Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/umFo0ZFgeZ5ndyPDdz4e06RvIaI.roa
File: umFo0ZFgeZ5ndyPDdz4e06RvIaI.roa (raw, json)
Hash identifier: b0p5JldXqEIf9NdH5xNxxRLIUBeJthz5D/AGkJ8FG/M=
Subject key identifier: BA:61:68:D1:91:60:79:9E:67:77:23:C3:77:3E:1E:D3:A4:6F:21:A2
Certificate issuer: /CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Certificate serial: 01856D4AE0EBC4589D8762A78A1E8925E1FC
Authority key identifier: D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/umFo0ZFgeZ5ndyPDdz4e06RvIaI.roa
Signing time: Sun 01 Jan 2023 12:25:01 +0000
ROA not before: Sun 01 Jan 2023 12:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25353
IP address blocks: 193.162.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:e0:eb:c4:58:9d:87:62:a7:8a:1e:89:25:e1:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Validity
Not Before: Jan 1 12:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba6168d19160799e677723c3773e1ed3a46f21a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:dd:9d:fa:f1:ef:66:20:4d:c1:41:14:cb:41:
43:ba:93:07:65:62:b6:e6:dc:75:e2:fc:23:f1:54:
02:1d:07:b9:42:9e:f7:b1:99:ae:39:58:fe:2e:c7:
c5:2f:ae:e7:78:03:c0:2e:af:7a:b4:ea:75:bc:e0:
f1:d0:21:5c:ef:bc:9d:9a:1f:a6:7a:4e:75:d1:45:
5e:22:b3:d1:9d:d4:cc:0c:d6:55:a7:19:6c:2a:cf:
a0:00:fe:54:ff:b5:e6:74:40:68:2c:2e:7a:26:0d:
49:bd:cb:7e:f6:1a:ce:a5:65:3e:9d:ce:02:5c:ed:
79:79:fd:e0:30:58:98:3e:53:06:a4:dd:69:ec:39:
0d:86:17:3f:46:d6:f0:50:c6:dd:66:8a:2c:63:3c:
0c:fa:7c:c1:3c:18:d1:06:10:a7:9b:74:26:62:67:
2a:d6:3c:9d:7a:d1:62:78:18:e1:fd:0e:8b:2c:aa:
56:05:01:ce:87:c2:9b:d6:22:76:6c:84:fb:64:a7:
75:15:77:14:24:49:d4:b7:18:1f:0a:51:c9:a9:d0:
aa:28:38:17:2e:ae:d8:d3:b4:ca:73:83:cc:80:cf:
c6:ca:ec:84:f8:ee:22:2d:98:b1:94:9b:61:58:59:
77:fd:c0:45:e3:35:e0:5b:75:a0:10:c8:18:33:9e:
37:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:61:68:D1:91:60:79:9E:67:77:23:C3:77:3E:1E:D3:A4:6F:21:A2
X509v3 Authority Key Identifier:
keyid:D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/umFo0ZFgeZ5ndyPDdz4e06RvIaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.162.79.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:fd:7b:51:a7:94:4d:4e:3c:f3:08:94:32:c6:81:16:5c:b7:
4f:7a:a2:42:f7:1d:42:f7:05:e1:09:23:ed:ff:2d:90:97:a1:
61:18:16:3e:f6:4e:39:8b:db:95:cf:ab:52:9d:75:6b:06:ea:
c7:4a:a7:f4:3a:08:8e:6b:35:6c:51:7d:5a:fb:05:cc:c4:46:
3d:9a:41:2e:fe:d5:87:3e:03:cf:5c:fb:87:ff:58:32:6c:29:
b4:81:37:89:32:1a:d8:3d:0f:c6:a5:38:e1:6d:ce:85:9a:ab:
dd:08:92:f1:b7:09:9d:18:f9:3d:ff:59:60:fa:38:dd:59:6d:
8e:e7:94:62:e5:89:63:ad:57:e6:c5:71:69:cc:78:8a:92:d7:
56:c8:77:eb:e2:e9:8a:86:00:d2:11:61:90:b3:f0:50:c0:ab:
3b:82:ed:52:7c:b4:de:c0:2f:4f:dd:ba:75:c1:c7:85:85:ad:
84:4f:24:ee:4f:6b:61:43:51:c9:84:2d:03:20:6f:c5:99:95:
02:98:45:4b:23:c7:35:45:ea:02:9e:da:2d:dc:90:d4:15:64:
b7:79:5e:9e:4d:c5:9d:88:ca:36:f3:c4:c6:d5:7f:8e:df:80:
4c:55:77:32:ad:59:bc:1d:d5:b7:7f:f8:77:3d:15:64:b1:07:
76:3a:29:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:52 2024 by rpki-client on console-ams.rpki-client.org