Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4690c0-0b91-4322-94b9-706782cfa03b/1/um-X7y_T3vv8m87cGafxFtkm_tg.roa
File: um-X7y_T3vv8m87cGafxFtkm_tg.roa (raw, json)
Hash identifier: iuhXELPNROyK1C2ZDHEMwsL2Cy+vAQnCzyuKllz3L/0=
Subject key identifier: BA:6F:97:EF:2F:D3:DE:FB:FC:9B:CE:DC:19:A7:F1:16:D9:26:FE:D8
Certificate issuer: /CN=2330e26060913c758137488bfd7ab1bfe9e10ae2
Certificate serial: 018D3FAD31F8FD60D88BEFBEB91E9E007D9B
Authority key identifier: 23:30:E2:60:60:91:3C:75:81:37:48:8B:FD:7A:B1:BF:E9:E1:0A:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IzDiYGCRPHWBN0iL_Xqxv-nhCuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4690c0-0b91-4322-94b9-706782cfa03b/1/um-X7y_T3vv8m87cGafxFtkm_tg.roa
Signing time: Thu 25 Jan 2024 08:12:11 +0000
ROA not before: Thu 25 Jan 2024 08:12:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15404
IP address blocks: 185.203.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 02 Mar 2024 19:54:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:3f:ad:31:f8:fd:60:d8:8b:ef:be:b9:1e:9e:00:7d:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2330e26060913c758137488bfd7ab1bfe9e10ae2
Validity
Not Before: Jan 25 08:12:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba6f97ef2fd3defbfc9bcedc19a7f116d926fed8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:34:df:9e:ed:65:a1:32:7f:bf:67:f0:10:76:
a8:71:ea:65:e7:be:55:a0:32:5e:a3:28:38:7f:08:
ae:78:3f:d2:01:ba:e9:bc:f1:c0:f2:6c:48:fa:10:
95:67:52:d0:08:4d:9a:eb:88:17:af:0e:d6:70:ca:
ff:79:0b:35:d7:75:24:2f:c4:f2:1e:05:0f:0a:1a:
9f:ba:6e:8c:2d:51:3c:e9:55:40:ef:fa:18:d6:48:
71:16:30:4c:8f:04:71:58:b8:f2:5d:3d:0c:60:78:
f4:1e:12:dc:55:d3:58:e8:b8:3c:48:0c:0a:61:81:
f1:29:4a:9b:92:b5:4c:47:d7:8b:f6:33:1a:78:d4:
3a:32:b1:c5:27:e8:c4:0f:a0:46:dc:17:c2:67:42:
b3:41:16:b9:7c:49:76:e7:ca:a4:57:5d:56:36:17:
e7:30:b1:f8:63:22:82:30:c5:42:e6:e0:78:1c:10:
d9:41:1a:d1:db:f4:41:b8:75:5b:07:9a:59:69:c1:
eb:75:b7:32:a9:08:9d:38:f8:b2:f7:9c:76:ff:f2:
bc:a7:67:69:67:26:35:02:83:18:55:36:7c:39:f6:
b2:c1:aa:fd:5a:c3:19:f6:74:d4:f3:c8:f0:fe:86:
6b:3e:f2:8f:52:3c:dc:8d:00:54:d9:ab:31:14:bf:
1b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:6F:97:EF:2F:D3:DE:FB:FC:9B:CE:DC:19:A7:F1:16:D9:26:FE:D8
X509v3 Authority Key Identifier:
keyid:23:30:E2:60:60:91:3C:75:81:37:48:8B:FD:7A:B1:BF:E9:E1:0A:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IzDiYGCRPHWBN0iL_Xqxv-nhCuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4690c0-0b91-4322-94b9-706782cfa03b/1/um-X7y_T3vv8m87cGafxFtkm_tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4690c0-0b91-4322-94b9-706782cfa03b/1/IzDiYGCRPHWBN0iL_Xqxv-nhCuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.235.0/24
Signature Algorithm: sha256WithRSAEncryption
90:8c:05:6a:8b:ae:be:f7:61:29:2b:5e:9a:6d:b3:bf:d0:39:
c8:69:ad:80:6e:75:b2:d8:2c:80:e5:c7:68:ed:02:63:81:87:
7d:99:c5:6a:a6:77:04:ac:dd:85:8f:a2:90:34:2a:9c:24:ae:
6e:c0:db:18:f5:40:61:5c:24:35:43:8d:d6:85:26:11:8a:28:
2e:5e:cc:01:65:eb:74:e8:db:34:4c:f9:f3:18:a9:dd:7d:d2:
4a:18:8b:eb:1f:9f:15:2f:2c:8a:ce:40:32:2e:ba:e6:b0:55:
61:6f:0b:27:64:bd:61:21:d6:bb:97:9f:ba:3c:55:fe:ff:e7:
2e:43:0f:e7:bd:af:f7:ea:57:ef:7b:69:16:63:1f:12:14:a2:
c2:db:5e:d8:02:3f:f3:68:e5:2b:6f:83:ff:73:b5:e9:1f:74:
d7:8c:c0:83:f4:10:44:9c:c4:eb:94:b9:15:32:21:1f:93:f8:
45:f8:9f:d7:ba:85:dd:d1:8c:cd:02:4f:ec:bf:00:e2:ef:24:
28:85:2b:a2:65:b2:60:95:90:34:d2:16:46:de:fb:7e:29:93:
26:83:e6:ea:e0:22:da:99:46:62:cf:74:43:d2:5d:26:77:2c:
67:86:16:a0:4d:14:39:06:7f:5d:15:1c:23:4c:da:e7:37:31:
f4:51:a1:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:33 2024 by rpki-client on console-fra.rpki-client.org