Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/96eb70-0d04-476f-825e-556cc2e071dc/1/ui9Z77ao9Kzlls0Y_5m6bJjtXVg.roa
File: ui9Z77ao9Kzlls0Y_5m6bJjtXVg.roa (raw, json)
Hash identifier: RYCNPc/GV2dQonWbcDYOEtQ67eiX0Gu2tRbi048/QuY=
Subject key identifier: BA:2F:59:EF:B6:A8:F4:AC:E5:96:CD:18:FF:99:BA:6C:98:ED:5D:58
Certificate issuer: /CN=1490fc17382dd6066a38e423badb2d8a18d1c045
Certificate serial: 01856C412BF1ADFDA9F28A47AA154E0BD16C
Authority key identifier: 14:90:FC:17:38:2D:D6:06:6A:38:E4:23:BA:DB:2D:8A:18:D1:C0:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FJD8Fzgt1gZqOOQjutstihjRwEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/96eb70-0d04-476f-825e-556cc2e071dc/1/ui9Z77ao9Kzlls0Y_5m6bJjtXVg.roa
Signing time: Sun 01 Jan 2023 07:34:48 +0000
ROA not before: Sun 01 Jan 2023 07:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212100
IP address blocks: 185.1.59.0/24 maxlen: 24
2001:7f8:cc::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:2b:f1:ad:fd:a9:f2:8a:47:aa:15:4e:0b:d1:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1490fc17382dd6066a38e423badb2d8a18d1c045
Validity
Not Before: Jan 1 07:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba2f59efb6a8f4ace596cd18ff99ba6c98ed5d58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:5d:77:de:18:15:6c:d9:93:08:ac:e1:a3:c5:
76:a0:f8:c8:a8:73:36:5a:d4:79:13:f6:2e:76:98:
b7:9d:5d:97:56:71:67:e5:14:98:3f:97:9b:8b:c1:
8b:10:83:80:62:2c:2d:d4:bc:55:cc:65:2d:55:24:
81:8f:1b:46:28:dd:db:68:6d:29:aa:70:ba:ec:0f:
b0:00:42:35:3a:1e:78:cf:93:7f:26:a1:a4:27:5f:
ef:29:cd:0a:fb:48:08:42:7b:8f:0c:96:aa:81:87:
4e:f9:23:1e:79:01:fb:a1:71:62:83:7a:03:1a:bd:
e1:a3:43:4b:6a:fc:50:83:4d:5d:78:4c:81:8a:7e:
48:8f:2c:8b:9d:c4:f2:87:8b:df:48:94:2f:06:c1:
b5:f2:dc:c1:25:e4:75:14:3d:06:9f:01:cd:f6:1a:
b7:94:9e:0f:a5:68:4f:f5:de:da:7c:5e:03:da:b4:
af:8c:b8:82:a4:e4:18:3c:d3:d2:a1:a9:0a:1e:d9:
84:82:c0:ee:19:43:8a:66:8f:21:e6:c9:51:1f:c7:
67:15:3d:05:19:35:45:ce:8b:79:0d:a3:04:df:ad:
df:24:2a:46:16:47:ed:52:6d:f4:d4:69:a9:3f:50:
61:ea:88:d0:55:1a:8e:5c:6a:89:94:3a:66:5c:a7:
73:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:2F:59:EF:B6:A8:F4:AC:E5:96:CD:18:FF:99:BA:6C:98:ED:5D:58
X509v3 Authority Key Identifier:
keyid:14:90:FC:17:38:2D:D6:06:6A:38:E4:23:BA:DB:2D:8A:18:D1:C0:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FJD8Fzgt1gZqOOQjutstihjRwEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/96eb70-0d04-476f-825e-556cc2e071dc/1/ui9Z77ao9Kzlls0Y_5m6bJjtXVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/96eb70-0d04-476f-825e-556cc2e071dc/1/FJD8Fzgt1gZqOOQjutstihjRwEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.59.0/24
IPv6:
2001:7f8:cc::/48
Signature Algorithm: sha256WithRSAEncryption
06:ea:f6:67:fa:ad:c0:b8:ee:b3:62:9c:55:fa:9e:d4:66:5a:
bf:98:7e:9f:34:9c:7b:9f:86:29:7a:b8:cb:01:e9:99:e8:70:
b6:75:c1:8c:45:9c:f2:1f:7d:7c:3f:dd:56:ca:cd:61:00:a3:
80:a6:95:10:9f:40:9e:98:f4:e2:b9:df:2c:15:b6:71:48:44:
f9:e2:72:93:1d:da:04:ad:7c:5c:34:2c:70:ae:0f:0d:87:66:
62:db:4c:49:b0:ce:52:76:ee:ae:02:d3:c5:14:b3:6a:61:e3:
d3:c4:67:cd:ec:7b:42:ed:71:7b:c9:cf:e5:93:d6:5a:15:41:
70:32:ea:9f:e4:b1:65:ea:c9:41:a3:98:f3:f8:ea:b0:52:c8:
71:cc:5c:3d:e9:cb:44:74:b7:f1:f9:b1:09:f1:1d:e3:80:64:
8b:32:e4:f5:c7:79:ec:83:02:60:74:cc:3e:8a:12:d1:69:6b:
57:d6:eb:26:1c:08:7c:93:a5:a0:78:93:65:15:fc:66:d5:d5:
d1:46:fe:ae:62:26:db:8d:39:ab:c2:63:9e:87:e1:47:11:35:
4f:10:f6:19:4a:d9:7a:2f:2b:0e:87:d6:97:60:62:c5:45:2b:
67:2d:b6:34:3d:e2:c4:69:45:d7:e9:68:62:eb:89:e6:dc:30:
24:fd:b4:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:05 2024 by rpki-client on console-fra.rpki-client.org