Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/Um01hS272OC6eTzKV9xQebfYXlY.roa
File: Um01hS272OC6eTzKV9xQebfYXlY.roa (raw, json)
Hash identifier: c52Pkyf49om2C1LXFyQ9I6LAqN12WR1Njd2uyqpdrPo=
Subject key identifier: 52:6D:35:85:2D:BB:D8:E0:BA:79:3C:CA:57:DC:50:79:B7:D8:5E:56
Certificate issuer: /CN=4fb2bb7bad50f1921810a028e78edd65f81f6a7d
Certificate serial: 0185720C7942E415AEAB69FA35A42BF71536
Authority key identifier: 4F:B2:BB:7B:AD:50:F1:92:18:10:A0:28:E7:8E:DD:65:F8:1F:6A:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T7K7e61Q8ZIYEKAo547dZfgfan0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/Um01hS272OC6eTzKV9xQebfYXlY.roa
Signing time: Mon 02 Jan 2023 10:34:58 +0000
ROA not before: Mon 02 Jan 2023 10:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 10122
IP address blocks: 185.22.40.0/22 maxlen: 22
5.150.156.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:79:42:e4:15:ae:ab:69:fa:35:a4:2b:f7:15:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fb2bb7bad50f1921810a028e78edd65f81f6a7d
Validity
Not Before: Jan 2 10:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=526d35852dbbd8e0ba793cca57dc5079b7d85e56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:bc:35:08:30:f7:d4:6a:49:26:6c:19:d9:bf:
0b:d2:0e:da:ce:95:9f:a3:7d:bb:63:b8:a0:df:44:
6b:6d:ce:7b:bb:9d:f4:71:50:4d:cd:90:35:d8:98:
44:d0:2d:9c:4c:5a:42:01:6d:72:91:83:62:6d:c1:
19:91:79:2f:59:38:a4:97:55:0b:47:7a:77:2b:45:
73:25:66:18:6b:f2:41:5b:bf:be:30:63:3d:21:0b:
23:a2:cf:2a:20:4a:8a:96:82:10:51:3d:b1:22:89:
00:c2:8a:9f:0f:f5:72:4e:36:33:88:ba:69:bc:c8:
6d:05:5f:97:2e:d5:2d:c9:f1:2b:80:af:50:dd:a6:
92:81:b5:5f:e6:bd:fc:7b:2b:a6:c2:12:52:74:76:
2d:f9:ab:c9:12:a8:5e:bf:22:79:0b:f9:e3:a3:ad:
39:ad:91:0d:94:25:1a:b8:fd:03:d2:6a:16:4f:f9:
ab:0f:04:7e:05:63:f1:06:50:04:8d:ca:f5:4e:80:
52:9e:26:4c:b2:c6:ef:f8:ba:f0:96:b9:c1:9d:74:
21:55:a9:91:32:ed:44:38:f5:1a:c0:7d:d3:2e:e9:
2d:65:d4:33:c9:ea:01:9a:b3:4d:64:a5:64:f0:4e:
46:cb:75:3c:fe:24:fe:58:0f:7d:69:b9:7d:ff:1c:
2a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:6D:35:85:2D:BB:D8:E0:BA:79:3C:CA:57:DC:50:79:B7:D8:5E:56
X509v3 Authority Key Identifier:
keyid:4F:B2:BB:7B:AD:50:F1:92:18:10:A0:28:E7:8E:DD:65:F8:1F:6A:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T7K7e61Q8ZIYEKAo547dZfgfan0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/Um01hS272OC6eTzKV9xQebfYXlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/T7K7e61Q8ZIYEKAo547dZfgfan0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.150.156.0/22
185.22.40.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:df:c9:f5:08:6a:31:2f:d5:f3:84:29:c2:13:6f:eb:0e:21:
ae:54:55:70:65:26:73:48:51:41:e2:85:43:e7:77:cb:da:e4:
a4:da:72:49:9a:a4:18:42:53:82:3b:81:6d:a7:22:9c:16:2b:
cc:f1:e6:58:ae:7e:a6:3d:99:70:ce:8b:e0:82:b3:0c:28:ce:
a6:a2:b0:ee:99:e8:33:33:d2:6f:be:da:3a:f4:84:21:29:ae:
a6:36:83:76:80:ce:c8:5a:1a:0e:da:f5:8f:03:36:a9:13:70:
d8:21:d6:34:05:9d:6c:6f:bb:25:b8:83:e3:da:d1:e3:8f:00:
1a:a2:3a:06:f5:01:a6:84:ea:ea:29:24:6a:21:e4:2d:5a:6c:
c8:c2:d9:d7:34:17:30:de:c8:b9:5d:96:17:da:d1:5e:56:e6:
00:bb:ef:9a:09:a8:0f:59:34:97:75:00:f2:ac:ba:db:9f:5f:
88:a0:e7:5e:95:a4:e6:54:9e:f4:9f:fe:17:c1:0a:ef:6d:c5:
b0:c5:1f:09:18:5f:bd:2e:9a:f8:76:24:90:80:45:77:43:f8:
26:b7:dc:30:40:ed:30:b8:69:00:53:dc:36:3b:8d:24:af:f9:
08:67:e4:71:3c:df:56:3b:8b:8b:63:d1:52:82:c7:e6:51:18:
49:94:68:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:59 2024 by rpki-client on console-fra.rpki-client.org