Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/U5KHyB7TMIWB99hIYdIb9dHcj8U.roa
File: U5KHyB7TMIWB99hIYdIb9dHcj8U.roa (raw, json)
Hash identifier: ltufiXXlvXG0QVhJPClzZS1GHn/p23bUpedyLHr4tTE=
Subject key identifier: 53:92:87:C8:1E:D3:30:85:81:F7:D8:48:61:D2:1B:F5:D1:DC:8F:C5
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01856FD543A4EECB02C8EB12DEA53962D54F
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/U5KHyB7TMIWB99hIYdIb9dHcj8U.roa
Signing time: Mon 02 Jan 2023 00:15:25 +0000
ROA not before: Mon 02 Jan 2023 00:15:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62034
IP address blocks: 128.0.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:43:a4:ee:cb:02:c8:eb:12:de:a5:39:62:d5:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:15:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=539287c81ed3308581f7d84861d21bf5d1dc8fc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:81:9e:ee:31:c1:64:23:f1:f9:32:d6:9b:3e:
65:94:5b:47:81:54:ee:7b:9b:c6:31:b2:cf:20:1d:
f1:36:75:e4:16:c0:40:df:dd:71:3d:3a:a6:b3:d8:
72:42:a7:24:85:23:1f:9b:59:a7:3d:05:f4:e1:b8:
56:f2:d7:77:3b:24:f4:bb:86:26:5b:2d:33:6c:4c:
bd:79:74:3a:c6:7d:17:38:03:5b:bb:77:e4:18:f3:
c2:df:88:5e:19:88:71:29:50:3a:79:9f:65:d2:49:
00:77:be:79:6e:43:8e:41:1a:0f:4c:c2:13:8e:17:
cd:a0:40:6b:d2:5d:7a:b0:57:a4:8b:80:66:90:e9:
73:49:01:27:41:7b:90:25:72:1e:6b:dd:39:a5:be:
54:d9:68:7b:de:83:f3:01:d2:87:cf:90:7d:6d:37:
28:f5:a6:56:87:ff:73:99:cc:25:55:2d:0e:4d:bf:
de:0a:7a:b2:47:5e:98:f1:f2:4c:0b:4d:45:02:c5:
79:79:13:e1:12:6d:ad:39:04:fd:7b:c2:1d:95:71:
bc:a9:76:1f:82:d3:48:16:2e:bc:26:29:f2:d3:73:
4c:00:d4:a4:79:8f:65:33:f6:09:3c:f9:0d:6b:59:
b0:b4:66:6f:e7:1a:5d:c8:bd:48:ed:d8:28:bc:d5:
82:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:92:87:C8:1E:D3:30:85:81:F7:D8:48:61:D2:1B:F5:D1:DC:8F:C5
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/U5KHyB7TMIWB99hIYdIb9dHcj8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.0.3.0/24
Signature Algorithm: sha256WithRSAEncryption
88:44:5a:52:d9:0c:67:31:d8:86:1a:fc:c4:95:5e:f2:5d:97:
f8:7d:68:66:90:bd:07:df:89:f2:45:c5:11:4d:a0:c8:11:9a:
47:4f:09:44:15:78:00:d9:2f:30:7f:de:79:18:9d:c4:7a:a2:
b4:16:0d:e5:d7:48:8c:f2:02:2b:11:5d:0e:4a:61:99:18:e8:
46:f8:4b:a0:53:54:fb:65:4f:71:23:7e:6c:c6:0a:26:21:1d:
d9:40:13:7e:6d:45:5d:71:9d:89:27:f0:a3:3a:4c:84:be:fb:
0e:ab:db:cf:23:27:1d:4f:66:43:de:5a:d4:58:13:76:b7:24:
0a:c5:37:12:b7:b7:05:c0:16:64:cf:61:fb:81:0e:51:ad:88:
7e:08:dd:9d:d6:a4:f1:ce:a7:f0:f1:fd:fe:5f:76:11:84:76:
52:b8:cd:a5:00:26:b2:bf:86:43:1b:aa:bd:d8:4c:5f:57:f8:
ac:ae:84:d8:48:ae:da:ba:60:a3:48:59:2d:59:05:3b:e2:dd:
53:7f:f1:45:64:15:a8:8e:ef:8f:00:dc:72:1c:a1:f4:f1:d6:
37:d4:55:dd:3f:0a:42:14:7f:8b:0d:73:1d:26:9d:2f:c7:bc:
9d:d3:e3:f7:18:3e:a3:ef:eb:0e:48:3d:ed:11:e0:28:65:96:
59:07:dd:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org