25e6a6893f466d2695e90670c047443643701
Certificate serial: 0185720C5C6BF19B04DF9F6B1B101570E367
Authority key identifier: 90:F2:5E:6A:68:93:F4:66:D2:69:5E:90:67:0C:04:74:43:64:37:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPJeamiT9GbSaV6QZwwEdENkNwE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/UqZNdA1qZ4gQiVZJmKohlD0oO_o.roa
Signing time: Mon 02 Jan 2023 10:34:50 +0000
ROA not before: Mon 02 Jan 2023 10:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24643
IP address blocks: 185.72.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:5c:6b:f1:9b:04:df:9f:6b:1b:10:15:70:e3:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90f25e6a6893f466d2695e90670c047443643701
Validity
Not Before: Jan 2 10:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52a64d740d6a67881089564998aa21943d283bfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:04:c0:e1:fa:48:aa:af:4f:31:34:d9:1d:31:
e9:56:6b:66:f0:0f:77:1d:5b:84:a8:b6:8b:4f:ff:
f5:b0:ef:e0:74:b7:77:05:de:02:9c:d9:39:15:f2:
f7:28:9b:a3:0f:9a:98:df:4a:66:ce:72:01:3c:5d:
e7:8a:1a:a1:6a:66:e0:1c:5a:e9:d2:9c:2a:10:d7:
af:22:69:37:ef:02:d8:41:e5:83:07:0a:41:69:79:
39:4c:1a:8a:af:95:15:ae:e0:4f:9d:68:31:10:11:
c4:12:e5:12:50:85:65:95:16:5d:ec:1d:26:2f:86:
2d:3c:11:f4:75:f7:4f:9f:99:9f:c4:41:9b:62:c5:
f8:78:85:ff:c8:43:0e:4a:4e:60:32:c1:74:e5:33:
04:b9:61:3a:92:86:67:08:79:9a:64:0d:91:87:8e:
2e:cc:11:0a:bd:9f:fc:d7:c0:65:90:24:ea:9b:f3:
4d:fa:f6:5c:8d:70:04:1e:1f:15:01:a0:ca:4a:2e:
de:60:45:47:d6:53:1e:c1:69:a5:c4:c8:54:95:2a:
80:17:45:32:f6:5a:32:31:be:c0:ec:ec:17:cb:be:
eb:e4:49:6d:6a:75:21:1b:92:fb:6b:ba:91:1a:b3:
77:1f:3e:1e:63:90:22:dd:5e:c3:e7:60:40:3e:75:
6e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A6:4D:74:0D:6A:67:88:10:89:56:49:98:AA:21:94:3D:28:3B:FA
X509v3 Authority Key Identifier:
keyid:90:F2:5E:6A:68:93:F4:66:D2:69:5E:90:67:0C:04:74:43:64:37:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPJeamiT9GbSaV6QZwwEdENkNwE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/UqZNdA1qZ4gQiVZJmKohlD0oO_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/kPJeamiT9GbSaV6QZwwEdENkNwE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.122.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:2b:b3:1b:59:d2:7c:ff:59:30:43:75:fe:0e:18:49:8c:dc:
20:ed:88:6e:77:fe:fe:66:1a:01:09:1c:3f:14:c9:13:b0:c4:
54:cc:15:7f:40:68:e8:f5:2c:ca:1e:b9:2c:9b:8e:01:ce:dc:
ea:30:5d:35:c3:19:cd:0c:f0:70:40:10:b7:33:bb:71:8f:25:
01:2e:bf:dc:64:44:ee:9a:4b:4d:b3:5a:af:b8:54:ba:73:e9:
d2:99:21:f2:10:c7:96:bb:14:30:e6:a1:f5:a6:31:b9:5e:b9:
4a:ec:a6:ba:e8:69:ac:b6:36:25:46:10:e3:31:f5:99:df:06:
06:1a:c9:f2:c3:4c:70:9a:75:4c:62:ea:8a:de:58:84:f9:b6:
a2:77:20:f2:48:23:ec:ab:39:fb:23:d9:85:bd:c7:d8:76:54:
96:34:15:0b:9e:3a:9d:b2:a8:49:82:60:e3:b6:ed:fe:b9:24:
9a:94:03:7a:8e:a3:80:de:70:db:66:7e:fe:cf:f9:92:35:2d:
52:ef:87:8c:02:c7:1d:96:71:04:6c:c4:9e:fe:18:2e:f3:b3:
da:80:2f:c6:96:df:fb:bd:39:dc:f5:5e:9d:7a:87:89:1c:d2:
7d:24:77:cf:d2:f0:cb:5c:8a:b1:4b:ab:16:54:9d:67:1b:cf:
e3:6c:55:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:00 2024 by rpki-client on console-fra.rpki-client.org