Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/uwQka7aTo7M_l3FgtH8-Fpq28W0.roa
File: uwQka7aTo7M_l3FgtH8-Fpq28W0.roa (raw, json)
Hash identifier: GUatToNcbZxzP1Xm2eQhdGeFM/+SloqfHJjRCQ8ZI1Y=
Subject key identifier: BB:04:24:6B:B6:93:A3:B3:3F:97:71:60:B4:7F:3E:16:9A:B6:F1:6D
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 01856CB8506964BFEF8C205660559EC1101B
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/uwQka7aTo7M_l3FgtH8-Fpq28W0.roa
Signing time: Sun 01 Jan 2023 09:44:56 +0000
ROA not before: Sun 01 Jan 2023 09:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47150
IP address blocks: 90.84.12.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:50:69:64:bf:ef:8c:20:56:60:55:9e:c1:10:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 09:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb04246bb693a3b33f977160b47f3e169ab6f16d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:fe:64:3b:05:ee:35:cd:d8:dd:40:f9:c3:47:
12:96:4c:99:dc:32:15:5e:de:15:a2:61:f4:de:9b:
90:67:64:54:f6:84:2d:3e:6b:98:0a:29:f4:30:df:
1b:10:60:b7:33:71:ed:7e:45:ac:37:77:04:d8:25:
9a:7d:9f:53:d9:91:64:1d:b5:d2:47:42:c5:43:02:
b8:a1:cd:6d:9d:3c:d6:4b:57:2e:82:43:97:fb:73:
7c:bf:f9:6c:40:d9:8d:cf:2e:12:20:cd:24:44:99:
6f:ea:b0:10:07:21:dd:0a:b5:22:b2:a5:55:13:65:
29:82:97:da:d3:b8:79:fc:50:32:e2:64:03:4f:85:
3c:c9:dc:d2:1b:27:95:6b:60:84:87:5e:b7:d9:e3:
24:8a:f5:09:88:83:f9:0d:d7:81:c1:0d:29:dc:ce:
e3:6b:3d:6c:8e:0b:43:11:7a:56:8e:ce:bf:80:c7:
c8:e3:ae:11:e0:c3:20:a0:ef:09:5f:53:5e:54:d2:
48:d4:4e:9e:01:4d:70:f9:92:75:be:fc:1d:b9:9e:
79:6a:7f:8d:8a:bc:a3:96:52:2a:3a:88:6a:05:ad:
e2:8c:03:ef:f8:1e:de:36:9d:b9:58:d5:15:e3:75:
ac:e7:ee:11:d5:1f:f8:7f:03:a1:8f:f6:e5:27:f0:
b2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:04:24:6B:B6:93:A3:B3:3F:97:71:60:B4:7F:3E:16:9A:B6:F1:6D
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/uwQka7aTo7M_l3FgtH8-Fpq28W0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.84.12.0/23
Signature Algorithm: sha256WithRSAEncryption
67:fe:d9:12:04:96:82:34:d5:7e:e2:16:69:db:8a:7b:62:68:
f9:df:7d:c6:b2:13:94:56:41:cf:bf:89:55:0f:2c:75:11:18:
be:14:7f:4d:8d:11:6b:ee:21:b7:34:53:52:49:bf:4c:bf:9e:
d2:1c:43:f4:b2:c8:25:fc:9a:fe:3d:a3:5d:db:c8:f9:fb:0a:
a1:fd:e9:8d:cc:56:18:1c:dd:43:fa:8d:3f:dc:34:4e:90:82:
ef:a8:44:1e:27:9c:07:0b:d6:e4:ab:27:d0:88:b7:9b:c7:88:
f7:69:ce:11:af:e6:f3:29:7d:0f:b5:7b:6f:a2:75:af:ab:b4:
31:1e:e7:94:15:89:84:6d:16:56:4c:9b:4b:be:41:24:50:3b:
2d:17:6d:ff:71:9b:f8:a5:22:dd:9f:07:7d:0c:c2:ec:77:75:
fe:79:d8:a8:a7:95:ad:61:e5:ad:a8:05:a9:97:d2:b7:12:5d:
e5:04:15:38:3c:8f:39:4b:45:c1:b7:8a:d3:9e:07:d4:81:75:
51:a2:53:c5:7b:ef:14:62:26:b0:8f:e2:46:0d:90:0e:74:18:
81:fa:05:64:da:fc:a0:5a:d9:b8:98:13:07:d6:01:65:91:44:
28:66:c8:05:64:0f:1a:fa:71:05:98:b9:06:7a:61:20:35:71:
cd:e1:95:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:52 2024 by rpki-client on console-fra.rpki-client.org