Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/3e2077-bc10-4621-ab0b-dba4c9b8706b/1/ubXybr8qDV-zxP2lbyvk9i8lC1Y.roa
File: ubXybr8qDV-zxP2lbyvk9i8lC1Y.roa (raw, json)
Hash identifier: PFAFj8AWiInWpfgXmFY2p/bYz8+B4k374o887hKUdIQ=
Subject key identifier: B9:B5:F2:6E:BF:2A:0D:5F:B3:C4:FD:A5:6F:2B:E4:F6:2F:25:0B:56
Certificate issuer: /CN=89554780db25b243c0a2d361979b130a7f13c60d
Certificate serial: 01856E78D21D2A63E07FD842BEC52E8C0C28
Authority key identifier: 89:55:47:80:DB:25:B2:43:C0:A2:D3:61:97:9B:13:0A:7F:13:C6:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iVVHgNslskPAotNhl5sTCn8Txg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/3e2077-bc10-4621-ab0b-dba4c9b8706b/1/ubXybr8qDV-zxP2lbyvk9i8lC1Y.roa
Signing time: Sun 01 Jan 2023 17:54:49 +0000
ROA not before: Sun 01 Jan 2023 17:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28878
IP address blocks: 185.75.156.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:78:d2:1d:2a:63:e0:7f:d8:42:be:c5:2e:8c:0c:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89554780db25b243c0a2d361979b130a7f13c60d
Validity
Not Before: Jan 1 17:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b9b5f26ebf2a0d5fb3c4fda56f2be4f62f250b56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2a:5b:86:a6:5d:4b:fa:47:75:08:a3:61:37:
77:2b:92:54:dd:bb:52:1b:62:44:c6:2b:d7:63:1f:
62:ea:7f:8f:09:ba:9f:fd:f8:cf:f7:5b:fb:02:05:
bc:2e:6b:27:92:87:65:e6:16:03:4e:a4:4c:11:8e:
27:57:01:c6:55:64:47:43:37:92:87:44:46:98:db:
c9:bf:5b:b5:e5:94:90:ff:5d:10:0d:97:58:91:93:
4f:23:9e:70:d9:89:8d:c4:ce:6f:ca:60:62:f4:5d:
c8:df:24:18:4b:d7:4f:20:a1:7e:2b:2d:16:4d:e1:
1b:21:a1:f2:6c:1e:0b:d7:ec:34:dd:4c:da:7c:6a:
ed:6d:7f:ee:7c:9b:a9:42:20:3d:30:ed:eb:18:74:
14:87:1e:e5:6d:ce:23:9c:e4:f7:32:0d:ae:ce:3c:
bd:f5:c5:7c:aa:39:b9:ab:ab:be:d3:22:0e:fb:97:
de:2d:9d:8f:58:bc:44:89:b7:0c:fa:52:e6:0a:c1:
44:59:34:7e:0f:cf:9b:97:fe:b6:2f:87:6b:f4:3c:
ea:5e:6a:3f:45:93:f5:7c:e6:f0:89:61:8b:cf:e1:
8f:76:03:55:7d:45:e4:db:9f:1f:35:97:c4:5c:a6:
09:8e:c1:e8:4b:df:0d:72:a8:3e:74:16:94:30:5a:
da:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:B5:F2:6E:BF:2A:0D:5F:B3:C4:FD:A5:6F:2B:E4:F6:2F:25:0B:56
X509v3 Authority Key Identifier:
keyid:89:55:47:80:DB:25:B2:43:C0:A2:D3:61:97:9B:13:0A:7F:13:C6:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iVVHgNslskPAotNhl5sTCn8Txg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/3e2077-bc10-4621-ab0b-dba4c9b8706b/1/ubXybr8qDV-zxP2lbyvk9i8lC1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/3e2077-bc10-4621-ab0b-dba4c9b8706b/1/iVVHgNslskPAotNhl5sTCn8Txg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.156.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:34:92:40:ec:b8:1d:89:e5:2c:12:f5:ab:3e:96:23:ca:83:
33:52:31:ee:46:17:43:ba:2f:07:fb:32:a7:09:94:53:95:82:
61:71:4d:b5:15:fc:10:d9:89:dc:10:89:ce:da:2c:d5:74:9f:
61:ce:a5:28:d9:7e:54:1f:7f:6f:0f:2f:a9:ae:ff:88:fc:b8:
13:a5:75:5c:0c:47:87:0c:b7:27:43:8c:21:98:a6:97:e7:37:
9e:50:78:e4:d9:fa:f9:4a:f5:c2:f2:7a:68:3d:3f:da:75:67:
8e:83:88:c7:5e:c4:0c:a4:d9:58:34:19:aa:34:ab:ef:c9:17:
f5:f9:b1:70:34:c9:9c:62:e6:49:83:44:c0:14:ff:f8:12:9d:
d8:b9:1c:c3:9c:67:ab:3e:00:e5:71:2c:a5:ba:95:3d:0f:76:
d0:ce:5f:7e:ab:28:bf:56:00:7e:41:40:8d:f2:01:c9:1f:4c:
48:56:ed:29:fa:de:dd:9b:50:a2:82:4f:2c:62:4a:5c:ed:cf:
7b:74:3a:47:89:d4:c4:e3:a2:2d:5d:5b:41:57:4b:7d:01:65:
ca:2e:3a:f7:bf:31:43:66:a8:a7:ee:ac:d3:dd:53:e1:da:ee:
ea:75:ed:06:62:54:63:d2:6f:1c:35:26:4d:37:d9:2f:b7:ad:
8f:be:39:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:19 2024 by rpki-client on console-fra.rpki-client.org