Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/897092-0750-4d96-b32f-5f205236de1f/1/hUFpVijawzk0qMggixYUiXcEhMs.roa
File: hUFpVijawzk0qMggixYUiXcEhMs.roa (raw, json)
Hash identifier: yuv/yzbEg+I1rV79rFr+VsanCjwP2ZFKkGcA6HSimoM=
Subject key identifier: 85:41:69:56:28:DA:C3:39:34:A8:C8:20:8B:16:14:89:77:04:84:CB
Certificate issuer: /CN=e4d271c3fa903a590fdf54899449e698f2e9c632
Certificate serial: 01856EB902EAFAFB27D389C9F60BC66CAA14
Authority key identifier: E4:D2:71:C3:FA:90:3A:59:0F:DF:54:89:94:49:E6:98:F2:E9:C6:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5NJxw_qQOlkP31SJlEnmmPLpxjI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/897092-0750-4d96-b32f-5f205236de1f/1/hUFpVijawzk0qMggixYUiXcEhMs.roa
Signing time: Sun 01 Jan 2023 19:04:56 +0000
ROA not before: Sun 01 Jan 2023 19:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29296
IP address blocks: 193.135.64.0/19 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b9:02:ea:fa:fb:27:d3:89:c9:f6:0b:c6:6c:aa:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4d271c3fa903a590fdf54899449e698f2e9c632
Validity
Not Before: Jan 1 19:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8541695628dac33934a8c8208b161489770484cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:11:4e:50:02:5d:cb:fa:66:30:b3:91:fb:53:
b6:6f:3d:bb:ab:6a:4f:38:f0:29:2c:92:36:ca:12:
82:13:8e:8b:84:f4:9e:59:cc:05:64:f5:aa:38:78:
0c:14:eb:7e:53:86:87:7f:ea:b4:6e:f7:05:2c:55:
df:86:72:49:83:fe:5d:94:8c:b9:66:dc:f4:22:de:
9d:02:52:f1:5c:2e:0e:55:db:1e:10:e8:df:34:12:
89:ed:10:bd:c6:c0:d5:3a:b0:e8:23:cc:08:a6:af:
75:17:4e:1f:56:e8:e9:b6:17:f9:40:82:86:d6:dc:
72:50:0a:77:21:fc:f9:73:7f:75:aa:56:41:ff:8b:
19:e6:35:f7:83:be:c0:34:62:16:20:7d:d1:21:59:
c6:c2:c8:6b:bd:8e:41:d4:36:df:51:aa:50:7c:74:
1e:4f:c3:17:5a:4a:93:46:88:fe:1e:04:bb:06:10:
24:17:10:49:f8:12:28:4a:50:54:80:31:67:4b:11:
fd:dd:09:e6:30:0f:0d:e4:5e:da:ff:70:9e:60:72:
f5:42:85:99:2e:cb:24:7e:e7:60:7d:bb:64:73:38:
d0:d9:f2:f9:b7:4f:43:c2:0c:de:92:1a:b8:bb:f3:
07:be:04:34:20:48:27:bf:27:fb:85:45:97:32:fc:
10:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:41:69:56:28:DA:C3:39:34:A8:C8:20:8B:16:14:89:77:04:84:CB
X509v3 Authority Key Identifier:
keyid:E4:D2:71:C3:FA:90:3A:59:0F:DF:54:89:94:49:E6:98:F2:E9:C6:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5NJxw_qQOlkP31SJlEnmmPLpxjI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/897092-0750-4d96-b32f-5f205236de1f/1/hUFpVijawzk0qMggixYUiXcEhMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/897092-0750-4d96-b32f-5f205236de1f/1/5NJxw_qQOlkP31SJlEnmmPLpxjI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.64.0/19
Signature Algorithm: sha256WithRSAEncryption
11:99:08:68:84:89:ec:13:7c:44:f8:61:67:0b:b3:59:be:4b:
35:cf:e2:9f:4b:da:05:5e:bb:a0:18:18:bb:ef:42:e6:2b:3b:
3c:b5:6e:7a:34:d2:91:fa:2a:de:af:0b:85:6a:df:20:e4:2a:
ef:ef:6c:02:5e:e0:f6:a1:59:ca:19:68:7d:65:db:6a:a5:d2:
d2:21:03:f6:1c:cd:76:a8:80:1c:35:43:06:da:1a:8d:8e:13:
86:b2:b7:a0:62:8e:4f:7b:a5:4c:fa:5c:65:7c:5f:35:dc:91:
9a:8d:f4:db:6b:85:02:91:09:46:2a:3d:8c:da:34:1c:d1:e7:
f3:0f:26:53:d7:3c:fe:c0:e1:c0:d1:ed:e1:9b:33:37:0d:49:
cf:10:b7:0f:f7:8d:cd:4f:88:b7:42:22:94:0b:ee:08:63:25:
7d:1a:d6:aa:f5:fa:f6:fe:4e:22:36:3b:64:95:22:6a:92:03:
a3:27:cf:eb:d1:a9:58:26:86:a2:2b:79:7b:a9:4c:a6:f0:ae:
e2:de:75:cb:0b:bd:e8:78:9e:f3:eb:2d:5c:21:64:e2:6d:c8:
90:37:28:f4:db:c3:49:54:6e:bf:87:1a:21:77:8e:e5:d2:8d:
5e:19:b7:bf:ba:45:7c:0b:ae:ae:05:cd:24:dd:d8:04:4c:c1:
19:15:28:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:19 2024 by rpki-client on console-fra.rpki-client.org