Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/uDI6JlovFnlXw1MD7DNhE3CUJJY.roa
File: uDI6JlovFnlXw1MD7DNhE3CUJJY.roa (raw, json)
Hash identifier: famsAhux4jSNQQfCI0II6UEtX1E4liJbCd2aG26rexI=
Subject key identifier: B8:32:3A:26:5A:2F:16:79:57:C3:53:03:EC:33:61:13:70:94:24:96
Certificate issuer: /CN=c818be19c10980f15bcdee076690078491a8aa21
Certificate serial: 01857D6EB01EA1AF631BC0A3D72C6FD33E5D
Authority key identifier: C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/uDI6JlovFnlXw1MD7DNhE3CUJJY.roa
Signing time: Wed 04 Jan 2023 15:38:03 +0000
ROA not before: Wed 04 Jan 2023 15:38:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49911
IP address blocks: 185.76.49.0/24 maxlen: 24
185.76.48.0/22 maxlen: 22
185.76.48.0/24 maxlen: 24
185.76.51.0/24 maxlen: 24
2a13:7200::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7d:6e:b0:1e:a1:af:63:1b:c0:a3:d7:2c:6f:d3:3e:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c818be19c10980f15bcdee076690078491a8aa21
Validity
Not Before: Jan 4 15:38:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8323a265a2f167957c35303ec33611370942496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:90:27:e8:82:d1:c3:4a:a7:c9:47:a9:f6:d3:
69:02:c3:24:76:a8:ca:a2:f2:00:88:0f:7e:d4:3d:
16:78:14:6b:70:78:4e:b6:e3:72:97:65:98:8f:2f:
c1:b0:9b:b7:43:27:5c:40:8b:0d:82:19:8a:d6:02:
cf:3b:ac:16:b5:fa:43:b3:b7:1e:6a:1c:9b:de:bd:
37:30:95:ee:6c:7f:05:e9:09:78:f8:c4:c0:07:fe:
5b:be:60:f2:42:a3:0d:05:39:d8:bd:27:1e:13:b3:
ed:f2:d6:8b:d5:15:8e:1f:c0:54:dd:b8:f3:9b:da:
6f:51:44:f3:c5:8a:20:1a:6c:13:2e:ff:7c:07:1a:
39:39:4d:8b:bf:63:f7:2e:bf:af:9d:f6:af:0f:0c:
18:a5:9e:4f:de:26:02:1f:e0:70:82:c8:58:3d:18:
32:c2:37:1b:3d:e9:ff:30:7a:0c:8c:cb:73:05:34:
d5:8b:cd:9a:d4:85:de:22:35:e1:43:a9:a8:4d:ec:
47:f4:27:f0:4c:5f:c6:c7:f7:93:e9:6d:49:e2:31:
5f:b2:88:4d:31:a7:16:b9:7e:db:2d:a6:74:62:f8:
fe:ff:ca:90:39:f9:39:00:5a:68:a1:08:9e:10:34:
07:9d:df:a5:09:59:02:14:bc:30:c2:8c:49:50:79:
28:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:32:3A:26:5A:2F:16:79:57:C3:53:03:EC:33:61:13:70:94:24:96
X509v3 Authority Key Identifier:
keyid:C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/uDI6JlovFnlXw1MD7DNhE3CUJJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.48.0/22
IPv6:
2a13:7200::/29
Signature Algorithm: sha256WithRSAEncryption
32:ef:47:33:dd:10:97:9b:a6:45:8a:41:e6:11:ff:13:34:6f:
a5:b8:4d:19:5d:9e:9a:bc:2b:7d:ba:85:cc:e3:11:2c:3a:bf:
48:1b:ff:1e:d4:9f:67:7d:e9:27:2c:0e:24:b6:c8:a9:01:b1:
50:ba:cb:1d:82:07:b1:be:6d:35:19:7c:41:85:60:94:9d:10:
eb:7e:f8:40:ac:81:6c:5e:a6:4c:0b:15:bc:e4:ea:0f:8f:fc:
7f:1d:24:89:83:20:c5:3d:e7:87:da:47:ee:40:5f:d4:81:9a:
7d:d3:18:c5:05:11:02:06:58:5e:3d:12:37:44:b5:50:79:90:
e6:95:6f:98:ad:fc:89:95:13:d2:cb:53:74:e4:8c:20:37:67:
84:b7:cf:54:22:7a:35:98:51:db:e7:36:42:0f:8e:09:b1:51:
25:53:de:c5:ec:d0:7f:78:ad:91:d5:84:63:8e:81:1d:6f:9f:
fe:ca:d2:fb:d0:73:31:3f:22:47:f1:aa:5c:90:9f:07:64:b3:
8d:cc:7a:83:8d:a6:21:9d:e3:18:21:0e:24:73:5c:6a:87:94:
df:33:ae:74:86:61:ee:09:7e:a8:8d:21:d7:96:a4:dd:8f:a3:
5e:90:49:3d:7d:b7:73:8d:83:3e:f0:87:1b:f1:9b:3b:cd:65:
a6:fd:4c:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:02 2024 by rpki-client on console-fra.rpki-client.org