Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/uD4W-72YGsqbr2HdD-iBC5wuppU.roa
File: uD4W-72YGsqbr2HdD-iBC5wuppU.roa (raw, json)
Hash identifier: lvedvT9MOgsYlXlmvSoTFuKzNjooXou/pMqy1grE3JE=
Subject key identifier: B8:3E:16:FB:BD:98:1A:CA:9B:AF:61:DD:0F:E8:81:0B:9C:2E:A6:95
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 0191119CF51B575A982E896308A9EBB79473
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/uD4W-72YGsqbr2HdD-iBC5wuppU.roa
Signing time: Fri 02 Aug 2024 05:43:04 +0000
ROA not before: Fri 02 Aug 2024 05:43:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.58.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Aug 2024 14:44:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:11:9c:f5:1b:57:5a:98:2e:89:63:08:a9:eb:b7:94:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Aug 2 05:43:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b83e16fbbd981aca9baf61dd0fe8810b9c2ea695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:be:ef:61:36:dc:9b:a9:c8:a8:79:88:14:76:
81:6e:0f:d7:ca:10:5a:5a:03:19:57:dc:ea:38:30:
85:39:71:c9:b1:6a:b4:2a:84:0d:2a:a3:7b:d4:57:
87:41:64:bd:b9:22:6c:1d:d4:b8:2a:bc:16:5f:55:
9c:55:b9:f3:fa:6e:3b:a0:31:5b:73:1c:02:61:a3:
49:e0:ca:ae:14:97:c4:07:6e:f9:f3:8d:fd:8f:18:
50:21:d6:3f:58:77:b0:e4:8d:dc:20:c6:d7:b3:02:
3c:05:04:26:e2:ff:6f:5c:8e:eb:98:2c:07:79:25:
ca:68:63:35:35:4c:99:c0:ea:7e:47:50:f2:a3:23:
c5:d8:f0:b2:09:db:5b:b1:ad:1a:3d:a3:62:de:cc:
71:af:bd:08:5d:02:a2:85:28:82:2c:37:09:d2:12:
8f:f6:32:a3:b9:b6:f2:06:bd:7d:ac:43:c7:fa:a9:
27:81:4a:92:ef:fb:e3:2a:50:02:a9:b8:d7:6c:11:
f3:28:30:9c:36:99:0b:07:3d:99:bb:3a:0e:32:d0:
0b:58:68:1b:c0:cb:cd:e8:ea:c7:c3:93:60:e4:3d:
84:e9:2c:cc:56:19:5c:4e:69:bd:56:f6:11:95:3a:
7a:cd:6b:4e:d7:9f:6c:01:bb:26:92:25:bb:8f:0d:
38:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:3E:16:FB:BD:98:1A:CA:9B:AF:61:DD:0F:E8:81:0B:9C:2E:A6:95
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/uD4W-72YGsqbr2HdD-iBC5wuppU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.58.23.0/24
Signature Algorithm: sha256WithRSAEncryption
88:7b:84:ab:d0:c8:44:11:15:5a:08:6f:03:b3:5c:26:b4:25:
aa:cb:b1:19:93:93:ec:2b:f1:c9:cc:93:81:b1:b0:17:84:de:
1c:08:de:1e:f0:24:7a:18:95:9c:f5:cf:47:e2:f7:df:ed:1e:
8e:b3:32:d0:18:db:8f:26:b9:eb:97:5b:25:2c:cf:bc:ce:cd:
4f:34:bf:b4:2d:e8:62:cb:7e:21:b1:91:b6:d8:ce:e9:8e:b3:
41:44:76:88:46:13:5a:b8:ef:a5:a4:d1:77:df:be:b9:26:62:
18:e8:4c:e1:93:5a:d7:48:70:9d:f0:7c:53:a0:e9:8d:36:8e:
b1:3d:3b:bd:84:d9:b3:49:d2:25:b5:28:df:e5:f3:f5:99:c4:
5d:2a:29:65:f3:e3:99:13:8d:20:1d:f6:b2:3b:2a:53:94:ee:
fd:7e:68:a6:4a:04:14:c6:fc:15:d4:2f:0c:4d:7d:2b:f0:0d:
ed:2c:b1:c3:6f:a6:2b:25:51:45:d0:f3:b7:a4:38:d2:5e:28:
3e:6d:7f:14:78:98:66:8d:24:6c:3c:45:5a:57:72:a9:34:6a:
cc:56:5e:04:9a:c0:89:74:49:5c:b5:4b:e8:49:fd:2a:ba:89:
9c:df:9e:90:da:9c:b9:ba:55:f8:98:3a:3f:df:45:d1:c6:39:
3c:5f:b1:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 17:58:38 2024 by rpki-client on console-fra.rpki-client.org