Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/0c9ddc-3191-44b3-88ba-82f7b99c5467/1/uBS8xwenG93Fz5eoKfKP_Dt4GxM.roa
File: uBS8xwenG93Fz5eoKfKP_Dt4GxM.roa (raw, json)
Hash identifier: mOTUmNfO71qfvZf6AzJUqCH67TNYiXo/25nQa3qLXfw=
Subject key identifier: B8:14:BC:C7:07:A7:1B:DD:C5:CF:97:A8:29:F2:8F:FC:3B:78:1B:13
Certificate issuer: /CN=d234798e0712f155292d3211f7c447223ccd49ac
Certificate serial: 01857082AA808F75002A49FA2022A285C176
Authority key identifier: D2:34:79:8E:07:12:F1:55:29:2D:32:11:F7:C4:47:22:3C:CD:49:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jR5jgcS8VUpLTIR98RHIjzNSaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/0c9ddc-3191-44b3-88ba-82f7b99c5467/1/uBS8xwenG93Fz5eoKfKP_Dt4GxM.roa
Signing time: Mon 02 Jan 2023 03:24:49 +0000
ROA not before: Mon 02 Jan 2023 03:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206430
IP address blocks: 185.186.190.0/24 maxlen: 24
185.186.189.0/24 maxlen: 24
185.186.191.0/24 maxlen: 24
185.186.188.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:aa:80:8f:75:00:2a:49:fa:20:22:a2:85:c1:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d234798e0712f155292d3211f7c447223ccd49ac
Validity
Not Before: Jan 2 03:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b814bcc707a71bddc5cf97a829f28ffc3b781b13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:8c:1e:62:42:f1:eb:5c:6c:c7:56:9d:df:70:
a7:8f:1a:b8:70:0b:e0:cd:ba:76:86:ce:85:ae:75:
25:5b:c1:f1:63:bc:60:19:ee:65:fb:00:28:77:11:
54:79:64:bb:a0:c8:7d:49:ba:3e:aa:b1:bc:4b:8a:
74:46:4f:c0:33:2c:c2:6f:0a:92:ce:3f:f9:89:8c:
57:25:8a:20:ec:07:d8:2b:6a:7b:ab:d1:60:c3:bd:
a4:7f:b8:a7:b1:6b:8e:40:bc:30:41:6c:ae:91:00:
d7:3b:c9:74:07:cf:49:71:7e:ec:c4:10:0a:eb:ce:
73:5b:ae:b3:fd:86:7c:ba:59:85:0c:07:d6:7d:fc:
9b:da:9c:01:51:fd:89:ab:27:fa:ba:b2:26:37:99:
3e:ab:d3:b0:9f:ee:d4:00:86:9a:05:d9:a1:e2:71:
07:46:7b:b9:ec:ca:15:5b:75:31:27:ca:6b:94:44:
e6:9e:45:92:7f:0d:1d:5e:11:4e:6d:e0:b6:8d:9e:
17:00:f9:91:6c:22:f5:4a:78:47:29:50:2b:ad:54:
24:08:ff:27:28:05:51:25:d6:35:61:66:07:2c:c4:
11:2c:89:6f:6c:39:a2:fb:f7:51:e5:19:37:e0:50:
86:5d:c4:d2:06:a2:c3:dc:63:13:1f:4c:ad:bb:5c:
3a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:14:BC:C7:07:A7:1B:DD:C5:CF:97:A8:29:F2:8F:FC:3B:78:1B:13
X509v3 Authority Key Identifier:
keyid:D2:34:79:8E:07:12:F1:55:29:2D:32:11:F7:C4:47:22:3C:CD:49:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jR5jgcS8VUpLTIR98RHIjzNSaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0c9ddc-3191-44b3-88ba-82f7b99c5467/1/uBS8xwenG93Fz5eoKfKP_Dt4GxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0c9ddc-3191-44b3-88ba-82f7b99c5467/1/0jR5jgcS8VUpLTIR98RHIjzNSaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.188.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:a4:c5:4a:5d:65:24:49:4f:f6:9f:d4:dd:ec:08:f1:19:15:
c7:b7:b3:a1:46:94:96:54:a4:0f:f0:b2:c9:09:88:80:a8:b6:
f4:85:bd:e7:1a:b7:b5:7d:42:a5:bd:cc:2d:72:c9:f3:1f:46:
58:f6:98:90:a0:15:b7:11:19:3d:59:e6:20:16:d7:21:11:27:
3b:cd:f1:4a:70:1b:ac:80:3f:36:7d:6c:36:23:ba:da:7c:df:
d2:b5:9e:97:5e:08:fe:e7:ec:6e:3f:4d:2a:aa:20:60:62:c3:
2c:7e:a6:c1:2a:78:4c:da:3f:3d:88:60:75:d6:7d:e9:da:45:
72:54:a4:a7:01:d3:66:c2:0a:6d:4d:46:28:09:6a:7c:08:71:
dc:51:0a:59:e9:79:8f:2b:f9:02:73:76:e5:f1:77:e5:32:94:
54:57:e6:74:04:e9:bb:59:5d:02:15:b6:61:5c:67:17:23:af:
59:47:16:6f:c7:02:28:75:31:73:ec:4f:8a:ac:88:81:2a:06:
d4:85:d9:1c:f5:80:58:34:5d:db:28:6a:3a:e3:2c:7f:2a:01:
e3:89:08:37:f6:29:e6:3f:fd:e4:2e:4c:b2:68:64:e8:8f:e5:
74:15:ba:eb:7e:bb:03:9d:c0:77:c7:24:e9:7a:e6:e8:6e:9f:
41:93:52:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:53 2024 by rpki-client on console-fra.rpki-client.org