Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/1574c9-01d5-48fd-980f-343c4d24c23b/1/Uxwq8HA7I1XVVwJ-Wq02Y3Y74BA.roa
File: Uxwq8HA7I1XVVwJ-Wq02Y3Y74BA.roa (raw, json)
Hash identifier: LvMD2hsqzTvAFoOL1En1LFvyQ6PaSuzS0aNGZGLnQOY=
Subject key identifier: 53:1C:2A:F0:70:3B:23:55:D5:57:02:7E:5A:AD:36:63:76:3B:E0:10
Certificate issuer: /CN=295579f5b673dbe2ebba348cfb0f56124cde7048
Certificate serial: 01856B93575AE3E783F41F7DDC1B46D0A6FA
Authority key identifier: 29:55:79:F5:B6:73:DB:E2:EB:BA:34:8C:FB:0F:56:12:4C:DE:70:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KVV59bZz2-LrujSM-w9WEkzecEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/1574c9-01d5-48fd-980f-343c4d24c23b/1/Uxwq8HA7I1XVVwJ-Wq02Y3Y74BA.roa
Signing time: Sun 01 Jan 2023 04:24:56 +0000
ROA not before: Sun 01 Jan 2023 04:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15830
IP address blocks: 185.94.87.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:93:57:5a:e3:e7:83:f4:1f:7d:dc:1b:46:d0:a6:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=295579f5b673dbe2ebba348cfb0f56124cde7048
Validity
Not Before: Jan 1 04:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=531c2af0703b2355d557027e5aad3663763be010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:78:96:4c:51:05:08:9a:e7:10:47:33:fa:f3:
0b:a5:eb:72:7a:78:45:88:0c:d6:8f:72:3b:41:93:
8a:9d:9a:76:af:85:bf:5a:f2:c0:f1:a3:91:f2:63:
bb:56:e7:52:1c:00:4f:69:55:82:7c:c9:f7:9d:8d:
95:eb:5b:1b:ea:88:49:ed:f6:65:b5:12:b9:3c:0f:
da:a3:01:bd:73:17:37:7a:31:7a:3b:6c:ba:10:f9:
f7:5f:ea:ec:b3:96:b4:d9:d3:9c:60:f3:f3:bd:88:
da:98:d5:9b:4b:b6:37:1a:e5:24:1b:de:66:28:a0:
ff:66:76:61:26:9f:ae:7a:3b:20:ad:11:67:81:16:
9e:5d:df:1f:91:c7:2c:16:8a:4e:32:a6:3d:73:ae:
ab:9e:b1:8d:b8:b1:68:43:1f:24:3f:e8:28:3d:db:
80:8b:5d:ad:2d:eb:f0:f2:7e:cf:5b:96:06:99:d2:
a3:18:70:b4:29:ac:03:43:c5:b2:9b:85:c9:f1:24:
3f:06:bb:41:0b:56:30:a9:be:21:14:89:25:c5:08:
8e:50:84:6f:5f:d3:7f:2a:0b:4a:36:09:69:cc:a1:
d5:de:ef:c0:d1:d6:73:fc:09:ae:23:c6:58:8d:b4:
43:06:1c:1c:8e:51:d2:20:59:a0:b6:96:4b:2f:8f:
fa:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:1C:2A:F0:70:3B:23:55:D5:57:02:7E:5A:AD:36:63:76:3B:E0:10
X509v3 Authority Key Identifier:
keyid:29:55:79:F5:B6:73:DB:E2:EB:BA:34:8C:FB:0F:56:12:4C:DE:70:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KVV59bZz2-LrujSM-w9WEkzecEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/1574c9-01d5-48fd-980f-343c4d24c23b/1/Uxwq8HA7I1XVVwJ-Wq02Y3Y74BA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/1574c9-01d5-48fd-980f-343c4d24c23b/1/KVV59bZz2-LrujSM-w9WEkzecEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.87.0/24
Signature Algorithm: sha256WithRSAEncryption
73:8b:6d:6b:eb:9d:9d:58:6e:ce:8f:0c:b7:7c:9d:a7:71:04:
07:cc:b1:eb:36:74:69:bc:1f:bb:48:26:73:0a:11:2e:ce:d2:
9f:83:00:ec:b5:e6:63:bb:5e:70:0a:45:2f:10:c5:a8:63:51:
64:5c:86:4d:89:3c:ab:41:25:7c:83:9f:da:05:94:81:0a:58:
db:95:d6:c2:c2:78:65:86:9d:b5:21:7f:7f:1d:9f:e8:74:ac:
54:4f:96:20:dd:63:f1:35:62:18:47:b2:4d:0b:3c:52:97:d8:
c2:31:ed:aa:79:29:27:8b:72:1a:12:61:32:7c:19:04:bb:b1:
44:08:62:94:87:12:37:58:5e:02:55:61:fc:30:73:31:8f:13:
27:4e:61:ef:8d:b8:f7:1c:f4:c1:ef:04:6b:21:a6:dd:ee:b3:
a3:24:b2:d6:8d:22:f2:d6:7a:8d:55:1f:98:35:16:01:ba:b3:
64:34:c5:ca:7d:3a:08:62:66:62:0b:18:37:1e:3a:5d:c2:61:
86:86:5a:e8:1e:c6:57:93:0b:c5:0a:fc:27:e4:bf:bc:ae:c8:
26:83:01:eb:cb:7e:26:cc:65:6d:4e:e5:fe:d8:3f:b5:28:a8:
2d:05:df:8a:57:b3:0a:06:bc:d2:1a:e6:ed:0f:5f:cf:bf:87:
a1:a9:37:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:12 2024 by rpki-client on console-fra.rpki-client.org