Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/UJhf0skedZ7l2_pctIm_BZUea00.roa
File: UJhf0skedZ7l2_pctIm_BZUea00.roa (raw, json)
Hash identifier: FAC8clqKu2icRkn8dbjwu/YYhSu40zoSo/3ItxYRfCU=
Subject key identifier: 50:98:5F:D2:C9:1E:75:9E:E5:DB:FA:5C:B4:89:BF:05:95:1E:6B:4D
Certificate issuer: /CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Certificate serial: 018A4BC12840B6492EC08EE076C76F6B882F
Authority key identifier: 35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/UJhf0skedZ7l2_pctIm_BZUea00.roa
Signing time: Thu 31 Aug 2023 13:21:04 +0000
ROA not before: Thu 31 Aug 2023 13:21:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.74.54.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4b:c1:28:40:b6:49:2e:c0:8e:e0:76:c7:6f:6b:88:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Validity
Not Before: Aug 31 13:21:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50985fd2c91e759ee5dbfa5cb489bf05951e6b4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:2f:cc:cb:0d:93:77:ab:3b:80:03:b2:f2:7c:
14:32:4b:49:62:5e:06:99:80:d4:fe:50:be:43:25:
e6:d1:f1:42:a0:82:0b:55:af:b1:56:a6:ff:6f:3c:
55:66:5f:fd:17:bc:85:33:b8:e0:bd:a9:05:87:85:
52:fc:aa:e1:17:6d:23:12:6e:50:93:56:e4:83:06:
66:00:01:01:1e:a0:e6:46:67:06:c6:0d:66:01:f6:
b3:f4:1c:66:ba:83:f8:70:eb:0b:24:20:de:93:a6:
99:37:d2:64:73:b3:80:33:f9:05:93:75:23:45:1d:
8e:b4:51:7f:9f:d7:04:f7:63:b5:27:ab:cf:ce:6b:
7c:43:f0:dc:18:da:44:98:f4:45:33:da:d7:4b:0e:
93:92:f2:05:7b:f9:12:d9:22:b5:5b:9c:e3:78:f6:
fd:bf:a7:e6:ab:2e:a7:df:59:7a:40:db:ea:0a:4a:
17:76:d1:3c:f4:e1:c7:a7:da:35:e2:42:40:d8:ce:
46:97:91:c4:e1:2b:51:15:d4:37:42:d8:79:b3:ef:
1a:ff:2c:0f:41:41:58:2e:0d:76:ad:44:44:23:3d:
ab:59:1c:9c:4d:c8:e0:06:f9:5f:7a:17:b6:5d:7c:
13:22:b2:1d:ef:8d:40:ce:68:0a:99:8c:b6:64:e7:
c9:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:98:5F:D2:C9:1E:75:9E:E5:DB:FA:5C:B4:89:BF:05:95:1E:6B:4D
X509v3 Authority Key Identifier:
keyid:35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/UJhf0skedZ7l2_pctIm_BZUea00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/NS-JGea8HvVmNIkBj8h1vjTA8kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.74.54.0/23
Signature Algorithm: sha256WithRSAEncryption
21:da:e4:0e:04:51:21:df:a9:98:6b:67:6f:27:17:13:5a:d5:
7b:7c:5a:1f:1a:87:51:28:1c:25:36:af:30:e5:16:10:94:47:
97:d4:23:5a:65:80:85:0a:e6:54:44:ad:9e:76:d8:bb:ce:f9:
d9:f7:69:c2:f0:21:62:f5:a3:4f:82:aa:6d:f8:2c:7c:49:7e:
1c:ea:0d:2d:52:0e:e2:f9:62:2d:7f:73:fe:9f:a6:70:75:c8:
51:c0:2a:f9:fa:a6:b5:56:6e:87:20:64:d9:f6:3e:bc:4e:1e:
ac:05:13:ed:47:59:ff:b9:17:98:7d:6d:2d:bf:fd:6f:6d:de:
f3:93:0a:55:34:02:4a:62:ea:af:b8:fd:db:07:c7:15:c7:f9:
05:86:1f:8e:4d:03:c2:50:8b:db:64:94:9a:39:1d:03:3c:7e:
95:a3:4d:8f:39:be:17:92:e6:e3:6f:ce:62:78:9a:86:19:25:
2c:a3:c7:53:80:fa:09:94:22:87:c3:2a:02:7f:73:25:31:22:
3d:b2:1c:18:dc:09:71:74:56:71:9b:0e:6a:a4:58:a4:1c:93:
f1:c0:a7:64:cd:04:37:ef:67:80:51:b1:dd:8b:1c:cf:0a:74:
d8:d5:90:68:24:3e:9a:40:be:de:59:00:1b:75:04:25:90:43:
65:d5:d6:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:37 2024 by rpki-client on console-fra.rpki-client.org