Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uqaS4527US41peepEqv3g44qlnw.roa
File: uqaS4527US41peepEqv3g44qlnw.roa (raw, json)
Hash identifier: amn4h+FaqtxyhI13gC1DmIc/70JSKHZHBKxRkeKRNKU=
Subject key identifier: BA:A6:92:E3:9D:BB:51:2E:35:A5:E7:A9:12:AB:F7:83:8E:2A:96:7C
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018CC8028786021182EFE35926DCF67CD719
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uqaS4527US41peepEqv3g44qlnw.roa
Signing time: Tue 02 Jan 2024 02:30:58 +0000
ROA not before: Tue 02 Jan 2024 02:30:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198617
IP address blocks: 185.223.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Jan 2024 18:47:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:87:86:02:11:82:ef:e3:59:26:dc:f6:7c:d7:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 02:30:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=baa692e39dbb512e35a5e7a912abf7838e2a967c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:83:c8:2f:44:98:26:51:0d:a8:66:67:7b:28:
5a:e9:ef:12:9b:0d:07:e0:cf:8d:94:89:bd:f3:06:
38:75:db:a8:89:d5:c4:b0:5c:89:4c:32:d1:86:f8:
97:ca:3d:93:3e:b7:41:91:f1:b0:71:a7:69:6f:17:
f4:de:79:66:04:a6:bc:bb:03:8c:48:1f:fb:92:6f:
91:87:7f:a5:57:0a:ba:1d:fb:1e:2e:65:34:be:97:
19:64:53:f2:0e:5e:4a:a8:e4:c8:8c:b1:31:34:41:
77:ae:98:9e:ee:86:af:57:ac:13:4a:d1:a8:2e:b9:
ca:67:61:2d:fe:99:88:a1:70:39:c5:40:ad:26:92:
91:02:ae:78:c0:ec:7d:c2:f4:16:02:2c:37:52:9e:
58:fc:1c:11:e1:de:86:42:df:3d:a3:9e:b0:fc:65:
41:31:f6:7b:d8:2e:1a:2a:9e:32:82:13:38:d0:ea:
f3:ef:ad:60:83:38:24:16:d6:a1:0d:65:fa:f5:ab:
c5:2b:ba:f5:f3:35:14:6f:b7:3e:c8:db:47:13:28:
ba:c1:29:14:23:ec:85:3e:7e:ba:a8:ec:20:d0:6d:
3d:78:09:9a:b3:d3:03:93:3a:e5:70:2f:46:f1:4c:
56:91:56:2b:ad:90:0f:d4:90:9c:7f:63:ff:c1:ef:
aa:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:A6:92:E3:9D:BB:51:2E:35:A5:E7:A9:12:AB:F7:83:8E:2A:96:7C
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uqaS4527US41peepEqv3g44qlnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.83.0/24
Signature Algorithm: sha256WithRSAEncryption
42:35:75:bd:51:65:35:d4:07:cc:7b:1b:ff:34:36:fe:69:c9:
4b:21:5e:13:18:c4:15:ff:d4:ea:1f:98:f6:1e:73:e6:eb:88:
5e:2b:fc:2d:0e:79:25:6f:af:0e:78:78:1c:32:73:a3:93:86:
c4:47:ae:c0:fe:b1:14:8d:f2:76:d0:e4:70:3f:f0:6c:d6:e8:
d1:a3:c5:3e:02:8b:5c:f4:20:f1:c1:cc:d1:a8:fd:9b:45:df:
9a:8e:e6:96:90:26:45:6f:68:91:c1:ae:eb:06:be:0b:e1:1a:
95:84:e1:04:e2:7d:51:36:4a:a4:d8:15:09:25:60:9a:30:31:
a8:1c:a7:e7:0f:aa:e6:c4:78:24:18:bc:3e:ed:24:98:e2:3c:
8c:33:56:a0:4c:64:ca:d8:e4:1f:83:f7:a3:66:5e:ae:49:d9:
65:af:58:90:e2:c8:06:38:df:3c:84:43:8c:ae:ee:ab:25:36:
e7:5a:a1:dd:e3:09:0d:a0:b8:74:c5:06:20:c4:33:46:5d:76:
f8:9b:b3:da:37:5c:28:d4:33:1c:56:20:7d:36:ca:be:65:c4:
3f:c7:eb:4c:84:e0:93:ce:2d:6e:00:2c:d8:f9:fd:bf:11:57:
ad:87:41:a8:3d:fd:20:fb:d7:0b:af:df:fd:78:85:15:23:e2:
61:18:1e:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:29 2024 by rpki-client on console-ams.rpki-client.org