Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/71a748-b2bc-4728-9ef0-a69cd9d15e31/1/RUa_xMfOTZA-_ZRUotXUjhMuVns.roa
File: RUa_xMfOTZA-_ZRUotXUjhMuVns.roa (raw, json)
Hash identifier: e8nYroxKeq5EpshbfANC5Q+WpxL3k69Nl9Am9rOuMTY=
Subject key identifier: 45:46:BF:C4:C7:CE:4D:90:3E:FD:94:54:A2:D5:D4:8E:13:2E:56:7B
Certificate issuer: /CN=51e591e54903d2f9ea840a146955ba3459e33ea1
Certificate serial: 0185723A1E917259E3DD17EF57874D301322
Authority key identifier: 51:E5:91:E5:49:03:D2:F9:EA:84:0A:14:69:55:BA:34:59:E3:3E:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UeWR5UkD0vnqhAoUaVW6NFnjPqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/71a748-b2bc-4728-9ef0-a69cd9d15e31/1/RUa_xMfOTZA-_ZRUotXUjhMuVns.roa
Signing time: Mon 02 Jan 2023 11:24:49 +0000
ROA not before: Mon 02 Jan 2023 11:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28940
IP address blocks: 193.97.168.0/21 maxlen: 21
2001:67c:29dc::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:1e:91:72:59:e3:dd:17:ef:57:87:4d:30:13:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51e591e54903d2f9ea840a146955ba3459e33ea1
Validity
Not Before: Jan 2 11:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4546bfc4c7ce4d903efd9454a2d5d48e132e567b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:68:b7:4a:b6:ae:8e:2a:a7:82:a4:ba:d9:c2:
65:9f:83:81:ae:8e:fe:dc:10:d2:d6:f8:89:a9:ed:
37:5b:9b:84:3f:9f:08:af:87:48:48:45:4e:03:72:
74:25:6e:01:84:9d:f2:62:7c:60:28:a5:d6:8d:a5:
ee:aa:7e:01:c8:a0:bc:e6:07:89:62:07:00:24:a5:
57:41:af:a8:50:3b:b0:8f:e2:2b:87:f2:20:8e:3d:
d1:f6:7a:58:af:9e:be:0b:04:cc:74:1c:93:0f:a3:
ef:8a:fe:9b:aa:18:33:62:96:c9:e2:b2:15:b6:6a:
8e:66:a3:5e:05:4a:ff:7e:a2:a5:b7:d8:46:97:37:
ae:7f:a5:1b:f9:ce:bc:aa:55:f2:22:9e:8d:ee:81:
b1:7a:04:0d:52:56:da:3e:63:0d:ac:e7:7b:6b:ad:
47:f8:d3:df:bb:82:c8:ca:15:c3:cb:5d:5f:b4:42:
86:d8:dd:73:46:8d:92:14:93:91:ad:63:23:fa:1f:
6b:34:fe:82:bf:81:d2:ec:ad:3f:41:97:c7:b3:f3:
67:8d:2b:aa:3d:3f:a6:c6:e0:2e:f0:db:cd:4c:78:
ba:ec:f3:9f:e6:64:2e:0f:d1:64:a7:09:20:04:4c:
0c:ea:58:26:27:17:64:06:eb:6a:35:b2:a3:a3:99:
08:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:46:BF:C4:C7:CE:4D:90:3E:FD:94:54:A2:D5:D4:8E:13:2E:56:7B
X509v3 Authority Key Identifier:
keyid:51:E5:91:E5:49:03:D2:F9:EA:84:0A:14:69:55:BA:34:59:E3:3E:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UeWR5UkD0vnqhAoUaVW6NFnjPqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/71a748-b2bc-4728-9ef0-a69cd9d15e31/1/RUa_xMfOTZA-_ZRUotXUjhMuVns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/71a748-b2bc-4728-9ef0-a69cd9d15e31/1/UeWR5UkD0vnqhAoUaVW6NFnjPqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.97.168.0/21
IPv6:
2001:67c:29dc::/48
Signature Algorithm: sha256WithRSAEncryption
8a:94:17:1c:fc:94:0b:a1:37:35:fb:12:46:55:c1:7c:11:64:
38:d7:c3:31:af:e5:39:7e:ef:c7:61:72:c1:df:d3:7d:e1:a2:
2b:25:78:c2:e5:45:8d:0b:d4:52:69:d5:46:6d:71:47:67:a6:
6f:0e:62:20:56:d7:9b:e0:a6:19:ca:06:9b:ca:dc:8a:a0:8f:
24:d8:90:dd:66:c9:70:ec:02:a2:63:43:b1:0f:fb:fe:b8:dd:
bf:28:5e:69:e8:80:bb:ef:dd:e4:cf:84:1f:24:20:2e:42:59:
59:6c:9c:c5:1f:cf:84:e7:04:57:21:79:81:a2:dc:66:8a:24:
bb:06:f5:08:e0:97:f1:3b:3c:c8:b4:9c:04:8e:67:25:fc:64:
39:50:91:c1:84:41:51:17:4e:85:aa:78:cf:8c:20:74:80:2b:
26:ad:00:55:3d:07:5a:f5:4f:94:e3:51:c4:ab:5b:06:05:8b:
b7:bf:2e:e0:26:19:c2:0e:c3:5d:2e:a3:1c:52:0c:d2:87:31:
fc:0a:56:be:8f:10:81:5c:e0:b3:93:ef:86:7c:9b:70:2f:da:
7d:85:e2:ef:cd:2d:57:ad:69:13:ab:c3:26:11:da:9d:8a:29:
97:5a:30:d4:e9:2a:1b:48:a6:cc:dd:77:34:e4:c4:12:e1:cf:
5a:c8:cf:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:28 2024 by rpki-client on console-fra.rpki-client.org