Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/5ef060-f473-4043-b8a2-e1b7c7649fa3/1/u1vO7IqWAntJ90fzzxDOsDOrKug.roa
File: u1vO7IqWAntJ90fzzxDOsDOrKug.roa (raw, json)
Hash identifier: JS4hq/lsrRNI4duLtRbx3wf8DctPNTI9O8bZO08s4LU=
Subject key identifier: BB:5B:CE:EC:8A:96:02:7B:49:F7:47:F3:CF:10:CE:B0:33:AB:2A:E8
Certificate issuer: /CN=87c37d035d95fefba1d47f98b9ff4973f17df6cd
Certificate serial: 01857315F41327EF43EFCE441C792F14B2E9
Authority key identifier: 87:C3:7D:03:5D:95:FE:FB:A1:D4:7F:98:B9:FF:49:73:F1:7D:F6:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h8N9A12V_vuh1H-Yuf9Jc_F99s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/5ef060-f473-4043-b8a2-e1b7c7649fa3/1/u1vO7IqWAntJ90fzzxDOsDOrKug.roa
Signing time: Mon 02 Jan 2023 15:24:56 +0000
ROA not before: Mon 02 Jan 2023 15:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42346
IP address blocks: 185.59.52.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:f4:13:27:ef:43:ef:ce:44:1c:79:2f:14:b2:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87c37d035d95fefba1d47f98b9ff4973f17df6cd
Validity
Not Before: Jan 2 15:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb5bceec8a96027b49f747f3cf10ceb033ab2ae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:22:71:6a:32:bf:9c:36:4a:44:71:d6:c6:9b:
84:dd:6c:43:40:32:1a:3e:99:54:f6:c1:05:24:8e:
fb:fb:8b:42:1a:60:e8:56:58:f2:af:71:c9:a6:d3:
52:92:c8:ff:37:7c:da:d5:bb:04:60:82:37:24:bf:
55:bf:b7:d3:3f:44:55:07:25:24:73:66:86:a8:fa:
79:f1:14:a3:f5:39:e7:73:67:c5:3a:cd:59:ee:cd:
20:8b:40:42:4d:10:ce:44:2e:fa:c9:2a:49:ca:13:
83:c3:bf:07:f9:a4:28:67:23:5c:8b:18:40:87:60:
55:7c:cc:db:08:8d:d4:44:e9:45:e1:64:20:2e:b2:
b5:f4:4f:ff:eb:a2:32:4c:e0:37:27:62:76:5e:a8:
16:96:f4:b4:dd:7e:29:c4:54:28:2a:3b:f2:f4:03:
20:39:24:44:64:72:a0:36:c6:6f:74:ef:4f:cc:f2:
86:5d:7f:7f:83:0d:43:a4:cf:07:2e:ed:2d:ce:9b:
2e:bf:71:4e:fc:1e:29:2a:7c:f2:1f:bc:2a:81:ae:
2e:fb:f6:30:4d:c1:13:c5:53:c7:f7:b2:ac:37:30:
0e:4f:fa:b0:28:02:65:31:e8:3a:a3:30:64:d2:13:
9d:5f:4e:d0:f9:c9:79:11:e3:91:c7:a1:42:03:aa:
8e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:5B:CE:EC:8A:96:02:7B:49:F7:47:F3:CF:10:CE:B0:33:AB:2A:E8
X509v3 Authority Key Identifier:
keyid:87:C3:7D:03:5D:95:FE:FB:A1:D4:7F:98:B9:FF:49:73:F1:7D:F6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h8N9A12V_vuh1H-Yuf9Jc_F99s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ef060-f473-4043-b8a2-e1b7c7649fa3/1/u1vO7IqWAntJ90fzzxDOsDOrKug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ef060-f473-4043-b8a2-e1b7c7649fa3/1/h8N9A12V_vuh1H-Yuf9Jc_F99s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.59.52.0/22
Signature Algorithm: sha256WithRSAEncryption
54:6e:35:b9:fc:9f:14:87:57:22:2a:f4:6b:94:eb:8a:9c:04:
07:0c:e2:48:34:b1:bb:f9:e2:8d:9a:30:55:c2:fb:c6:75:9f:
e9:ac:5e:d8:1e:bf:b8:0d:44:51:60:a0:42:6b:f9:8b:e2:a7:
5b:92:49:d2:bf:03:63:08:1d:90:39:b0:ee:5c:4d:4e:d3:88:
9a:3c:16:4c:5f:50:03:8e:ff:e4:5d:06:ea:0a:a7:c7:40:e8:
ba:61:50:63:91:55:3e:7d:c6:7f:83:0a:24:c8:b4:ad:21:ea:
11:a9:18:e5:51:0a:ab:e3:a3:4e:c5:bc:d2:cc:a8:52:c1:80:
95:ed:79:33:82:8b:c6:5b:dd:72:41:0e:03:33:fa:15:6b:36:
a8:35:c8:e7:6a:c8:29:e5:8d:f2:ec:b8:c9:6b:4c:1f:46:32:
a4:17:eb:25:b9:87:e2:37:70:d4:de:d2:f2:a9:a7:33:ba:f8:
ff:a9:b0:8f:b1:cc:89:48:4b:31:7f:aa:8f:69:9a:d3:9c:59:
ae:8f:b2:e9:9f:ae:42:2d:30:77:01:5c:fd:f3:53:0d:a2:c2:
8c:21:3e:b8:ab:86:42:95:ae:6c:1e:f0:fb:a3:eb:1e:fb:af:
1c:6b:64:28:01:2b:6d:61:ab:78:6c:af:01:d4:94:ad:19:57:
a8:f9:40:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:35:55 2024 by rpki-client on console-ams.rpki-client.org