Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/U4A17uN5P3R4vlTi6d5Hss2TPac.roa
File: U4A17uN5P3R4vlTi6d5Hss2TPac.roa (raw, json)
Hash identifier: jcuUfZCUVvnkQmqVcPb4bCZk9zowsmQayLgccJZoFXY=
Subject key identifier: 53:80:35:EE:E3:79:3F:74:78:BE:54:E2:E9:DE:47:B2:CD:93:3D:A7
Certificate issuer: /CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Certificate serial: 0187B7DACC9FCC6974A4F21709824F85A371
Authority key identifier: 4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/U4A17uN5P3R4vlTi6d5Hss2TPac.roa
Signing time: Tue 25 Apr 2023 09:59:42 +0000
ROA not before: Tue 25 Apr 2023 09:59:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 26114
IP address blocks: 212.119.8.0/24 maxlen: 24
213.198.53.0/24 maxlen: 24
83.231.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b7:da:cc:9f:cc:69:74:a4:f2:17:09:82:4f:85:a3:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Validity
Not Before: Apr 25 09:59:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=538035eee3793f7478be54e2e9de47b2cd933da7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:7d:f2:8c:ed:9b:bc:e2:56:50:a9:64:4e:11:
fb:de:b9:0e:82:c1:be:2e:6f:14:cc:14:6e:1c:73:
25:7b:3c:48:2e:c2:46:06:54:44:ed:34:77:92:f4:
a6:5b:81:44:89:9d:02:05:bb:af:88:73:63:6d:f4:
e5:58:f5:67:40:1c:df:2e:96:81:b8:37:31:b8:e5:
1b:14:eb:3d:2a:0b:04:88:ec:96:54:b4:c8:c5:72:
0b:60:0e:aa:ed:a1:ad:6c:0c:f5:8e:2d:cc:b1:a5:
27:14:85:f6:22:07:80:be:57:b2:b7:3a:64:95:49:
0c:e3:bb:c7:35:16:35:d5:df:9a:3a:53:30:b3:78:
32:cc:d0:5f:57:4f:c5:58:c9:b2:c8:9f:c0:de:a3:
48:7a:41:36:c3:39:a4:57:91:51:16:60:90:0b:fa:
34:41:b1:14:b4:8b:34:44:37:29:d2:5d:9b:f1:a2:
7a:d3:76:e3:5f:26:32:e5:8f:43:fb:c0:a8:a3:b5:
8f:76:c6:aa:b3:a3:25:da:ce:43:a6:74:be:4d:a3:
c6:8a:cc:1b:18:e5:80:d2:0f:26:84:33:8f:88:21:
77:ce:4a:5e:92:bb:c4:5e:76:fd:c9:3c:e4:8d:23:
8c:06:55:4b:8c:ae:67:14:5a:3a:99:78:02:c7:68:
09:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:80:35:EE:E3:79:3F:74:78:BE:54:E2:E9:DE:47:B2:CD:93:3D:A7
X509v3 Authority Key Identifier:
keyid:4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/U4A17uN5P3R4vlTi6d5Hss2TPac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.231.153.0/24
212.119.8.0/24
213.198.53.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:39:cc:67:35:6c:9d:93:d5:01:e0:8f:ba:55:9f:26:a1:1f:
47:7c:c6:42:fc:11:d4:35:bc:42:b3:76:a3:2b:14:90:61:3f:
0f:68:5d:fb:d6:87:a8:b4:18:69:7c:7d:12:4f:21:56:f0:55:
fd:dc:26:07:2b:7c:34:48:8c:15:34:af:b5:81:c0:f0:03:de:
36:be:24:9f:92:58:93:fb:c1:48:1e:69:c9:ad:7d:97:d4:cd:
19:0b:01:50:36:ab:ab:d7:56:6a:e5:83:68:18:94:64:0b:75:
ba:23:07:60:c6:41:e1:7b:66:93:5d:9b:dd:f1:97:51:af:6f:
6c:0f:69:93:7e:ef:71:b1:dd:2f:77:51:06:5e:8d:d6:da:26:
75:eb:9e:7b:2d:b9:46:db:30:08:c5:9a:d1:5f:fb:5c:d1:13:
54:60:a3:9c:0a:b9:7b:3b:30:07:7d:1b:4e:ca:11:01:6a:12:
30:b9:0a:22:5d:36:bb:f8:a7:7f:46:3d:c9:0a:c1:fe:3f:06:
2e:e7:83:36:c8:21:de:b0:05:8b:05:ed:da:03:ad:39:50:3c:
70:ee:ed:6d:94:89:2d:45:b3:6e:5e:f5:c1:c0:47:cb:58:ba:
c3:a2:37:8a:c8:81:ef:3b:cb:79:fb:01:bc:95:65:98:83:46:
b6:42:6e:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:40 2024 by rpki-client on console-fra.rpki-client.org