Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/185362-c8d9-456f-9e2c-eb4a96c38c6f/1/ULrhpZNlBzeYsHBV7X4uxvZhVAY.roa
File: ULrhpZNlBzeYsHBV7X4uxvZhVAY.roa (raw, json)
Hash identifier: oGYvW84Tmd4eMEhLN24wNMrJAuRDC9qsL8Dnqwt8tGE=
Subject key identifier: 50:BA:E1:A5:93:65:07:37:98:B0:70:55:ED:7E:2E:C6:F6:61:54:06
Certificate issuer: /CN=edfe3f6f6d98714e01f08c73b2644368774e8660
Certificate serial: 0186CC43FD7782F129A2CCD3941880CD44B4
Authority key identifier: ED:FE:3F:6F:6D:98:71:4E:01:F0:8C:73:B2:64:43:68:77:4E:86:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7f4_b22YcU4B8IxzsmRDaHdOhmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/185362-c8d9-456f-9e2c-eb4a96c38c6f/1/ULrhpZNlBzeYsHBV7X4uxvZhVAY.roa
Signing time: Fri 10 Mar 2023 16:04:13 +0000
ROA not before: Fri 10 Mar 2023 16:04:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39521
IP address blocks: 194.50.144.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 17 Mar 2023 17:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cc:43:fd:77:82:f1:29:a2:cc:d3:94:18:80:cd:44:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edfe3f6f6d98714e01f08c73b2644368774e8660
Validity
Not Before: Mar 10 16:04:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50bae1a59365073798b07055ed7e2ec6f6615406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:69:fe:fc:36:9f:39:fc:bd:a4:15:67:00:9c:
f5:57:da:a5:82:6b:1b:cf:31:ee:5a:fe:7b:aa:9a:
cc:52:a7:23:51:4e:0f:47:a8:cf:37:a1:e5:67:af:
0a:5e:1b:83:ae:ca:df:fc:85:4f:31:b5:01:e4:99:
22:c8:df:b5:0c:13:12:35:94:1c:db:7e:7e:c9:31:
c2:ad:0e:f3:6d:f6:2c:a7:bd:82:2f:a0:4a:12:53:
75:d7:da:7c:81:8a:2e:24:d2:79:7f:8a:8e:94:d7:
79:9a:40:19:25:1b:a4:ff:9b:12:7a:e3:dc:eb:ab:
ec:ec:42:1c:67:bb:32:c2:28:93:b7:77:00:ed:1e:
e9:30:c2:b7:91:59:fb:ad:89:ec:b8:25:12:11:4c:
39:b1:87:b0:0a:1b:2e:ec:58:64:d5:c4:4b:91:77:
4d:dc:07:97:ba:f0:79:62:8e:bc:3d:19:35:e1:9a:
c2:21:e3:ee:0e:3b:38:e3:bb:97:4e:c1:5b:3c:66:
3c:15:1f:9e:46:66:9b:db:76:81:bc:82:ef:84:9c:
65:e7:55:cb:af:9d:92:df:ff:43:ee:3c:fc:3a:31:
cc:73:14:0d:2b:ce:2f:3d:14:60:8d:e8:36:88:78:
43:08:ce:78:51:ed:1e:19:db:30:5c:1d:1a:e8:d5:
84:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:BA:E1:A5:93:65:07:37:98:B0:70:55:ED:7E:2E:C6:F6:61:54:06
X509v3 Authority Key Identifier:
keyid:ED:FE:3F:6F:6D:98:71:4E:01:F0:8C:73:B2:64:43:68:77:4E:86:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f4_b22YcU4B8IxzsmRDaHdOhmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/185362-c8d9-456f-9e2c-eb4a96c38c6f/1/ULrhpZNlBzeYsHBV7X4uxvZhVAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/185362-c8d9-456f-9e2c-eb4a96c38c6f/1/7f4_b22YcU4B8IxzsmRDaHdOhmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.144.0/22
Signature Algorithm: sha256WithRSAEncryption
98:2e:11:9f:d7:b7:77:a6:a4:2a:78:21:be:de:89:dc:58:0b:
4c:97:fa:aa:5c:e6:78:50:c5:08:6a:07:a8:97:a9:55:85:f4:
58:e9:a9:87:61:18:b5:e9:0f:3a:aa:b9:43:fe:f5:9f:70:03:
64:4e:6c:f9:a0:15:ed:e6:0e:20:b5:ea:b8:40:19:3c:a1:11:
3c:a4:5b:75:db:36:d9:ca:09:a7:c3:5b:52:8b:c2:4e:00:01:
ee:97:79:5b:b7:5c:81:91:b7:4d:4d:0c:7b:11:26:ce:fb:76:
22:73:17:58:89:e1:e2:c4:2f:69:e4:81:39:3d:f6:4e:bc:25:
3d:b9:57:49:6a:f0:1d:49:6d:31:ba:4a:0e:2b:21:80:81:a7:
d5:a0:ee:9a:03:3e:2a:e2:20:61:15:02:43:40:e0:73:04:eb:
91:26:fb:5c:d8:2e:40:4e:e7:70:a5:59:78:de:28:fe:18:09:
ac:b7:d5:9b:66:ee:4a:46:72:d7:74:87:27:b2:97:76:48:0d:
ee:e6:c9:4e:70:57:ab:ec:83:9c:fb:32:1c:27:15:39:0e:f7:
12:ca:fa:cf:4d:ab:be:58:d0:f5:ec:47:47:62:c5:2a:ec:2c:
39:0c:0d:86:75:c9:df:8d:80:64:38:57:76:28:13:d6:fe:10:
70:c6:db:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:57 2024 by rpki-client on console-fra.rpki-client.org