Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/UYaTF4jAwQAV55iE3pTkLa10BQM.roa
File: UYaTF4jAwQAV55iE3pTkLa10BQM.roa (raw, json)
Hash identifier: mVn5OQocLiRawcyIfuV5Vyp/Zaj4mgnVxCq3KssJzz4=
Subject key identifier: 51:86:93:17:88:C0:C1:00:15:E7:98:84:DE:94:E4:2D:AD:74:05:03
Certificate issuer: /CN=75a856785392da27d00bdb27091c5926c3155d89
Certificate serial: 01856FC26FAC832B915E95F1BE555CF658B5
Authority key identifier: 75:A8:56:78:53:92:DA:27:D0:0B:DB:27:09:1C:59:26:C3:15:5D:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dahWeFOS2ifQC9snCRxZJsMVXYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/UYaTF4jAwQAV55iE3pTkLa10BQM.roa
Signing time: Sun 01 Jan 2023 23:54:51 +0000
ROA not before: Sun 01 Jan 2023 23:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15404
IP address blocks: 185.199.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:6f:ac:83:2b:91:5e:95:f1:be:55:5c:f6:58:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75a856785392da27d00bdb27091c5926c3155d89
Validity
Not Before: Jan 1 23:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5186931788c0c10015e79884de94e42dad740503
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c5:5b:8b:24:a1:07:d2:5f:41:3c:20:7c:b4:
3e:ca:ec:7b:21:65:c7:7c:3c:e6:f0:f1:cf:5b:2e:
70:f3:33:eb:18:9a:96:57:d5:56:92:11:14:a9:9e:
bb:cc:82:7b:76:69:e2:fb:93:63:3c:17:db:7d:26:
88:bb:e6:8a:ff:81:0e:9a:6c:a6:fd:ac:62:fd:09:
1c:94:18:a8:1e:6d:a8:de:a8:c8:d2:92:77:38:a8:
c2:89:0e:65:36:5b:a3:bb:9c:04:f5:b7:38:e9:63:
a1:81:88:97:e7:36:d8:88:43:8b:49:09:9c:ed:71:
e6:40:74:11:f2:ad:d3:8b:c5:b5:b2:84:5b:45:2e:
06:4e:9d:ff:7f:60:af:90:d8:36:cc:b9:73:38:e6:
08:85:52:a6:b2:fa:a7:12:05:50:6f:1e:ea:dd:01:
0b:80:d3:af:cd:69:f4:ce:65:df:bf:1b:8d:d0:11:
78:95:e9:c8:57:0f:98:7a:bf:6f:ab:b3:f6:42:24:
70:26:f4:50:ed:de:53:93:33:5b:68:23:80:fd:cf:
ca:85:0b:bd:4a:b6:ad:c9:96:3e:98:c2:95:75:7f:
4a:e3:e0:b6:77:bc:55:0f:84:d3:19:a2:05:92:25:
1b:e5:1c:2a:58:1b:c7:b0:4b:f3:d8:ca:61:cc:97:
ae:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:86:93:17:88:C0:C1:00:15:E7:98:84:DE:94:E4:2D:AD:74:05:03
X509v3 Authority Key Identifier:
keyid:75:A8:56:78:53:92:DA:27:D0:0B:DB:27:09:1C:59:26:C3:15:5D:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dahWeFOS2ifQC9snCRxZJsMVXYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/UYaTF4jAwQAV55iE3pTkLa10BQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.204.0/24
Signature Algorithm: sha256WithRSAEncryption
26:02:ae:bf:05:7b:8c:b5:72:c1:6f:e6:8c:91:7e:59:34:88:
71:c9:0c:70:8e:8d:c7:4c:7f:81:81:ee:65:f2:23:55:13:cd:
b5:57:27:30:83:5e:18:dc:e1:d8:48:9c:67:14:64:b4:8f:f6:
a7:44:8d:32:9f:d6:b6:7c:02:71:fe:89:ef:97:bd:10:c7:fe:
4f:8a:c3:ef:c2:96:97:90:17:77:fa:a4:66:7a:45:df:86:a0:
1d:17:33:77:9c:bc:58:dd:ae:94:a0:9e:4a:45:a3:cb:c0:81:
63:74:85:81:0a:14:08:24:1c:26:e4:79:01:a5:86:e8:7c:d6:
e7:e0:c8:a4:11:6b:b7:e8:bd:20:a1:c8:f2:72:c7:ae:b7:b1:
f4:0a:fa:1e:1f:7d:12:39:3d:de:49:d8:0c:b5:44:d9:13:b7:
ad:e0:4e:66:22:6e:d9:34:29:48:e2:21:4f:cd:e8:d2:6f:8c:
33:43:30:4a:3d:c9:a0:73:60:6e:40:57:93:b5:05:32:f7:31:
4a:7c:d1:3a:f0:9b:99:dd:b9:80:76:fa:24:4b:82:20:98:9d:
38:ef:7d:e7:57:47:63:f0:0e:4c:19:54:30:58:8a:4a:82:fb:
1f:3b:9c:70:ea:15:aa:70:f2:91:82:b7:bc:f2:a0:0a:aa:a3:
22:16:b1:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:15 2024 by rpki-client on console-ams.rpki-client.org