Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/UjokD3ZD5AUPzdyoYdoIfqJJFjU.roa
File: UjokD3ZD5AUPzdyoYdoIfqJJFjU.roa (raw, json)
Hash identifier: uKnNjzHna3qP3mj0ExVcROEoBpTQk5WPARiW0OFdhag=
Subject key identifier: 52:3A:24:0F:76:43:E4:05:0F:CD:DC:A8:61:DA:08:7E:A2:49:16:35
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 01857246F96FB3D4E0D7ACECCEADD5F37E96
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/UjokD3ZD5AUPzdyoYdoIfqJJFjU.roa
Signing time: Mon 02 Jan 2023 11:38:51 +0000
ROA not before: Mon 02 Jan 2023 11:38:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400810
IP address blocks: 185.240.134.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:f9:6f:b3:d4:e0:d7:ac:ec:ce:ad:d5:f3:7e:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 2 11:38:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=523a240f7643e4050fcddca861da087ea2491635
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ac:d9:fb:ed:e5:67:70:01:80:0f:73:4b:50:
b7:3b:89:a3:ad:21:5a:54:c7:c3:72:ca:fa:7e:3d:
7a:07:fa:91:4f:05:15:c8:d5:0d:01:7e:b2:23:13:
1e:8c:88:55:f4:ba:c0:ee:7f:35:46:97:ce:2d:28:
4b:ca:3c:b5:fd:59:26:81:e3:89:a7:11:80:f3:e1:
2d:10:fa:11:9b:8d:6e:c4:38:f2:57:98:e8:df:de:
16:d3:d0:6b:0e:92:16:b9:d7:45:42:5c:91:be:ce:
83:45:a9:30:cc:ca:a4:c3:45:5b:95:f5:2e:17:6b:
81:77:87:6b:f9:6c:b6:c6:7d:e1:d0:8f:ec:82:c0:
11:71:9e:91:bd:80:60:a3:49:06:a1:03:91:25:3e:
f6:1f:ce:fd:9a:af:36:45:cb:75:66:f8:2f:9a:c3:
b0:79:de:59:90:ca:2f:40:d1:88:ea:64:d9:de:9a:
b2:d7:5a:75:75:b1:20:ef:be:a9:8e:e7:1e:e7:34:
a1:3a:4a:b7:6c:4a:c0:80:b1:ad:b3:81:c9:b3:2d:
f8:f2:e1:1d:df:a7:88:ad:7e:ab:bb:dc:ed:e7:6c:
7b:a0:25:1b:7c:7d:97:e0:fb:da:ac:c3:a0:0f:a3:
ed:d6:fa:92:95:47:68:b6:a8:9a:09:18:cf:4d:57:
36:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:3A:24:0F:76:43:E4:05:0F:CD:DC:A8:61:DA:08:7E:A2:49:16:35
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/UjokD3ZD5AUPzdyoYdoIfqJJFjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.134.0/23
Signature Algorithm: sha256WithRSAEncryption
92:78:2b:ab:57:cb:56:14:88:9c:73:73:c1:c4:fe:16:57:e2:
78:6a:8f:66:d6:75:6c:22:8b:67:ba:d9:e4:e3:fb:da:2a:46:
82:76:35:f8:5d:c2:f7:aa:82:71:18:35:07:75:9d:19:d6:0d:
f7:1a:9c:d7:92:58:ba:99:11:e2:ea:26:51:2f:56:6a:f1:64:
c7:a1:e8:c7:13:30:fb:e9:09:b0:73:93:f5:98:55:84:8b:55:
41:ee:47:8e:c1:83:75:c4:f1:57:c5:b3:85:99:97:0b:57:7f:
67:84:10:89:6f:97:b1:c8:60:d1:4b:0a:d6:f6:87:e8:6f:b1:
25:1d:ce:89:e0:ad:bb:03:1f:57:13:d4:49:8a:ea:24:c5:b7:
65:3c:dd:b0:8d:98:2b:82:e7:6b:c3:e0:39:fc:f0:14:f6:85:
34:0a:44:3f:1c:21:82:41:d1:c4:30:57:1a:39:09:65:e0:32:
c0:ef:b4:57:13:61:c3:b3:f2:9a:6f:2d:a3:b0:27:d9:0a:a7:
c2:72:ec:6b:e9:32:67:f7:6c:8f:78:47:7b:10:e8:f5:53:d7:
80:8b:23:81:fc:b8:66:22:5b:cb:92:f6:66:17:d9:f6:01:c7:
12:a5:f5:24:c8:ff:4c:8b:04:a1:33:43:d2:81:7c:fd:8f:ed:
04:c4:4d:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org