Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/umQNL-oE2CGpy0GJYBDCIcT4cDc.roa
File: umQNL-oE2CGpy0GJYBDCIcT4cDc.roa (raw, json)
Hash identifier: +xXsAMG9RmLEBm2dHCyhyvdIP/vaDmVjGQKrUizoHaw=
Subject key identifier: BA:64:0D:2F:EA:04:D8:21:A9:CB:41:89:60:10:C2:21:C4:F8:70:37
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 018CC6B942D2DE558853DDF5716CF8EEBE55
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/umQNL-oE2CGpy0GJYBDCIcT4cDc.roa
Signing time: Mon 01 Jan 2024 20:31:18 +0000
ROA not before: Mon 01 Jan 2024 20:31:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203182
IP address blocks: 85.187.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 30 Mar 2024 14:09:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:42:d2:de:55:88:53:dd:f5:71:6c:f8:ee:be:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 1 20:31:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba640d2fea04d821a9cb41896010c221c4f87037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c6:5c:15:a7:54:08:03:8a:c7:ee:2d:e7:58:
63:c2:4e:80:60:02:4e:99:ac:2b:3d:80:d2:38:43:
c3:0b:64:f6:c6:d7:8b:3e:f2:29:cd:18:eb:59:79:
96:dd:15:24:8f:53:36:53:30:b5:7e:60:b4:02:ca:
56:58:d5:80:9c:f0:87:1f:96:32:c2:8e:58:7b:91:
08:ea:fb:7e:de:2c:45:75:da:00:18:fd:90:80:25:
cd:f5:e9:5d:e3:f4:ad:88:7d:b2:3b:d8:59:db:f1:
83:82:a0:e5:75:3b:58:05:03:49:d2:59:28:e6:e8:
a0:cc:8e:08:c7:e8:02:bb:d1:42:51:1e:1f:dc:d8:
af:94:87:1c:44:7b:64:70:cb:0a:bb:ee:63:01:b5:
ac:34:39:03:88:01:50:de:cf:4a:58:d7:c9:72:4b:
ac:33:ff:eb:da:9f:78:f8:0b:f4:93:6c:ad:74:a1:
2a:57:68:0e:23:09:5a:ee:95:04:f3:14:3f:2b:de:
8a:0e:44:a5:c5:84:b5:8a:f6:28:e9:25:8c:ff:0e:
e7:10:5b:62:14:43:13:45:4a:65:97:f2:6b:d8:bd:
f7:19:25:db:74:dc:e9:e7:1f:7b:72:92:5f:74:61:
06:98:df:62:ec:dc:95:42:18:7b:bf:66:b4:a9:8f:
a7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:64:0D:2F:EA:04:D8:21:A9:CB:41:89:60:10:C2:21:C4:F8:70:37
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/umQNL-oE2CGpy0GJYBDCIcT4cDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.16.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:36:10:bb:24:1c:95:d9:26:54:e6:9d:b1:73:f1:47:43:c0:
6e:40:a7:85:00:19:0c:d0:0e:16:32:c2:ed:33:f1:6f:5d:b1:
d3:86:54:a5:4f:75:d0:f7:2c:3a:ba:02:1f:f6:14:2b:f7:f3:
e4:0e:04:cb:67:e0:67:33:d2:c6:36:ba:93:dc:37:18:a1:3d:
78:89:92:e7:47:f5:a3:aa:8c:f5:80:f5:f7:dd:76:8f:05:c1:
59:95:3e:b9:9e:71:de:04:e2:84:27:4c:06:f8:e9:2b:6b:c3:
00:1f:5c:5e:8c:4d:39:44:f2:1b:07:37:35:8e:8d:e4:2b:ef:
ee:c0:00:00:0f:a2:50:fb:7a:92:45:11:df:d2:a4:d5:92:71:
45:8a:26:dd:86:61:70:f2:73:3b:d8:98:50:b5:d7:5d:5d:62:
73:56:df:5a:ee:0c:91:3d:24:fc:66:a6:df:ec:46:a5:8f:d5:
a5:f1:c6:79:c4:d5:a1:91:a5:77:c1:9f:31:e9:68:c9:66:d8:
43:59:0c:6a:44:a8:7e:af:f4:c7:47:60:18:a2:37:f4:11:1e:
fa:6a:3c:49:ad:d4:d7:84:72:46:66:c6:13:ab:95:85:87:ab:
f5:c1:2b:14:f1:fd:b9:bf:84:3c:69:b4:1b:7a:b2:49:69:4a:
ce:38:fc:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org