Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b2dbe0-04c5-41ba-ac62-3a53d0ef8b5a/1/UwrFJHTK1ZZxD0uuE7ezTjaQD-Q.roa
File: UwrFJHTK1ZZxD0uuE7ezTjaQD-Q.roa (raw, json)
Hash identifier: H8TmpWJ92Wu+x4ThbTrGquSTHDmkvQ8pYpDkY76WnSQ=
Subject key identifier: 53:0A:C5:24:74:CA:D5:96:71:0F:4B:AE:13:B7:B3:4E:36:90:0F:E4
Certificate issuer: /CN=c8c2c7314593042cf74210f7f03be7106c224f89
Certificate serial: 01856C65FF9E1A31086F68DE890AEA5A4CD8
Authority key identifier: C8:C2:C7:31:45:93:04:2C:F7:42:10:F7:F0:3B:E7:10:6C:22:4F:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yMLHMUWTBCz3QhD38DvnEGwiT4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b2dbe0-04c5-41ba-ac62-3a53d0ef8b5a/1/UwrFJHTK1ZZxD0uuE7ezTjaQD-Q.roa
Signing time: Sun 01 Jan 2023 08:15:02 +0000
ROA not before: Sun 01 Jan 2023 08:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209286
IP address blocks: 185.233.219.0/24 maxlen: 25
185.107.135.0/24 maxlen: 24
2a10:4e40::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 02 Jan 2023 08:40:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:65:ff:9e:1a:31:08:6f:68:de:89:0a:ea:5a:4c:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8c2c7314593042cf74210f7f03be7106c224f89
Validity
Not Before: Jan 1 08:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=530ac52474cad596710f4bae13b7b34e36900fe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:65:d4:47:99:58:a6:7f:1c:58:97:bc:00:cd:
a4:30:85:c6:af:02:63:1e:cd:99:a4:a5:3f:cc:f7:
79:9a:eb:ab:4a:13:79:8f:b4:35:8c:d7:31:4d:29:
71:1e:c4:7d:56:7a:ff:27:8b:4a:4c:9d:ad:94:81:
39:7c:d1:ca:47:70:14:9e:c6:7d:65:06:1a:02:19:
86:7d:8a:4d:26:76:97:f4:60:21:d0:d7:3e:9b:6f:
e0:5e:8f:9a:b9:4c:d3:0d:39:81:ef:41:98:69:6f:
1f:d6:10:7c:a8:a0:6a:58:18:62:07:de:00:1a:3f:
92:64:ba:01:4d:46:50:67:72:a7:23:99:b8:fc:39:
97:ee:84:df:4b:5a:22:dd:31:77:fe:e0:62:3f:e2:
3c:24:78:19:49:4f:4c:59:02:ff:36:fe:f3:7c:e6:
79:24:6d:fc:da:de:65:de:cb:46:90:38:10:71:8d:
b7:ad:00:eb:67:a6:6a:0e:93:28:22:66:4e:3b:c1:
83:e9:97:8f:54:0c:ad:1e:9c:50:55:89:ba:6b:f1:
97:5b:76:13:e4:22:0d:a9:e5:d2:c8:f5:f6:dc:24:
f0:f2:54:28:88:97:0a:8c:fc:5c:7c:8b:c7:d0:ac:
94:47:89:50:05:60:f7:68:88:87:d4:4f:98:1e:b6:
96:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:0A:C5:24:74:CA:D5:96:71:0F:4B:AE:13:B7:B3:4E:36:90:0F:E4
X509v3 Authority Key Identifier:
keyid:C8:C2:C7:31:45:93:04:2C:F7:42:10:F7:F0:3B:E7:10:6C:22:4F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yMLHMUWTBCz3QhD38DvnEGwiT4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b2dbe0-04c5-41ba-ac62-3a53d0ef8b5a/1/UwrFJHTK1ZZxD0uuE7ezTjaQD-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b2dbe0-04c5-41ba-ac62-3a53d0ef8b5a/1/yMLHMUWTBCz3QhD38DvnEGwiT4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.107.135.0/24
185.233.219.0/24
IPv6:
2a10:4e40::/48
Signature Algorithm: sha256WithRSAEncryption
3f:af:7d:00:bd:50:bc:6c:b0:59:52:53:2d:92:d1:b9:99:20:
21:15:bb:2b:c3:12:6a:1f:f2:7d:19:55:54:e1:3f:c2:f6:d8:
3e:90:51:4d:85:7b:e7:6e:ff:c5:1e:6a:0e:0d:1a:01:eb:c6:
ff:3f:a7:66:a1:5b:df:75:cd:1e:59:da:53:a3:52:d9:ee:8e:
3b:1e:45:15:9f:2b:dd:5a:01:f3:6a:31:bb:dd:d6:08:2d:7b:
56:45:cf:4c:37:ba:3e:a5:7d:0d:9a:dd:37:cb:03:03:2b:b2:
76:15:e0:cd:95:ee:4e:73:51:52:cd:57:53:1d:6c:eb:3a:b5:
2b:bc:2e:4f:a8:72:ee:53:d1:82:a1:a9:ca:d1:8c:8e:88:fe:
f3:01:cf:6c:84:ee:d4:15:9a:e5:3c:a8:42:94:4a:fd:5b:08:
9f:61:14:8c:ca:33:9f:fd:7a:03:be:47:d7:b0:d9:4b:a7:ce:
73:e8:90:6c:20:5c:9e:44:f5:1c:16:76:a6:d1:06:92:1f:b7:
eb:5e:a3:4a:c4:b1:71:98:f2:50:20:54:4c:41:c5:91:b1:0b:
e6:a2:1e:38:ca:f5:97:49:3e:89:cf:2b:bd:8c:9c:4a:38:96:
3e:91:48:06:cb:f8:85:f8:69:09:48:77:f4:f9:89:2f:5c:f8:
22:ee:38:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:53 2024 by rpki-client on console-ams.rpki-client.org