Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/UhZK7j33_KRq_npa7CpmhdtOdS4.roa
File: UhZK7j33_KRq_npa7CpmhdtOdS4.roa (raw, json)
Hash identifier: vQqbAjCD1a9RmrIglN2EvgJUA2UWnjbt9FphRWs3cOE=
Subject key identifier: 52:16:4A:EE:3D:F7:FC:A4:6A:FE:7A:5A:EC:2A:66:85:DB:4E:75:2E
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 018AB1EBE000B47CEF620BC494B88A25197A
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/UhZK7j33_KRq_npa7CpmhdtOdS4.roa
Signing time: Wed 20 Sep 2023 09:29:00 +0000
ROA not before: Wed 20 Sep 2023 09:29:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 185.255.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b1:eb:e0:00:b4:7c:ef:62:0b:c4:94:b8:8a:25:19:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Sep 20 09:29:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52164aee3df7fca46afe7a5aec2a6685db4e752e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:64:b2:60:52:79:ef:04:de:30:b3:31:1d:b6:
d7:dd:ff:0e:c0:19:f6:4c:e5:bf:2d:eb:83:de:10:
ff:57:0f:50:90:4b:d8:64:f7:81:d2:77:f0:57:22:
32:8e:24:d9:95:c1:d0:73:81:db:0c:5b:04:e5:63:
c1:79:56:40:92:e6:3b:d1:b8:8f:79:6a:3d:a4:ef:
db:5d:6c:e4:09:14:27:f6:be:b8:11:70:b0:9e:36:
6d:d9:fe:32:01:0c:b5:33:41:55:a1:58:83:bc:36:
08:e7:60:c4:00:c8:97:ab:29:45:88:7c:d3:51:10:
2d:ce:b6:da:14:84:5c:e8:8e:2c:34:b0:63:b4:ec:
a8:49:7c:b5:32:a8:65:f0:d6:9d:91:0f:a3:15:33:
b0:e4:fb:66:6e:c5:a5:b9:d5:3f:68:75:9e:bc:48:
c6:5c:ad:70:24:64:85:c6:ff:d4:d4:d8:57:75:15:
79:d6:93:d3:12:0b:85:12:2a:ea:4c:00:54:91:d0:
f2:92:ed:d9:04:7d:a8:44:71:dd:f2:d8:f5:d2:31:
e5:7b:b5:62:1e:80:12:67:2c:3b:7a:83:07:b9:11:
b0:7a:a8:7a:e8:48:69:6d:69:06:c5:75:4d:68:cf:
5d:4f:ac:19:c9:40:17:11:27:a0:bf:49:2d:a5:c5:
bf:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:16:4A:EE:3D:F7:FC:A4:6A:FE:7A:5A:EC:2A:66:85:DB:4E:75:2E
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/UhZK7j33_KRq_npa7CpmhdtOdS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.4.0/24
Signature Algorithm: sha256WithRSAEncryption
15:8e:89:44:2a:b6:2d:fe:1b:d5:f1:e2:7b:20:79:b0:ec:6e:
97:5d:cb:79:01:15:a3:bd:eb:8e:50:f3:ee:8e:cb:eb:b5:88:
69:86:8a:12:9f:90:ca:17:95:ba:af:4a:d7:e0:03:8f:2d:95:
e5:e3:fb:bc:fd:d2:5a:cd:41:14:76:08:5a:aa:07:ad:69:fa:
cd:fd:fc:b3:2c:87:59:1a:11:ea:83:3e:6e:1a:6a:c3:7c:14:
4c:e7:aa:9e:18:fd:48:fb:79:08:6c:39:f3:1c:85:1a:b4:08:
64:82:f9:bd:12:21:35:97:50:dd:1b:0f:e0:8a:60:d0:36:15:
60:19:20:7d:ff:db:fe:9c:ed:dc:d6:1b:c9:d0:28:3a:aa:53:
3f:d8:61:ba:7e:f9:64:40:15:f0:db:dd:fd:53:43:2b:f9:e3:
35:90:bf:fa:4b:96:d5:67:df:82:4c:62:2d:99:7d:23:6e:92:
47:b3:07:69:cd:86:77:e5:65:db:93:87:d5:98:ce:dd:5c:a7:
52:9b:4b:da:54:f7:0a:12:51:59:7a:c8:0d:fc:f3:57:5e:19:
bc:f8:8a:c6:db:ac:4c:75:61:63:6d:6e:27:f4:fe:b6:6e:b0:
8f:49:ba:b8:f3:9c:11:72:9f:2b:d5:7d:ad:25:6f:b5:ef:14:
ba:47:b1:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org