Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/UBXXRVK7vZJWtOw_z3TdHAkVDsk.roa
File: UBXXRVK7vZJWtOw_z3TdHAkVDsk.roa (raw, json)
Hash identifier: oqHd3w/ZhxY8/LSNWJBt6lRAK8yQnpU4EJBP4M/DaaM=
Subject key identifier: 50:15:D7:45:52:BB:BD:92:56:B4:EC:3F:CF:74:DD:1C:09:15:0E:C9
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEECB38B187793BD9AEF8B697D1E185
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/UBXXRVK7vZJWtOw_z3TdHAkVDsk.roa
Signing time: Sun 01 Jan 2023 06:04:49 +0000
ROA not before: Sun 01 Jan 2023 06:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200504
IP address blocks: 193.192.169.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:cb:38:b1:87:79:3b:d9:ae:f8:b6:97:d1:e1:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5015d74552bbbd9256b4ec3fcf74dd1c09150ec9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:56:c8:0f:7a:5e:83:4d:43:e0:79:31:05:5b:
df:b5:7d:c1:60:37:b0:05:5f:f5:35:26:90:b8:7d:
e9:2d:b7:e9:0a:a6:a0:22:da:dd:cd:f1:9c:3d:02:
1b:c4:15:b7:b6:b7:b4:a4:e9:53:f9:33:ff:3e:21:
92:63:60:8e:ed:98:6d:95:87:a1:a5:a3:15:9f:72:
cb:42:51:60:d1:be:3b:96:10:98:59:15:35:57:14:
85:5b:0b:52:c2:f7:25:f5:2e:b9:e3:4e:56:7d:b7:
46:ae:19:62:1c:17:79:61:e1:fd:60:a2:46:c2:76:
c9:1b:88:01:c0:44:46:64:19:f3:ca:c2:31:31:43:
df:c5:8e:f0:f5:45:11:1e:25:93:b6:d8:a2:39:84:
e6:13:50:58:28:92:dd:31:6c:01:2f:f4:13:b3:2c:
9c:8d:0c:3c:72:d7:08:b8:57:f6:4b:84:00:ec:da:
f1:3d:c5:85:29:1c:00:97:e9:fc:8d:c1:c8:9f:e5:
65:74:c2:49:31:b9:d4:6a:9b:d0:e7:ad:65:8a:e7:
e4:46:c1:36:05:e2:5e:0f:40:8a:71:45:c1:7a:b9:
3d:59:17:25:a1:e2:79:c7:04:49:3b:f4:68:eb:9d:
7d:5d:7d:f2:91:a9:5a:ef:0c:1d:3d:b9:5b:e0:cf:
7a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:15:D7:45:52:BB:BD:92:56:B4:EC:3F:CF:74:DD:1C:09:15:0E:C9
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/UBXXRVK7vZJWtOw_z3TdHAkVDsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.192.169.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:87:66:4b:f7:c5:6d:b0:ee:f3:1d:ba:af:7e:c2:b2:ad:29:
be:52:2f:bb:a7:d5:53:41:9a:a9:26:d4:ea:90:98:1a:a8:f5:
64:2d:cf:5c:c7:81:ad:92:22:b0:e6:f3:9b:18:84:32:29:ca:
b3:89:46:13:5c:85:0f:4b:2c:27:96:3a:70:d1:a2:cb:e2:46:
82:ad:d1:db:58:48:df:e3:44:42:e2:3f:8c:b1:30:00:20:e1:
47:db:15:3b:12:ba:a1:95:db:00:a1:8f:cf:64:58:ee:ea:a1:
80:0a:e6:6d:c9:73:23:f7:7f:69:a3:43:72:f2:73:81:32:92:
fc:c5:83:86:d4:fb:4b:03:6c:1e:f6:c1:5f:9d:f0:04:be:70:
99:4d:7d:67:c6:4b:fb:e5:c9:ec:5a:23:30:da:c3:64:b5:29:
34:77:fc:41:50:22:53:60:ed:1c:ad:8c:cb:dd:7b:bb:52:df:
c5:39:2c:ec:44:89:79:a2:83:17:34:d4:0c:08:f4:d6:78:72:
80:1f:4b:2c:20:59:2d:01:11:62:d8:b6:a7:aa:5d:87:0c:95:
c5:7a:2b:0a:fd:2b:da:6a:e3:2b:8a:21:2a:86:e2:78:4b:35:
19:ac:e5:ee:14:b0:c8:37:85:67:e6:36:49:c3:c4:5f:2e:5d:
5b:dd:48:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org