Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/d08bbd-08b0-4a22-8b57-7e0171150cfb/1/UuDgVIhH1IK3LSsOCFtvL1YDcIQ.roa
File: UuDgVIhH1IK3LSsOCFtvL1YDcIQ.roa (raw, json)
Hash identifier: AmBH6U8AFzE9lpIZcX7j/DOG7V3t/TNzfp9UcIWwz08=
Subject key identifier: 52:E0:E0:54:88:47:D4:82:B7:2D:2B:0E:08:5B:6F:2F:56:03:70:84
Certificate issuer: /CN=9280aa6150904e20f884a463c9b66ae6d4161b9b
Certificate serial: 0188BF1AD6DD38F9B9597BA678DE81FF20B0
Authority key identifier: 92:80:AA:61:50:90:4E:20:F8:84:A4:63:C9:B6:6A:E6:D4:16:1B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koCqYVCQTiD4hKRjybZq5tQWG5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/d08bbd-08b0-4a22-8b57-7e0171150cfb/1/UuDgVIhH1IK3LSsOCFtvL1YDcIQ.roa
Signing time: Thu 15 Jun 2023 12:49:47 +0000
ROA not before: Thu 15 Jun 2023 12:49:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201520
IP address blocks: 185.95.0.0/24 maxlen: 24
185.95.3.0/24 maxlen: 24
185.95.2.0/24 maxlen: 24
185.15.198.0/24 maxlen: 24
185.15.197.0/24 maxlen: 24
185.15.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:bf:1a:d6:dd:38:f9:b9:59:7b:a6:78:de:81:ff:20:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9280aa6150904e20f884a463c9b66ae6d4161b9b
Validity
Not Before: Jun 15 12:49:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52e0e0548847d482b72d2b0e085b6f2f56037084
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:95:9e:5d:c5:fd:fa:61:e4:f7:49:e6:8d:66:
5a:d3:f1:14:ef:bf:b0:a1:d9:b8:4b:b0:b6:ff:7b:
64:f3:28:48:d1:f1:6e:be:e5:2a:40:ac:d7:b7:9b:
11:63:45:60:de:05:ae:2f:3d:6c:4a:84:1e:9d:d9:
d4:86:21:c3:e2:10:73:ee:ff:34:ac:09:75:3e:e6:
da:68:6a:93:81:c8:b4:a4:9b:a1:54:1a:3f:68:e2:
bb:6c:85:cc:ce:13:a8:89:cf:97:ec:3d:3e:6a:50:
cf:2a:92:07:34:20:84:8c:fe:f9:2f:d8:2b:79:53:
a0:fb:2f:18:e8:aa:78:e0:48:dd:46:6d:6b:de:83:
28:b7:7e:b7:97:87:f2:f6:8f:8c:7d:d6:d8:c3:39:
e9:56:a5:2b:51:1e:0a:1a:30:bc:50:ab:58:a9:90:
b5:e3:40:15:6e:c4:5a:8a:b8:fc:e5:ea:0e:4a:c2:
88:52:81:c8:25:db:08:79:dc:66:1a:44:c9:a4:b0:
85:a5:78:d0:8e:7e:c4:de:52:c5:58:f9:17:71:3f:
05:64:7b:a4:37:a3:73:8b:66:a1:6c:26:5d:a2:0a:
9b:69:55:b6:f1:a4:82:08:a7:22:b6:f3:70:9b:ce:
a0:9c:6e:34:32:21:59:0e:91:37:8b:eb:35:fd:13:
07:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:E0:E0:54:88:47:D4:82:B7:2D:2B:0E:08:5B:6F:2F:56:03:70:84
X509v3 Authority Key Identifier:
keyid:92:80:AA:61:50:90:4E:20:F8:84:A4:63:C9:B6:6A:E6:D4:16:1B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koCqYVCQTiD4hKRjybZq5tQWG5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/d08bbd-08b0-4a22-8b57-7e0171150cfb/1/UuDgVIhH1IK3LSsOCFtvL1YDcIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/d08bbd-08b0-4a22-8b57-7e0171150cfb/1/koCqYVCQTiD4hKRjybZq5tQWG5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.15.196.0-185.15.198.255
185.95.0.0/24
185.95.2.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:53:1f:47:10:44:61:94:c8:a5:0c:3d:5d:98:3d:a6:6e:cc:
95:c5:a1:50:03:72:1d:2d:e0:31:7d:2d:97:cb:14:41:8d:04:
16:22:fd:5a:8c:6c:79:dc:3b:b4:36:ea:9e:07:bf:9a:01:de:
11:ae:11:4f:f0:0b:75:88:3a:1f:dc:73:f6:56:43:c4:d6:87:
ff:10:06:b4:f2:1b:b7:7d:a2:fe:7c:5a:e2:a1:15:fe:38:d2:
f3:20:1a:9a:e5:7f:6b:23:34:37:29:6b:36:dc:c3:77:67:27:
82:88:7d:23:5a:94:fa:2e:77:ae:e1:8f:f3:be:e1:a0:c6:81:
f9:d5:9e:8e:98:4a:f4:62:c6:9a:12:ec:0f:dc:41:f0:a4:7a:
a2:b4:fa:6d:3f:b7:42:54:df:8c:13:23:fe:fd:42:a6:f8:f4:
f9:d9:e6:48:1e:50:95:74:ce:2b:40:18:a2:6a:80:6f:7a:fa:
65:c3:19:6b:59:fd:6b:10:fe:71:2b:e4:02:2e:da:bd:d8:26:
6b:df:27:07:81:30:a5:b2:4a:91:2d:3b:2b:01:47:b2:d9:13:
0c:c3:9d:6f:b2:52:a0:88:da:ed:83:74:13:c0:9e:4b:2e:cf:
f2:8f:f7:4d:26:b9:72:2c:2d:fb:24:f1:a4:38:eb:0f:f1:80:
07:c0:bb:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:10 2024 by rpki-client on console-ams.rpki-client.org