Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/b95ca0-853f-48ab-9b41-e0aee1bbf9e3/1/pyCUBHeXrbzEcUsBrWijrYT4aRY.roa
File: pyCUBHeXrbzEcUsBrWijrYT4aRY.roa (raw, json)
Hash identifier: TmZKQjDh0nQ4GvpcAeVam+qoXZMIUgva8ywQlHpF6Gc=
Subject key identifier: A7:20:94:04:77:97:AD:BC:C4:71:4B:01:AD:68:A3:AD:84:F8:69:16
Certificate issuer: /CN=5aedcb334d39e797817e2eb47703c018b4dc49d5
Certificate serial: 01856D93DF4D53D84160D65A8F1533489972
Authority key identifier: 5A:ED:CB:33:4D:39:E7:97:81:7E:2E:B4:77:03:C0:18:B4:DC:49:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wu3LM00555eBfi60dwPAGLTcSdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/b95ca0-853f-48ab-9b41-e0aee1bbf9e3/1/pyCUBHeXrbzEcUsBrWijrYT4aRY.roa
Signing time: Sun 01 Jan 2023 13:44:45 +0000
ROA not before: Sun 01 Jan 2023 13:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51983
IP address blocks: 194.88.6.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:93:df:4d:53:d8:41:60:d6:5a:8f:15:33:48:99:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aedcb334d39e797817e2eb47703c018b4dc49d5
Validity
Not Before: Jan 1 13:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a72094047797adbcc4714b01ad68a3ad84f86916
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:51:f4:7b:10:52:7f:50:e8:ce:85:05:24:53:
06:08:d8:8f:1c:af:e2:04:57:9d:3c:07:f0:35:e5:
a0:91:06:24:33:1d:f5:70:16:37:96:a1:72:a8:3f:
ea:ed:4f:03:9d:ef:cf:0f:95:5e:22:d4:80:f6:a4:
07:42:34:16:0a:8e:ed:49:f2:ef:12:ab:dc:63:ff:
7d:63:c1:be:38:be:f8:e7:8b:79:84:21:fc:04:df:
65:d6:29:3c:95:ba:3e:a6:af:74:00:4d:a9:bd:be:
31:71:3a:63:c8:8b:6d:bd:c1:df:55:91:15:5d:cb:
1b:38:e0:91:ba:9b:8a:4e:af:d7:30:01:e3:68:6c:
8b:2f:56:6f:8d:09:37:12:47:87:19:96:c0:69:fe:
14:5d:f4:03:2b:74:c2:89:6f:ed:c4:8f:0e:60:ac:
cb:2a:6f:81:69:ca:71:23:f9:8e:96:97:af:4b:40:
88:f8:9e:9f:08:39:26:ec:02:72:c5:4f:dd:75:65:
09:1c:4a:17:44:96:cd:17:b3:38:00:9f:77:02:83:
37:da:c1:52:7e:55:f8:43:34:42:e9:40:0d:8f:0d:
63:1d:9b:41:7b:37:0a:20:ea:13:af:41:46:c8:fd:
29:34:c0:1b:b6:cf:00:44:fb:8c:1e:a1:f0:e0:d8:
e6:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:20:94:04:77:97:AD:BC:C4:71:4B:01:AD:68:A3:AD:84:F8:69:16
X509v3 Authority Key Identifier:
keyid:5A:ED:CB:33:4D:39:E7:97:81:7E:2E:B4:77:03:C0:18:B4:DC:49:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wu3LM00555eBfi60dwPAGLTcSdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/b95ca0-853f-48ab-9b41-e0aee1bbf9e3/1/pyCUBHeXrbzEcUsBrWijrYT4aRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/b95ca0-853f-48ab-9b41-e0aee1bbf9e3/1/Wu3LM00555eBfi60dwPAGLTcSdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.88.6.0/23
Signature Algorithm: sha256WithRSAEncryption
03:bd:f0:2f:2e:2a:3f:b9:ba:11:57:d8:60:78:7f:01:9a:67:
01:9d:35:7f:da:d8:b0:8e:35:48:d0:dd:1f:a3:89:73:21:f0:
7c:87:42:82:6a:da:b8:50:69:b7:e6:77:58:e4:5d:b5:f8:8f:
a0:cc:09:c3:98:83:43:56:0b:25:eb:f9:c5:44:d4:b8:b5:98:
1a:78:57:0a:39:eb:15:50:f0:dd:26:59:3a:9a:c0:37:2e:d4:
33:3e:2a:93:2c:94:0e:6b:b7:d5:dd:c5:ed:cf:46:1d:cb:c5:
d8:6d:d1:3f:96:b1:0f:88:21:e7:1e:0e:e6:9e:90:79:6c:43:
29:6b:fc:30:c2:ae:b9:99:6c:c3:9a:90:53:c0:8a:d8:5f:4a:
f0:6c:f9:f2:3a:3f:b2:66:d5:94:a7:b5:8a:d3:5b:22:8b:f4:
bf:b7:f0:e3:5a:b7:bf:56:2d:5e:e9:a5:93:f7:bc:0c:03:dd:
17:42:72:de:b5:cb:db:f4:96:ce:85:b4:9a:44:65:24:c1:51:
71:4e:a3:2a:1f:23:e5:c1:6e:6d:96:59:df:cc:96:5e:5e:1b:
dc:ea:74:14:61:4f:46:2e:32:2f:da:4a:4e:e8:e3:ec:0e:c2:
9a:4a:6c:d3:40:1d:cd:19:5e:53:88:26:03:1d:81:f4:1a:24:
6e:df:96:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:53 2024 by rpki-client on console-fra.rpki-client.org