Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/744eeb-e064-4fef-9e90-5686d4313595/1/UOPrlXXZ_GwHeFx8v8VbRLmXgHQ.roa
File: UOPrlXXZ_GwHeFx8v8VbRLmXgHQ.roa (raw, json)
Hash identifier: unT+svgpmkVxCSwRY2TbooASJoDWUP/Btahh1DoQCWQ=
Subject key identifier: 50:E3:EB:95:75:D9:FC:6C:07:78:5C:7C:BF:C5:5B:44:B9:97:80:74
Certificate issuer: /CN=69e01cc8f8e6e5ec750960d9a704510dff9572f7
Certificate serial: 0185708C9F6FED063072B1EC80047AC1E4F2
Authority key identifier: 69:E0:1C:C8:F8:E6:E5:EC:75:09:60:D9:A7:04:51:0D:FF:95:72:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aeAcyPjm5ex1CWDZpwRRDf-Vcvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/744eeb-e064-4fef-9e90-5686d4313595/1/UOPrlXXZ_GwHeFx8v8VbRLmXgHQ.roa
Signing time: Mon 02 Jan 2023 03:35:42 +0000
ROA not before: Mon 02 Jan 2023 03:35:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207231
IP address blocks: 185.25.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Jan 2023 09:26:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:9f:6f:ed:06:30:72:b1:ec:80:04:7a:c1:e4:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69e01cc8f8e6e5ec750960d9a704510dff9572f7
Validity
Not Before: Jan 2 03:35:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50e3eb9575d9fc6c07785c7cbfc55b44b9978074
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ce:79:72:c0:bf:8b:0e:f2:9e:ea:40:c7:17:
4f:85:21:49:35:dc:d1:81:5d:f7:92:d3:df:70:b9:
f5:ac:06:38:25:ab:5a:f7:e5:17:b1:0c:da:dd:8a:
e5:3c:56:cf:c3:46:ac:46:19:e8:5c:d8:c3:6a:31:
b7:03:da:d2:69:f2:9b:b3:c9:b2:3f:b1:ab:c4:fb:
c5:67:3e:f0:1e:37:b9:31:ac:2e:a0:b0:22:74:f8:
4c:a7:a0:c0:c7:bc:98:5e:6b:41:fc:39:e3:77:80:
2a:89:62:0f:3a:34:c4:85:a0:67:54:61:cc:05:76:
0d:8a:05:65:c9:98:e1:89:14:a0:93:a7:1a:d7:7f:
aa:07:9e:d8:55:b7:03:67:8b:2f:79:3d:80:e0:25:
33:d1:f0:e4:07:b7:4d:b2:4e:0c:0f:4f:a1:2b:6c:
8b:7e:87:57:60:f5:56:ce:bf:ed:cc:7c:ef:e0:72:
f1:a7:c1:5f:14:65:46:3f:e0:71:52:e9:0a:d0:e7:
c4:b9:1c:4b:b2:f8:84:9a:2e:52:41:73:12:1e:3f:
db:15:66:4c:22:7e:12:aa:48:05:1f:ec:f6:27:db:
43:e8:70:37:cd:88:7e:dd:69:6a:27:c9:16:4d:fb:
94:18:60:6c:54:5f:f4:c0:57:36:e6:23:58:82:ca:
ba:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E3:EB:95:75:D9:FC:6C:07:78:5C:7C:BF:C5:5B:44:B9:97:80:74
X509v3 Authority Key Identifier:
keyid:69:E0:1C:C8:F8:E6:E5:EC:75:09:60:D9:A7:04:51:0D:FF:95:72:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aeAcyPjm5ex1CWDZpwRRDf-Vcvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/744eeb-e064-4fef-9e90-5686d4313595/1/UOPrlXXZ_GwHeFx8v8VbRLmXgHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/744eeb-e064-4fef-9e90-5686d4313595/1/aeAcyPjm5ex1CWDZpwRRDf-Vcvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.25.95.0/24
Signature Algorithm: sha256WithRSAEncryption
42:21:23:c4:0f:c6:31:2d:a8:39:36:f2:21:71:a8:ae:3c:54:
96:2a:53:db:fb:3d:7b:47:39:a5:f0:2e:31:ec:6f:4e:77:1b:
65:6a:da:7d:63:d7:58:02:96:b8:53:83:c5:44:82:59:ec:8e:
d0:34:dd:a5:ee:a1:c8:bd:71:23:04:13:80:cd:0f:bc:e9:c1:
7b:99:17:8f:f4:c2:e5:fd:17:48:83:fd:23:24:6e:a6:d2:77:
2d:9e:17:c0:49:fe:25:75:d1:2a:11:2c:c7:5d:4a:af:dd:2f:
a7:bb:6b:5f:d7:ad:ef:26:a6:9a:a9:3b:74:49:be:26:d4:81:
49:6c:fd:b3:c1:0e:ae:f6:46:cf:b8:ac:46:78:68:67:4e:ac:
35:af:9f:ae:e4:13:de:2f:f0:ee:b5:05:5c:2d:52:c0:28:e8:
67:4d:c7:79:df:24:e3:d3:47:08:53:02:e6:3e:6d:9b:22:87:
8c:d0:17:8a:6f:20:08:9c:11:42:4b:84:59:60:0c:d0:b5:e0:
67:b1:53:cc:41:47:03:a5:fd:c9:db:07:cc:0c:17:f8:e5:58:
73:ba:c0:28:a8:03:1a:69:2e:89:58:35:22:41:9a:7e:e1:1a:
d1:e1:cc:1c:e2:0d:2f:2f:07:02:17:88:c1:e5:20:92:21:15:
b7:39:f2:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:15 2024 by rpki-client on console-ams.rpki-client.org