Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/UXayIMvej3CLoa2BKfYagi3T3uM.roa
File: UXayIMvej3CLoa2BKfYagi3T3uM.roa (raw, json)
Hash identifier: DxMSfJ3uhm62oC8aAvJPP+6ZFXgb1vIVnzBIf99QwJ4=
Subject key identifier: 51:76:B2:20:CB:DE:8F:70:8B:A1:AD:81:29:F6:1A:82:2D:D3:DE:E3
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018C4BBF5A80801C6C172CC8A0BC475CED38
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/UXayIMvej3CLoa2BKfYagi3T3uM.roa
Signing time: Fri 08 Dec 2023 23:24:40 +0000
ROA not before: Fri 08 Dec 2023 23:24:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398465
IP address blocks: 81.22.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4b:bf:5a:80:80:1c:6c:17:2c:c8:a0:bc:47:5c:ed:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Dec 8 23:24:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5176b220cbde8f708ba1ad8129f61a822dd3dee3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:53:c8:39:e4:c1:d1:85:85:e5:8d:09:9d:31:
5f:cf:77:e0:5f:d5:0c:60:29:e8:0b:79:b9:4b:11:
98:d8:17:6d:03:aa:d1:d6:e7:ee:59:00:73:84:0a:
80:7d:94:06:4e:ba:e8:2e:27:e6:24:45:77:bf:76:
d9:a9:b3:52:86:31:06:17:d9:d4:f0:2e:7f:d3:e2:
4f:aa:0b:f1:c6:5d:d8:85:5a:d0:04:7e:9b:47:09:
5a:99:2f:e7:17:8d:63:1d:35:22:78:dd:d3:00:e7:
49:e5:8f:d9:4d:b3:ab:52:ab:1e:63:2e:1a:e5:cb:
98:bd:02:25:de:59:da:c6:1a:60:09:ac:5e:64:36:
62:96:eb:92:db:39:93:97:e5:2d:79:d1:28:b2:bf:
04:36:be:ca:20:5a:23:4d:bd:96:18:0d:52:d1:46:
21:b6:82:7f:ae:69:c4:b3:47:d2:03:0c:68:12:f5:
f6:69:16:b0:8c:4a:67:d7:6c:2d:05:a9:16:34:20:
90:7a:dd:91:b0:dd:e9:ff:8f:22:06:01:ef:c0:4e:
ce:7c:96:5a:9c:3d:84:e6:6e:23:af:2c:f5:da:e6:
04:a0:d8:43:5c:ee:8f:a8:0e:76:74:08:09:dc:f6:
8a:78:44:1b:70:52:63:c2:33:34:40:97:e8:30:44:
8f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:76:B2:20:CB:DE:8F:70:8B:A1:AD:81:29:F6:1A:82:2D:D3:DE:E3
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/UXayIMvej3CLoa2BKfYagi3T3uM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.140.0/24
Signature Algorithm: sha256WithRSAEncryption
22:77:86:31:b8:f3:35:ae:e9:3c:c4:fe:cd:93:b5:fb:e2:40:
7b:bd:c5:41:fa:57:cd:1d:ef:04:57:95:c4:28:1c:38:3a:21:
c6:9c:fc:62:11:b5:a6:92:5e:89:b4:18:79:b5:1e:91:28:a3:
cc:b1:64:9f:29:f0:88:c8:b9:7d:a6:bb:e9:68:30:d4:21:3d:
c3:dd:20:3d:39:fd:14:ff:f3:c7:38:91:5f:d5:38:06:97:95:
b9:fa:09:26:e7:79:68:05:fc:5f:03:f7:c2:d2:62:af:cf:a5:
a9:c1:0d:0c:a9:7e:fa:94:41:d6:5e:01:9b:62:0e:bd:f5:78:
20:41:36:be:05:34:02:07:65:04:8e:1f:55:3f:68:b8:fc:95:
04:fc:e5:5d:5a:14:e6:13:52:e0:8a:19:4d:00:b1:63:f1:57:
8b:54:98:f9:10:7a:50:25:40:ac:c8:b3:e4:0b:a4:3f:ce:c9:
b8:5e:d1:aa:b2:4c:a7:33:29:d4:4d:da:a8:6e:b9:ca:82:13:
c6:d4:09:6f:43:26:63:cf:b6:a0:91:48:2e:12:7f:8b:d2:eb:
89:a2:2d:9c:15:8e:3a:b2:3a:bd:c9:5e:23:b9:ca:a3:27:b4:
e6:cb:05:2a:1a:1a:be:cd:03:44:27:e3:73:97:5b:9c:82:0d:
28:aa:03:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org