Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/u73cidyav_xmUBk5mqYSyUQAXNc.roa
File: u73cidyav_xmUBk5mqYSyUQAXNc.roa (raw, json)
Hash identifier: HwFNQgQ2w20FHRGQUko9y+tWG3iIGKJRihLCOwpnkEE=
Subject key identifier: BB:BD:DC:89:DC:9A:BF:FC:66:50:19:39:9A:A6:12:C9:44:00:5C:D7
Certificate issuer: /CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Certificate serial: 0185711E429FCD715DA0E9B36C8970A3E050
Authority key identifier: 30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/u73cidyav_xmUBk5mqYSyUQAXNc.roa
Signing time: Mon 02 Jan 2023 06:14:46 +0000
ROA not before: Mon 02 Jan 2023 06:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3215
IP address blocks: 185.145.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:42:9f:cd:71:5d:a0:e9:b3:6c:89:70:a3:e0:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Validity
Not Before: Jan 2 06:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bbbddc89dc9abffc665019399aa612c944005cd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8f:f5:93:dd:c5:41:3e:ff:a3:24:69:9c:be:
ed:6a:32:73:f8:2b:85:b5:c6:95:b1:3b:17:11:a9:
f5:2c:2d:18:3a:aa:27:5e:72:51:c9:c4:79:03:a2:
be:e4:62:a6:dc:36:83:b9:de:e1:b6:67:a1:29:9a:
02:26:c2:42:e8:24:06:9a:d8:0a:0e:42:eb:2a:2e:
16:56:e5:47:68:a5:f6:43:84:70:50:41:44:9e:f4:
79:0e:d3:e1:6c:98:22:ea:ef:0a:29:74:b1:5a:66:
6c:15:43:42:46:60:83:73:21:07:f8:dc:09:bb:61:
6a:e9:1d:6d:0f:a9:84:1b:ea:62:c2:32:52:1d:1f:
a3:a2:18:06:ba:c2:a5:31:2c:17:bd:0d:a9:1c:30:
84:fe:79:ff:7c:4a:5d:e2:25:d0:d6:65:19:9b:7c:
d9:94:c0:21:09:68:95:5d:b4:f6:44:3b:d9:5f:13:
7f:1c:f5:32:3b:8e:12:4b:99:bb:42:37:5c:b3:7d:
b6:26:10:bf:e4:12:f0:17:82:07:71:e3:ce:2e:9e:
4c:c3:72:b2:c6:e1:8a:8e:8a:00:a5:27:6a:21:ae:
f8:e0:ff:8a:c8:1a:3c:7e:bd:d6:b5:bb:62:9c:e6:
5f:4c:84:91:72:80:2e:ea:7f:4d:35:d8:0c:39:ae:
41:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:BD:DC:89:DC:9A:BF:FC:66:50:19:39:9A:A6:12:C9:44:00:5C:D7
X509v3 Authority Key Identifier:
keyid:30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/u73cidyav_xmUBk5mqYSyUQAXNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.78.0/24
Signature Algorithm: sha256WithRSAEncryption
24:57:8f:40:4b:81:3f:b7:71:77:a1:4e:5d:1b:15:07:70:67:
77:06:12:5b:0a:c9:db:bc:c5:64:f0:1e:5a:05:0c:7c:b9:63:
80:f3:a4:82:20:1f:55:7b:11:87:d3:a5:74:0f:e0:2a:38:6e:
7c:c3:b1:2c:b8:ce:fe:bb:3a:a4:ca:aa:0e:7b:59:69:9b:66:
c2:bf:90:55:a2:34:2b:98:a2:ca:21:aa:d6:32:cd:8a:61:01:
55:4e:65:d9:23:fe:a2:53:2a:56:f3:9f:b1:7c:2b:f5:02:67:
d6:21:df:90:da:19:03:ea:86:90:86:0d:6d:0a:87:7e:e3:49:
70:76:a8:12:9d:65:79:a3:b6:e6:92:e0:43:ce:cd:64:7c:3e:
ce:c6:2a:13:06:39:b3:08:13:b5:9c:25:8d:9f:63:a9:da:8d:
dc:b8:76:ac:d5:02:e6:ab:28:28:7d:05:37:b7:e1:e0:92:11:
9e:f6:f2:4d:98:d1:96:d9:df:c6:9b:29:4e:b1:57:24:f8:84:
50:29:32:23:25:07:d6:b0:bd:43:9a:59:36:4f:6a:c7:5f:db:
6b:d7:40:02:78:3e:be:6d:77:2a:ad:39:f2:80:8d:23:a9:5f:
90:d9:74:4f:7e:46:87:52:cb:90:1b:c2:6e:8a:46:7c:34:ec:
17:8d:cd:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:31 2024 by rpki-client on console-ams.rpki-client.org